Cyber Resilience

CVE-2022-20823

High

Published: 25 August 2022

Published
25 August 2022
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS Score 0.0064 71.1th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-20823 is a high-severity Buffer Over-read (CWE-126) vulnerability in Cisco Nexus 3016 Firmware. Its CVSS base score is 8.6 (High).

Operationally, ranked in the top 28.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete input validation of…

more

specific OSPFv3 packets. An attacker could exploit this vulnerability by sending a malicious OSPFv3 link-state advertisement (LSA) to an affected device. A successful exploit could allow the attacker to cause the OSPFv3 process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. Note: The OSPFv3 feature is disabled by default. To exploit this vulnerability, an attacker must be able to establish a full OSPFv3 neighbor state with an affected device. For more information about exploitation conditions, see the Details section of this advisory.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

cisco
nexus 3016 firmware
all versions
cisco
nexus 3016q firmware
all versions
cisco
nexus 3048 firmware
all versions
cisco
nexus 3064 firmware
all versions
cisco
nexus 3064-32t firmware
all versions
cisco
nexus 3064-t firmware
all versions
cisco
nexus 3064-x firmware
all versions
cisco
nexus 3064t firmware
all versions
cisco
nexus 3064x firmware
all versions
cisco
nexus 3100 firmware
all versions
+137 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References