CyberSec.Space Logo
Back to CVE Browser

CVE-2020-3508

HIGH
7.4
CVSS Severity Score
EPSS Score0.1500%
EPSS Percentile13.26th
PublishedSep 24, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

A vulnerability in the IP Address Resolution Protocol (ARP) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers with a 20-Gbps Embedded Services Processor (ESP) installed could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service condition. The vulnerability is due to insufficient error handling when an affected device has reached platform limitations. An attacker could exploit this vulnerability by sending a malicious series of IP ARP messages to an affected device. A successful exploit could allow the attacker to exhaust system resources, which would eventually cause the affected device to reload.

Affected Platforms (CPE)

πŸ’»
Cisco

Ios Xe

= 16.3.1
πŸ’»
Cisco

Ios Xe

= 16.6.5
πŸ’»
Cisco

Ios Xe

= 16.7\(1\)
πŸ’»
Cisco

Ios Xe

= 17.1.1
πŸ’»
Cisco

Ios Xe

= 16.9.1
πŸ’»
Cisco

Ios Xe

= 17.4.1

References & Advisories

πŸ”— https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esp20-arp-dos-GvHVggqJ
πŸ”— https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esp20-arp-dos-GvHVggqJ

Related Vulnerabilities

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...

CVE-2019-1264310.0

A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote a...

CVE-2018-431010.0

An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10....

CVE-2019-1106310.0

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an...