What is CVE-2020-3422?

CVE-2020-3422 is a high-severity vulnerability in Cisco Ios Xe Software, classified under CWE-371. CVSS score: 8.6/10. Published 2020-09-24.

How severe is CVE-2020-3422?

High severity. CVSS v3 base score is 8.6 out of 10.

Vulnerability in Cisco Ios Xe Software

CVE-2020-3422

A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing port, resulting in a denial of service (D…

EPSS: 0.010 (77.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Cisco Ios Xe Software — versions n/a

Weakness classification (CWE)

CWE-371

References

20200924 Cisco IOS XE Software IP Service Level Agreements Denial of Service Vulnerability (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2020-3422?: CVE-2020-3422 is a high-severity vulnerability in Cisco Ios Xe Software, classified under CWE-371. CVSS score: 8.6/10. Published 2020-09-24.
How severe is CVE-2020-3422?: High severity. CVSS v3 base score is 8.6 out of 10.