CVE-2022-20717
Cisco SD-WAN vEdge Routers Denial of Service Vulnerability
Severity Score
5.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient memory management when an affected device receives large amounts of traffic. An attacker could exploit this vulnerability by sending malicious traffic to an affected device. A successful exploit could allow the attacker to cause the device to crash, resulting in a DoS condition.
Una vulnerabilidad en el proceso NETCONF de los routers Cisco SD-WAN vEdge podría permitir a un atacante local autenticado causar a un dispositivo afectado quedarse sin memoria, resultando en una condición de denegación de servicio (DoS). Esta vulnerabilidad es debido a una administración insuficiente de la memoria cuando un dispositivo afectado recibe grandes cantidades de tráfico. Un atacante podría explotar esta vulnerabilidad mediante el envío de tráfico malicioso a un dispositivo afectado. Una explotación con éxito podría permitir al atacante causar un bloqueo del dispositivo, resultando en una condición de DoS
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-11-02 CVE Reserved
- 2022-04-15 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-770: Allocation of Resources Without Limits or Throttling
- CWE-789: Memory Allocation with Excessive Size Value
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Cisco Search vendor "Cisco" | 1100 Integrated Services Router Search vendor "Cisco" for product "1100 Integrated Services Router" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 1000 Search vendor "Citrix" for product "Sd-wan 1000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 110 Search vendor "Citrix" for product "Sd-wan 110" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 1100 Search vendor "Citrix" for product "Sd-wan 1100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 2000 Search vendor "Citrix" for product "Sd-wan 2000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 210 Search vendor "Citrix" for product "Sd-wan 210" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 2100 Search vendor "Citrix" for product "Sd-wan 2100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | <= 20.6 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version " <= 20.6" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 5100 Search vendor "Citrix" for product "Sd-wan 5100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Cisco Search vendor "Cisco" | 1100 Integrated Services Router Search vendor "Cisco" for product "1100 Integrated Services Router" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 1000 Search vendor "Citrix" for product "Sd-wan 1000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 110 Search vendor "Citrix" for product "Sd-wan 110" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 1100 Search vendor "Citrix" for product "Sd-wan 1100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 2000 Search vendor "Citrix" for product "Sd-wan 2000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 210 Search vendor "Citrix" for product "Sd-wan 210" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 2100 Search vendor "Citrix" for product "Sd-wan 2100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Sd-wan Vedge Router Search vendor "Cisco" for product "Sd-wan Vedge Router" | 20.7 Search vendor "Cisco" for product "Sd-wan Vedge Router" and version "20.7" | - |
Affected
| in | Citrix Search vendor "Citrix" | Sd-wan 5100 Search vendor "Citrix" for product "Sd-wan 5100" | - | - |
Safe
|