HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2020-3369

CVSS 7.5v3.1pub. 2020-07-16upd. 2024-11-21

A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper processing of FTP traffic. An attacker could exploit this vulnerability by sending crafted FTP packets through an affected device. A successful exploit could allow the attacker to make the device reboot continuously, causing a DoS condition.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Cisco Sd Wan Firmware

    OS
    Cisco
    19.2.019.2.09719.2.09819.2.1
  • Cisco Vedge 5000

    HW
    Cisco
    wszystkie wersje
  • Cisco Vedge Cloud Router

    APP
    Cisco
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2021-1300CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute a...

CVE-2021-1301CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute a...

CVE-2021-1528HIGH7.8ten sam produkt

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain eleva...

CVE-2021-1510HIGH7.5ten sam produkt

Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as t...

CVE-2021-1509HIGH7.5ten sam produkt

Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as t...