8.8
CVE-2022-20824
- EPSS 0.09%
- Veröffentlicht 25.08.2022 19:15:08
- Zuletzt bearbeitet 21.11.2024 06:43:37
- Quelle psirt@cisco.com
- Teams Watchlist Login
- Unerledigt Login
A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper input validation of specific values that are within a Cisco Discovery Protocol message. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. A successful exploit could allow the attacker to execute arbitrary code with root privileges or cause the Cisco Discovery Protocol process to crash and restart multiple times, which would cause the affected device to reload, resulting in a DoS condition. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Mds 9506 Firmware Version-
Cisco ≫ Mds 9513 Firmware Version-
Cisco ≫ Mds 9706 Firmware Version-
Cisco ≫ Mds 9710 Firmware Version-
Cisco ≫ Mds 9718 Firmware Version-
Cisco ≫ Nexus 1000v Firmware Version- SwPlatformvmware_vsphere
Cisco ≫ Nexus 3016 Firmware Version-
Cisco ≫ Nexus 3016q Firmware Version-
Cisco ≫ Nexus 3048 Firmware Version-
Cisco ≫ Nexus 3064 Firmware Version-
Cisco ≫ Nexus 3064-32t Firmware Version-
Cisco ≫ Nexus 3064-t Firmware Version-
Cisco ≫ Nexus 3064-x Firmware Version-
Cisco ≫ Nexus 3064t Firmware Version-
Cisco ≫ Nexus 3064x Firmware Version-
Cisco ≫ Nexus 3100 Firmware Version-
Cisco ≫ Nexus 3100-v Firmware Version-
Cisco ≫ Nexus 3100-z Firmware Version-
Cisco ≫ Nexus 3100v Firmware Version-
Cisco ≫ Nexus 31108pc-v Firmware Version-
Cisco ≫ Nexus 31108pv-v Firmware Version-
Cisco ≫ Nexus 31108tc-v Firmware Version-
Cisco ≫ Nexus 31128pq Firmware Version-
Cisco ≫ Nexus 3132c-z Firmware Version-
Cisco ≫ Nexus 3132q Firmware Version-
Cisco ≫ Nexus 3132q-v Firmware Version-
Cisco ≫ Nexus 3132q-x Firmware Version-
Cisco ≫ Nexus 3132q-x/3132q-xl Firmware Version-
Cisco ≫ Nexus 3132q-xl Firmware Version-
Cisco ≫ Nexus 3164q Firmware Version-
Cisco ≫ Nexus 3172 Firmware Version-
Cisco ≫ Nexus 3172pq Firmware Version-
Cisco ≫ Nexus 3172pq-xl Firmware Version-
Cisco ≫ Nexus 3172pq/pq-xl Firmware Version-
Cisco ≫ Nexus 3172tq Firmware Version-
Cisco ≫ Nexus 3172tq-32t Firmware Version-
Cisco ≫ Nexus 3172tq-xl Firmware Version-
Cisco ≫ Nexus 3200 Firmware Version-
Cisco ≫ Nexus 3232c Firmware Version-
Cisco ≫ Nexus 3232c Firmware Version-
Cisco ≫ Nexus 3264c-e Firmware Version-
Cisco ≫ Nexus 3264q Firmware Version-
Cisco ≫ Nexus 3400 Firmware Version-
Cisco ≫ Nexus 3408-s Firmware Version-
Cisco ≫ Nexus 34180yc Firmware Version-
Cisco ≫ Nexus 34200yc-sm Firmware Version-
Cisco ≫ Nexus 3432d-s Firmware Version-
Cisco ≫ Nexus 3464c Firmware Version-
Cisco ≫ Nexus 3524 Firmware Version-
Cisco ≫ Nexus 3524-x Firmware Version-
Cisco ≫ Nexus 3524-x/xl Firmware Version-
Cisco ≫ Nexus 3524-xl Firmware Version-
Cisco ≫ Nexus 3548 Firmware Version-
Cisco ≫ Nexus 3548-x Firmware Version-
Cisco ≫ Nexus 3548-x/xl Firmware Version-
Cisco ≫ Nexus 3548-xl Firmware Version-
Cisco ≫ Nexus 36180yc-r Firmware Version-
Cisco ≫ Nexus 3636c-r Firmware Version-
Cisco ≫ Nexus 5548p Firmware Version-
Cisco ≫ Nexus 5548up Firmware Version-
Cisco ≫ Nexus 5596t Firmware Version-
Cisco ≫ Nexus 5596up Firmware Version-
Cisco ≫ Nexus 5600 Firmware Version-
Cisco ≫ Nexus 56128p Firmware Version-
Cisco ≫ Nexus 5624q Firmware Version-
Cisco ≫ Nexus 5648q Firmware Version-
Cisco ≫ Nexus 5672up Firmware Version-
Cisco ≫ Nexus 5672up-16g Firmware Version-
Cisco ≫ Nexus 5696q Firmware Version-
Cisco ≫ Nexus 6000 Firmware Version-
Cisco ≫ Nexus 6001 Firmware Version-
Cisco ≫ Nexus 6001p Firmware Version-
Cisco ≫ Nexus 6001t Firmware Version-
Cisco ≫ Nexus 6004 Firmware Version-
Cisco ≫ Nexus 6004x Firmware Version-
Cisco ≫ Nexus 7000 Firmware Version-
Cisco ≫ Nexus 7000 Supervisor 1 Firmware Version-
Cisco ≫ Nexus 7000 Supervisor 2 Firmware Version-
Cisco ≫ Nexus 7000 Supervisor 2e Firmware Version-
Cisco ≫ Nexus 7004 Firmware Version-
Cisco ≫ Nexus 7009 Firmware Version-
Cisco ≫ Nexus 7010 Firmware Version-
Cisco ≫ Nexus 7018 Firmware Version-
Cisco ≫ Nexus 7700 Firmware Version-
Cisco ≫ Nexus 7700 Supervisor 2e Firmware Version-
Cisco ≫ Nexus 7700 Supervisor 3e Firmware Version-
Cisco ≫ Nexus 7702 Firmware Version-
Cisco ≫ Nexus 7706 Firmware Version-
Cisco ≫ Nexus 7710 Firmware Version-
Cisco ≫ Nexus 7718 Firmware Version-
Cisco ≫ Nexus 9000 Firmware Version-
Cisco ≫ Nexus 9000v Firmware Version-
Cisco ≫ Nexus 9200 Firmware Version-
Cisco ≫ Nexus 92160yc-x Firmware Version-
Cisco ≫ Nexus 9221c Firmware Version-
Cisco ≫ Nexus 92300yc Firmware Version-
Cisco ≫ Nexus 92304qc Firmware Version-
Cisco ≫ Nexus 92348gc-x Firmware Version-
Cisco ≫ Nexus 9236c Firmware Version-
Cisco ≫ Nexus 9272q Firmware Version-
Cisco ≫ Nexus 9300 Firmware Version-
Cisco ≫ Nexus 93108tc-ex Firmware Version-
Cisco ≫ Nexus 93108tc-ex-24 Firmware Version-
Cisco ≫ Nexus 93108tc-fx Firmware Version-
Cisco ≫ Nexus 93108tc-fx-24 Firmware Version-
Cisco ≫ Nexus 93108tc-fx3p Firmware Version-
Cisco ≫ Nexus 93120tx Firmware Version-
Cisco ≫ Nexus 93128 Firmware Version-
Cisco ≫ Nexus 93128tx Firmware Version-
Cisco ≫ Nexus 9316d-gx Firmware Version-
Cisco ≫ Nexus 93180lc-ex Firmware Version-
Cisco ≫ Nexus 93180tc-ex Firmware Version-
Cisco ≫ Nexus 93180yc-ex Firmware Version-
Cisco ≫ Nexus 93180yc-ex-24 Firmware Version-
Cisco ≫ Nexus 93180yc-fx Firmware Version-
Cisco ≫ Nexus 93180yc-fx-24 Firmware Version-
Cisco ≫ Nexus 93180yc-fx3 Firmware Version-
Cisco ≫ Nexus 93180yc-fx3s Firmware Version-
Cisco ≫ Nexus 93216tc-fx2 Firmware Version-
Cisco ≫ Nexus 93240yc-fx2 Firmware Version-
Cisco ≫ Nexus 9332c Firmware Version-
Cisco ≫ Nexus 9332pq Firmware Version-
Cisco ≫ Nexus 93360yc-fx2 Firmware Version-
Cisco ≫ Nexus 9336c-fx2 Firmware Version-
Cisco ≫ Nexus 9336c-fx2-e Firmware Version-
Cisco ≫ Nexus 9336pq Firmware Version-
Cisco ≫ Nexus 9348gc-fxp Firmware Version-
Cisco ≫ Nexus 93600cd-gx Firmware Version-
Cisco ≫ Nexus 9364c Firmware Version-
Cisco ≫ Nexus 9364c-gx Firmware Version-
Cisco ≫ Nexus 9372px Firmware Version-
Cisco ≫ Nexus 9372px-e Firmware Version-
Cisco ≫ Nexus 9372tx Firmware Version-
Cisco ≫ Nexus 9372tx-e Firmware Version-
Cisco ≫ Nexus 9396px Firmware Version-
Cisco ≫ Nexus 9396tx Firmware Version-
Cisco ≫ Nexus 9500 Supervisor A Firmware Version-
Cisco ≫ Nexus 9500 Supervisor A+ Firmware Version-
Cisco ≫ Nexus 9500 Supervisor B Firmware Version-
Cisco ≫ Nexus 9500 Supervisor B+ Firmware Version-
Cisco ≫ Nexus 9500r Firmware Version-
Cisco ≫ Nexus 9504 Firmware Version-
Cisco ≫ Nexus 9508 Firmware Version-
Cisco ≫ Nexus 9516 Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.09% | 0.263 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| psirt@cisco.com | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-121 Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.