get over as CVE-2020 - 3566 and CVE-2020 - 3569 and have a CVSS mark of 8.6 , in belated August , when Cisco annunciate that hack were already target them in approach , the two wiretap were construct public . In the Distance Vector Multicast Routing Protocol ( DVMRP ) feature film of IOS XR , both problem were detect and could be victimized without assay-mark to actuate the Internet Community Management Protocol ( IGMP ) chemical mechanism to enfeeble retention and clangoring march . The intercept pass off because IGMP mailboat are not adequately treat , Cisco read , which think of that contrive IGMP traffic may be commit to the unnatural devices to activate them . The IGMP mechanics may mechanically barge in or movement memory board enfeeblement by an good jade , thereby affect the reliableness of early scheme , include those of route communications protocol . mend for Two High - Severity exposure . It is not necessity to manually re-start the IGMP litigate in the consequence of an close at hand IGMP cognitive process flop , since that mental process has already been bear out by the organization . This automatic rifle restart , the party put forward in an qui vive , would reconstruct the expel memory board . “ If an combat-ready user interface is instal under multicast expel , ” and if DVMRP traffic is give , Cisco tell , all Cisco device escape IOS XR are sham . To resolve whether multicast spread-eagle is earmark and whether the arrangement receive DVMRP dealings , executive can employment the showing igmp user interface and video display igmp dealings command . In add-on , to dilute memory tiredness , they may utilise grade clipper and approach check technique . This week , Cisco herald that security department specify for the ASR9K - PX , ASR9K - X64 , CRS , and NCS5500 political platform are useable to cook these vulnerability .