CVE-2020-3527

CVE Database · CVE-2020-3527

CVE-2020-3527

· HIGHModified

CVSS v3.1

8.6

EPSS

1.36%

Published

Sep 24, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to crash the device. The vulnerability is due to insufficient packet size validation. An attacker could exploit this vulnerability by sending jumbo frames or frames larger than the configured MTU size to the management interface of this device. A successful exploit could allow the attacker to crash the device fully before an automatic recovery.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-20CWE-400

Affected Products (14)

cisco · ios_xe (up to 16.9.5)vulnerable

cisco · ios_xe (up to 16.12.3)vulnerable

cisco · catalyst_c9200l-24p-4g

cisco · catalyst_c9200l-24p-4x

cisco · catalyst_c9200l-24pxg-2y

cisco · catalyst_c9200l-24pxg-4x

cisco · catalyst_c9200l-24t-4g

cisco · catalyst_c9200l-24t-4x

cisco · catalyst_c9200l-48p-4g

cisco · catalyst_c9200l-48p-4x

cisco · catalyst_c9200l-48pxg-2y

cisco · catalyst_c9200l-48pxg-4x

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-JP-DOS-g5FfGm8y

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-JP-DOS-g5FfGm8y

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs