7.4

CVE-2020-3512

EPSS 0.1%
Published 24.09.2020 18:15:21
Last modified 21.11.2024 05:31:13
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the PROFINET handler for Link Layer Discovery Protocol (LLDP) messages of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a crash on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of LLDP messages in the PROFINET LLDP message handler. An attacker could exploit this vulnerability by sending a malicious LLDP message to an affected device. A successful exploit could allow the attacker to cause the affected device to reload.

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Ios Xe Version15.2(7)e

   Cisco ≫ Catalyst 3650-12x48uq Version-
   Cisco ≫ Catalyst 3650-12x48ur Version-
   Cisco ≫ Catalyst 3650-12x48uz Version-
   Cisco ≫ Catalyst 3650-24pd Version-
   Cisco ≫ Catalyst 3650-24pdm Version-
   Cisco ≫ Catalyst 3650-48fqm Version-
   Cisco ≫ Catalyst 3650-8x24uq Version-
   Cisco ≫ Catalyst 3850-24xs Version-
   Cisco ≫ Catalyst 3850-48xs Version-
   Cisco ≫ Catalyst 3850-nm-2-40g Version-
   Cisco ≫ Catalyst 3850-nm-8-10g Version-
   Cisco ≫ Catalyst C9200-24p Version-
   Cisco ≫ Catalyst C9200-24t Version-
   Cisco ≫ Catalyst C9200-48p Version-
   Cisco ≫ Catalyst C9200-48t Version-
   Cisco ≫ Catalyst C9200l-24p-4g Version-
   Cisco ≫ Catalyst C9200l-24p-4x Version-
   Cisco ≫ Catalyst C9200l-24pxg-2y Version-
   Cisco ≫ Catalyst C9200l-24pxg-4x Version-
   Cisco ≫ Catalyst C9200l-24t-4g Version-
   Cisco ≫ Catalyst C9200l-24t-4x Version-
   Cisco ≫ Catalyst C9200l-48p-4g Version-
   Cisco ≫ Catalyst C9200l-48p-4x Version-
   Cisco ≫ Catalyst C9200l-48pxg-2y Version-
   Cisco ≫ Catalyst C9200l-48pxg-4x Version-
   Cisco ≫ Catalyst C9200l-48t-4g Version-
   Cisco ≫ Catalyst C9200l-48t-4x Version-
   Cisco ≫ Catalyst C9300-24p Version-
   Cisco ≫ Catalyst C9300-24s Version-
   Cisco ≫ Catalyst C9300-24t Version-
   Cisco ≫ Catalyst C9300-24u Version-
   Cisco ≫ Catalyst C9300-24ux Version-
   Cisco ≫ Catalyst C9300-48p Version-
   Cisco ≫ Catalyst C9300-48s Version-
   Cisco ≫ Catalyst C9300-48t Version-
   Cisco ≫ Catalyst C9300-48u Version-
   Cisco ≫ Catalyst C9300-48un Version-
   Cisco ≫ Catalyst C9300-48uxm Version-
   Cisco ≫ Catalyst C9300l-24p-4g Version-
   Cisco ≫ Catalyst C9300l-24p-4x Version-
   Cisco ≫ Catalyst C9300l-24t-4g Version-
   Cisco ≫ Catalyst C9300l-24t-4x Version-
   Cisco ≫ Catalyst C9300l-48p-4g Version-
   Cisco ≫ Catalyst C9300l-48p-4x Version-
   Cisco ≫ Catalyst C9300l-48t-4g Version-
   Cisco ≫ Catalyst C9300l-48t-4x Version-
   Cisco ≫ Catalyst C9404r Version-
   Cisco ≫ Catalyst C9407r Version-
   Cisco ≫ Catalyst C9410r Version-
   Cisco ≫ Catalyst C9500-12q Version-
   Cisco ≫ Catalyst C9500-16x Version-
   Cisco ≫ Catalyst C9500-24q Version-
   Cisco ≫ Catalyst C9500-24y4c Version-
   Cisco ≫ Catalyst C9500-32c Version-
   Cisco ≫ Catalyst C9500-32qc Version-
   Cisco ≫ Catalyst C9500-40x Version-
   Cisco ≫ Catalyst C9500-48y4c Version-
   Cisco ≫ Connected Grid Switch 2520 Version-
   Cisco ≫ Ess 2020 Version-
   Cisco ≫ Ess 3300 Version-
   Cisco ≫ Ie-1000 Version-
   Cisco ≫ Ie-2000u-16tc-g Version-
   Cisco ≫ Ie-2000u-16tc-g-x Version-
   Cisco ≫ Ie-2000u-16tc-gp Version-
   Cisco ≫ Ie-2000u-4s-g Version-
   Cisco ≫ Ie-2000u-4t-gs Version-
   Cisco ≫ Ie-2000u-4ts-g Version-
   Cisco ≫ Ie-2000u-8tc-g Version-
   Cisco ≫ Ie-3000 Version-
   Cisco ≫ Ie-3010-16s-8pc Industrial Ethernet Switch Version-
   Cisco ≫ Ie-3010-24tc Industrial Ethernet Switch Version-
   Cisco ≫ Ie-3200-8p2s-e Version-
   Cisco ≫ Ie-3200-8t2s-e Version-
   Cisco ≫ Ie-3300-8p2s-a Version-
   Cisco ≫ Ie-3300-8p2s-e Version-
   Cisco ≫ Ie-3300-8t2s-a Version-
   Cisco ≫ Ie-3300-8t2s-e Version-
   Cisco ≫ Ie-3300-8t2x-a Version-
   Cisco ≫ Ie-3300-8t2x-e Version-
   Cisco ≫ Ie-3300-8u2x-a Version-
   Cisco ≫ Ie-3300-8u2x-e Version-
   Cisco ≫ Ie-3400-8p2s-a Version-
   Cisco ≫ Ie-3400-8p2s-e Version-
   Cisco ≫ Ie-3400-8t2s-a Version-
   Cisco ≫ Ie-3400-8t2s-e Version-
   Cisco ≫ Ie-4000-16gt4g-e Version-
   Cisco ≫ Ie-4000-16t4g-e Version-
   Cisco ≫ Ie-4000-4gc4gp4g-e Version-
   Cisco ≫ Ie-4000-4gs8gp4g-e Version-
   Cisco ≫ Ie-4000-4s8p4g-e Version-
   Cisco ≫ Ie-4000-4t4p4g-e Version-
   Cisco ≫ Ie-4000-4tc4g-e Version-
   Cisco ≫ Ie-4000-8gs4g-e Version-
   Cisco ≫ Ie-4000-8gt4g-e Version-
   Cisco ≫ Ie-4000-8gt8gp4g-e Version-
   Cisco ≫ Ie-4000-8s4g-e Version-
   Cisco ≫ Ie-4000-8t4g-e Version-
   Cisco ≫ Ie-4010-16s12p Industrial Ethernet Switch Version-
   Cisco ≫ Ie-4010-4s24p Industrial Ethernet Switch Version-
   Cisco ≫ Ie-5000-12s12p-10g Version-
   Cisco ≫ Ie-5000-16s12p Version-
   Cisco ≫ Ie 2000-16ptc-g Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16t67 Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16t67p Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16tc-g-e Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16tc-g-n Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16tc-g-x Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16tc-g Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-16tc Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-24t67 Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-4s-ts-g Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-4t-g Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-4t Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-4ts-g Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-4ts Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-8t67 Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-8t67p Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-8tc-g-e Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-8tc-g-n Industrial Ethernet Switch Version-
   Cisco ≫ Ie 2000-8tc-g Industrial Ethernet Switch Version-
   Cisco ≫ Iem-3300-14t2s Version-
   Cisco ≫ Iem-3300-16p Version-
   Cisco ≫ Iem-3300-16t Version-
   Cisco ≫ Iem-3300-4mu-2 Version-
   Cisco ≫ Iem-3300-6t2s Version-
   Cisco ≫ Iem-3300-8p Version-
   Cisco ≫ Iem-3300-8s Version-
   Cisco ≫ Iem-3300-8t Version-
   Cisco ≫ Iem-3400-8p Version-
   Cisco ≫ Iem-3400-8s Version-
   Cisco ≫ Iem-3400-8t Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.249

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.4	2.8	4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	5.7	5.5	6.9	AV:A/AC:M/Au:N/C:N/I:N/A:C
psirt@cisco.com	7.4	2.8	4	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-profinet-dos-65qYG3W5

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-3512

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-3512

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-3512

EUVD