Loading
Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized transitive attributes, which allows remote attackers to cause a denial of service (peering reset) via a crafted prefix announcement, as demonstrated in the wild in August 2010 with attribute type code 99, aka Bug ID CSCti62211.
Use Cisco vendor hub and Ios Xr product page to widen CVE-2010-3035 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-20363, CVE-2025-20138 and CVE-2025-20154 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: January 30th, 2026.