CVE-2020-3385
Cisco SD-WAN vEdge Routers Denial of Service Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient handling of malformed packets. An attacker could exploit this vulnerability by sending crafted packets through an affected device. A successful exploit could allow the attacker to cause the device to reboot, resulting in a DoS condition.
Una vulnerabilidad en el motor deep packet inspection (DPI) de Cisco SD-WAN vEdge Routers podría permitir a un atacante adyacente no autenticado causar una condición de denegación de servicio (DoS) sobre un sistema afectado. La vulnerabilidad es debido al manejo insuficiente de los paquetes malformados. Un atacante podría explotar esta vulnerabilidad mediante el envío de paquetes diseñados a través de un dispositivo afectado. Una explotación con éxito podría permitir al atacante causar que el dispositivo se reinicie, resultando en una condición DoS
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2019-12-12 CVE Reserved
- 2020-07-16 CVE Published
- 2023-04-01 EPSS Updated
- 2024-11-15 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-371: State Issues
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Sd-wan Firmware Search vendor "Cisco" for product "Sd-wan Firmware" | <= 18.3.0 Search vendor "Cisco" for product "Sd-wan Firmware" and version " <= 18.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Vedge 5000 Search vendor "Cisco" for product "Vedge 5000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Firmware Search vendor "Cisco" for product "Sd-wan Firmware" | >= 18.4.0 < 18.4.5 Search vendor "Cisco" for product "Sd-wan Firmware" and version " >= 18.4.0 < 18.4.5" | - |
Affected
| in | Cisco Search vendor "Cisco" | Vedge 5000 Search vendor "Cisco" for product "Vedge 5000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Firmware Search vendor "Cisco" for product "Sd-wan Firmware" | >= 19.2.0 < 19.2.3 Search vendor "Cisco" for product "Sd-wan Firmware" and version " >= 19.2.0 < 19.2.3" | - |
Affected
| in | Cisco Search vendor "Cisco" | Vedge 5000 Search vendor "Cisco" for product "Vedge 5000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Firmware Search vendor "Cisco" for product "Sd-wan Firmware" | >= 19.3.0 < 20.1.1 Search vendor "Cisco" for product "Sd-wan Firmware" and version " >= 19.3.0 < 20.1.1" | - |
Affected
| in | Cisco Search vendor "Cisco" | Vedge 5000 Search vendor "Cisco" for product "Vedge 5000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Vedge Cloud Router Search vendor "Cisco" for product "Vedge Cloud Router" | - | - |
Affected
| ||||||