What is CVE-2023-20080?

CVE-2023-20080 is a high-severity vulnerability in Cisco Ios, classified under Improper Validation of Array Index. CVSS score: 8.6/10. Published 2023-03-23.

How severe is CVE-2023-20080?

High severity. CVSS v3 base score is 8.6 out of 10.

Vulnerability in Cisco Ios

CVE-2023-20080

A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to ins…

EPSS: 0.003 (51.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Cisco Ios — versions n/a

Weakness classification (CWE)

CWE-129 — Improper Validation of Array Index

References

20230322 Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability (vendor-advisory)

Frequently asked questions

What is CVE-2023-20080?: CVE-2023-20080 is a high-severity vulnerability in Cisco Ios, classified under Improper Validation of Array Index. CVSS score: 8.6/10. Published 2023-03-23.
How severe is CVE-2023-20080?: High severity. CVSS v3 base score is 8.6 out of 10.