CVE-2020-3422
Summary
| CVE | CVE-2020-3422 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-09-24 18:15:00 UTC |
| Updated | 2023-05-22 18:57:00 UTC |
| Description | A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing port, resulting in a denial of service (DoS) condition. The vulnerability exists because the IP SLA responder could consume a port that could be used by another feature. An attacker could exploit this vulnerability by sending specific IP SLA control packets to the IP SLA responder on an affected device. The control packets must include the port number that could be used by another configured feature. A successful exploit could allow the attacker to cause an in-use port to be consumed by the IP SLA responder, impacting the feature that was using the port and resulting in a DoS condition. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | 1100 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 1101 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 1109 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 1111x Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 111x Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 1120 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 1160 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 4221 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 4331 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 4431 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | 4461 Integrated Services Router | - | All | All | All |
| Hardware | Cisco | Asr 1001-hx | - | All | All | All |
| Hardware | Cisco | Asr 1001-hx | - | All | All | All |
| Hardware | Cisco | Asr 1001-x | - | All | All | All |
| Hardware | Cisco | Asr 1001-x | - | All | All | All |
| Hardware | Cisco | Asr 1002-hx | - | All | All | All |
| Hardware | Cisco | Asr 1002-hx | - | All | All | All |
| Hardware | Cisco | Asr 1002-x | - | All | All | All |
| Hardware | Cisco | Asr 1002-x | - | All | All | All |
| Hardware | Cisco | Asr 1004 | - | All | All | All |
| Hardware | Cisco | Asr 1004 | - | All | All | All |
| Hardware | Cisco | Asr 1006 | - | All | All | All |
| Hardware | Cisco | Asr 1006 | - | All | All | All |
| Hardware | Cisco | Asr 1006-x | - | All | All | All |
| Hardware | Cisco | Asr 1006-x | - | All | All | All |
| Hardware | Cisco | Asr 1009-x | - | All | All | All |
| Hardware | Cisco | Asr 1009-x | - | All | All | All |
| Hardware | Cisco | Asr 1013 | - | All | All | All |
| Hardware | Cisco | Asr 1013 | - | All | All | All |
| Hardware | Cisco | Catalyst 3650 | - | All | All | All |
| Hardware | Cisco | Catalyst 3650 | - | All | All | All |
| Hardware | Cisco | Catalyst 3850 | - | All | All | All |
| Hardware | Cisco | Catalyst 3850 | - | All | All | All |
| Hardware | Cisco | Catalyst 9200 | - | All | All | All |
| Hardware | Cisco | Catalyst 9200 | - | All | All | All |
| Hardware | Cisco | Catalyst 9300 | - | All | All | All |
| Hardware | Cisco | Catalyst 9300 | - | All | All | All |
| Hardware | Cisco | Catalyst 9400 | - | All | All | All |
| Hardware | Cisco | Catalyst 9400 | - | All | All | All |
| Hardware | Cisco | Catalyst 9500 | - | All | All | All |
| Hardware | Cisco | Catalyst 9500 | - | All | All | All |
| Hardware | Cisco | Catalyst 9600 | - | All | All | All |
| Hardware | Cisco | Catalyst 9600 | - | All | All | All |
| Hardware | Cisco | Catalyst 9800 | - | All | All | All |
| Hardware | Cisco | Catalyst 9800 | - | All | All | All |
| Hardware | Cisco | Csr 1000v | - | All | All | All |
| Hardware | Cisco | Csr 1000v | - | All | All | All |
| Operating System | Cisco | Ios Xe | 16.9.3 | All | All | All |
| Operating System | Cisco | Ios Xe | 16.9.3 | All | All | All |
| Hardware | Cisco | Isr 1100 | - | All | All | All |
| Hardware | Cisco | Isr 1100 | - | All | All | All |
| Hardware | Cisco | Isr 1101 | - | All | All | All |
| Hardware | Cisco | Isr 1101 | - | All | All | All |
| Hardware | Cisco | Isr 1109 | - | All | All | All |
| Hardware | Cisco | Isr 1109 | - | All | All | All |
| Hardware | Cisco | Isr 1111x | - | All | All | All |
| Hardware | Cisco | Isr 1111x | - | All | All | All |
| Hardware | Cisco | Isr 111x | - | All | All | All |
| Hardware | Cisco | Isr 111x | - | All | All | All |
| Hardware | Cisco | Isr 1120 | - | All | All | All |
| Hardware | Cisco | Isr 1120 | - | All | All | All |
| Hardware | Cisco | Isr 1160 | - | All | All | All |
| Hardware | Cisco | Isr 1160 | - | All | All | All |
| Hardware | Cisco | Isr 4221 | - | All | All | All |
| Hardware | Cisco | Isr 4221 | - | All | All | All |
| Hardware | Cisco | Isr 4331 | - | All | All | All |
| Hardware | Cisco | Isr 4331 | - | All | All | All |
| Hardware | Cisco | Isr 4431 | - | All | All | All |
| Hardware | Cisco | Isr 4431 | - | All | All | All |
| Hardware | Cisco | Isr 4461 | - | All | All | All |
| Hardware | Cisco | Isr 4461 | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco IOS XE Software IP Service Level Agreements Denial of Service Vulnerability | CISCO | tools.cisco.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.