HIGH✓ PATCH🇬🇧 English

CVE-2022-20919

CVSS 8.6v3.1pub. 2022-09-30upd. 2024-11-21

A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are sent to Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient input validation during processing of CIP packets. An attacker could exploit this vulnerability by sending a malformed CIP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to unexpectedly reload, resulting in a DoS condition.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco 1000 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4g Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 6g Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 2p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1120 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1131 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1160 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4221 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4321 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4331 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4351 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4431 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4451 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4451 X Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4461 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1000 Esp100

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1000 X

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001 Hx

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001 Hx R

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001 X

    HW
    Cisco
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2023-20198CRITICAL10.0⚠ KEVten sam produkt

Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in...

CVE-2018-0151CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software coul...

CVE-2017-12240CRITICAL9.8⚠ KEVten sam produkt

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability tha...

CVE-2017-3881CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE S...

CVE-2025-20363CRITICAL9.0PL ✓ten sam produkt

RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP

CVE-2022-20919 — HIGH 8.6 | CVEbaza.pl