What is CVE-2020-3426?

CVE-2020-3426 is a high-severity vulnerability in Cisco 1120_connected_grid_router, classified under CWE-264. CVSS score: 7.5/10. Published 2020-09-24.

How severe is CVE-2020-3426?

High severity. CVSS v3 base score is 7.5 out of 10.

Is CVE-2020-3426 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Improper input validation in Cisco 1120_connected_grid_router

CVE-2020-3426

A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) c…

EPSS: 0.022 (80.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Weakness classification (CWE)

Public proof-of-concept exploits

n0-traces/cve_

References

psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2020-3426?: CVE-2020-3426 is a high-severity vulnerability in Cisco 1120_connected_grid_router, classified under CWE-264. CVSS score: 7.5/10. Published 2020-09-24.
How severe is CVE-2020-3426?: High severity. CVSS v3 base score is 7.5 out of 10.
Is CVE-2020-3426 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.