CVE-2022-20823
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
25/08/2022
Last modified:
07/11/2023
Description
A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete input validation of specific OSPFv3 packets. An attacker could exploit this vulnerability by sending a malicious OSPFv3 link-state advertisement (LSA) to an affected device. A successful exploit could allow the attacker to cause the OSPFv3 process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. Note: The OSPFv3 feature is disabled by default. To exploit this vulnerability, an attacker must be able to establish a full OSPFv3 neighbor state with an affected device. For more information about exploitation conditions, see the Details section of this advisory.
Impact
Base Score 3.x
8.60
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:h:cisco:nexus_3016:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3016_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3016q:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3016q_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3048:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3048_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3064:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3064_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3064-32t:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3064-32t_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3064-t:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3064-t_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3064-x:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nexus_3064-x_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3064t:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page