What is CVE-2020-3181?

CVE-2020-3181 is a medium-severity vulnerability in Cisco Email Security Appliance (Esa), classified under Uncontrolled Resource Consumption. CVSS score: 6.5/10. Published 2020-03-04.

How severe is CVE-2020-3181?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Resource exhaustion in Cisco Email Security Appliance (Esa)

CVE-2020-3181

A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection (AMP) in Cisco AsyncOS Software for Cisco Email Security Appliances (ESAs) could allow an unauthenticated remote attacker to exhaust resources on a…

Vulnerability class: DoS (Denial of Service)

EPSS: 0.005 (67.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L.

Affected products

Cisco Email Security Appliance (Esa) — versions unspecified

Weakness classification (CWE)

CWE-400 — Uncontrolled Resource Consumption

References

20200304 Cisco Email Security Appliance Uncontrolled Resource Exhaustion Vulnerability (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2020-3181?: CVE-2020-3181 is a medium-severity vulnerability in Cisco Email Security Appliance (Esa), classified under Uncontrolled Resource Consumption. CVSS score: 6.5/10. Published 2020-03-04.
How severe is CVE-2020-3181?: Medium severity. CVSS v3 base score is 6.5 out of 10.