HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2020-3408

CVSS 8.6v3.1pub. 2020-09-24upd. 2024-11-21

A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability occurs because the regular expression (regex) engine that is used with the Split DNS feature of affected releases may time out when it processes the DNS name list configuration. An attacker could exploit this vulnerability by trying to resolve an address or hostname that the affected device handles. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco 1100 4g Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4gltegb Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4gltena Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 6g Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 Lte Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 2p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 111x Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1120 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1160 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4221 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4331 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4431 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4451 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 4461 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1000 X

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr1001 Hx

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr1001 Hx Rf

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 1001 X

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr1001 X Rf

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr1001 X Ws

    HW
    Cisco
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2023-20198CRITICAL10.0⚠ KEVten sam produkt

Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in...

CVE-2018-0151CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software coul...

CVE-2018-0171CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an un...

CVE-2017-12240CRITICAL9.8⚠ KEVten sam produkt

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability tha...

CVE-2017-3881CRITICAL9.8⚠ KEVten sam produkt

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE S...