7.4
CVE-2020-3511
- EPSS 0.1%
- Published 24.09.2020 18:15:21
- Last modified 21.11.2024 05:31:13
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation when the ISDN Q.931 messages are processed. An attacker could exploit this vulnerability by sending a malicious ISDN Q.931 message to an affected device. A successful exploit could allow the attacker to cause the process to crash, resulting in a reload of the affected device.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Ios Xe Version15.1(4)m
Cisco ≫ 1100-4g Integrated Services Router Version-
Cisco ≫ 1100-4gltegb Integrated Services Router Version-
Cisco ≫ 1100-4gltena Integrated Services Router Version-
Cisco ≫ 1100-4p Integrated Services Router Version-
Cisco ≫ 1100-6g Integrated Services Router Version-
Cisco ≫ 1100-8p Integrated Services Router Version-
Cisco ≫ 1100-lte Integrated Services Router Version-
Cisco ≫ 1100 Integrated Services Router Version-
Cisco ≫ 1101-4p Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109-2p Integrated Services Router Version-
Cisco ≫ 1109-4p Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x-8p Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 422 Integrated Services Router Version-
Cisco ≫ 4321/k9-rf Integrated Services Router Version-
Cisco ≫ 4321/k9-ws Integrated Services Router Version-
Cisco ≫ 4321/k9 Integrated Services Router Version-
Cisco ≫ 4331/k9-rf Integrated Services Router Version-
Cisco ≫ 4331/k9-ws Integrated Services Router Version-
Cisco ≫ 4331/k9 Integrated Services Router Version-
Cisco ≫ 4351/k9-rf Integrated Services Router Version-
Cisco ≫ 4351/k9-ws Integrated Services Router Version-
Cisco ≫ 4351/k9 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ Asr 1000-x Version-
Cisco ≫ Asr 1001 Version-
Cisco ≫ Asr 1001-x Version-
Cisco ≫ Asr 1002 Version-
Cisco ≫ Asr 1002-x Version-
Cisco ≫ Asr 1004 Version-
Cisco ≫ Asr 1006 Version-
Cisco ≫ Asr 1013 Version-
Cisco ≫ Asr1001-hx Version-
Cisco ≫ Asr1001-hx-rf Version-
Cisco ≫ Asr1001-x Version-
Cisco ≫ Asr1001-x-rf Version-
Cisco ≫ Asr1001-x-ws Version-
Cisco ≫ Asr1002-hx Version-
Cisco ≫ Asr1002-hx-rf Version-
Cisco ≫ Asr1002-hx-ws Version-
Cisco ≫ Asr1002-x Version-
Cisco ≫ Asr1002-x-rf Version-
Cisco ≫ Asr1002-x-ws Version-
Cisco ≫ Csr1000v Version-
Cisco ≫ 1100-4gltegb Integrated Services Router Version-
Cisco ≫ 1100-4gltena Integrated Services Router Version-
Cisco ≫ 1100-4p Integrated Services Router Version-
Cisco ≫ 1100-6g Integrated Services Router Version-
Cisco ≫ 1100-8p Integrated Services Router Version-
Cisco ≫ 1100-lte Integrated Services Router Version-
Cisco ≫ 1100 Integrated Services Router Version-
Cisco ≫ 1101-4p Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109-2p Integrated Services Router Version-
Cisco ≫ 1109-4p Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x-8p Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 422 Integrated Services Router Version-
Cisco ≫ 4321/k9-rf Integrated Services Router Version-
Cisco ≫ 4321/k9-ws Integrated Services Router Version-
Cisco ≫ 4321/k9 Integrated Services Router Version-
Cisco ≫ 4331/k9-rf Integrated Services Router Version-
Cisco ≫ 4331/k9-ws Integrated Services Router Version-
Cisco ≫ 4331/k9 Integrated Services Router Version-
Cisco ≫ 4351/k9-rf Integrated Services Router Version-
Cisco ≫ 4351/k9-ws Integrated Services Router Version-
Cisco ≫ 4351/k9 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ Asr 1000-x Version-
Cisco ≫ Asr 1001 Version-
Cisco ≫ Asr 1001-x Version-
Cisco ≫ Asr 1002 Version-
Cisco ≫ Asr 1002-x Version-
Cisco ≫ Asr 1004 Version-
Cisco ≫ Asr 1006 Version-
Cisco ≫ Asr 1013 Version-
Cisco ≫ Asr1001-hx Version-
Cisco ≫ Asr1001-hx-rf Version-
Cisco ≫ Asr1001-x Version-
Cisco ≫ Asr1001-x-rf Version-
Cisco ≫ Asr1001-x-ws Version-
Cisco ≫ Asr1002-hx Version-
Cisco ≫ Asr1002-hx-rf Version-
Cisco ≫ Asr1002-hx-ws Version-
Cisco ≫ Asr1002-x Version-
Cisco ≫ Asr1002-x-rf Version-
Cisco ≫ Asr1002-x-ws Version-
Cisco ≫ Csr1000v Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.1% | 0.249 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.4 | 2.8 | 4 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
|
| nvd@nist.gov | 6.1 | 6.5 | 6.9 |
AV:A/AC:L/Au:N/C:N/I:N/A:C
|
| psirt@cisco.com | 7.4 | 2.8 | 4 |
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.