Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-3220

A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers could allow an unauthenticated, remote attacker to disconnect legitimate IPsec VPN sessions to an affected device. The vulnerability is due to insufficient verification of authenticity of received Encapsulating Security Payload (ESP) packets. An attacker could exploit this vulnerability by tampering with ESP cleartext values as a man-in-the-middle.

Published

2020-06-03T18:15:19.997

Last Modified

2024-11-21T05:30:35.417

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

8.6

Impact Score

6.9

Weaknesses

Type: Secondary
CWE-345
Type: Primary
CWE-345

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xe	16.4.1	Yes
Operating System	cisco	ios_xe	16.4.2	Yes
Operating System	cisco	ios_xe	16.4.3	Yes
Operating System	cisco	ios_xe	16.5.1	Yes
Operating System	cisco	ios_xe	16.5.1a	Yes
Operating System	cisco	ios_xe	16.5.1b	Yes
Operating System	cisco	ios_xe	16.5.2	Yes
Operating System	cisco	ios_xe	16.5.3	Yes
Operating System	cisco	ios_xe	16.6.1	Yes
Operating System	cisco	ios_xe	16.6.2	Yes
Operating System	cisco	ios_xe	16.6.3	Yes
Operating System	cisco	ios_xe	16.6.4	Yes
Operating System	cisco	ios_xe	16.6.4a	Yes
Operating System	cisco	ios_xe	16.6.4s	Yes
Operating System	cisco	ios_xe	16.6.5	Yes
Operating System	cisco	ios_xe	16.6.5a	Yes
Operating System	cisco	ios_xe	16.6.5b	Yes
Operating System	cisco	ios_xe	16.6.6	Yes
Operating System	cisco	ios_xe	16.7.1	Yes
Operating System	cisco	ios_xe	16.7.1a	Yes
Operating System	cisco	ios_xe	16.7.1b	Yes
Operating System	cisco	ios_xe	16.7.2	Yes
Operating System	cisco	ios_xe	16.7.3	Yes
Operating System	cisco	ios_xe	16.7.4	Yes
Operating System	cisco	ios_xe	16.8.1	Yes
Operating System	cisco	ios_xe	16.8.1a	Yes
Operating System	cisco	ios_xe	16.8.1b	Yes
Operating System	cisco	ios_xe	16.8.1c	Yes
Operating System	cisco	ios_xe	16.8.1d	Yes
Operating System	cisco	ios_xe	16.8.1e	Yes
Operating System	cisco	ios_xe	16.8.1s	Yes
Operating System	cisco	ios_xe	16.8.2	Yes
Operating System	cisco	ios_xe	16.8.3	Yes
Operating System	cisco	ios_xe	16.9.1	Yes
Operating System	cisco	ios_xe	16.9.1a	Yes
Operating System	cisco	ios_xe	16.9.1b	Yes
Operating System	cisco	ios_xe	16.9.1c	Yes
Operating System	cisco	ios_xe	16.9.1d	Yes
Operating System	cisco	ios_xe	16.9.1s	Yes
Operating System	cisco	ios_xe	16.9.2	Yes
Operating System	cisco	ios_xe	16.9.2a	Yes
Operating System	cisco	ios_xe	16.9.2s	Yes
Operating System	cisco	ios_xe	16.9.3	Yes
Operating System	cisco	ios_xe	16.9.3a	Yes
Operating System	cisco	ios_xe	16.9.3h	Yes
Operating System	cisco	ios_xe	16.9.3s	Yes
Operating System	cisco	ios_xe	16.10.1	Yes
Operating System	cisco	ios_xe	16.10.1a	Yes
Operating System	cisco	ios_xe	16.10.1b	Yes
Operating System	cisco	ios_xe	16.10.1c	Yes
Operating System	cisco	ios_xe	16.10.1d	Yes
Operating System	cisco	ios_xe	16.10.1e	Yes
Operating System	cisco	ios_xe	16.10.1f	Yes
Operating System	cisco	ios_xe	16.10.1g	Yes
Operating System	cisco	ios_xe	16.10.1s	Yes
Operating System	cisco	ios_xe	16.10.2	Yes
Operating System	cisco	ios_xe	16.11.1	Yes
Operating System	cisco	ios_xe	16.11.1a	Yes
Operating System	cisco	ios_xe	16.11.1b	Yes
Operating System	cisco	ios_xe	16.11.1c	Yes
Operating System	cisco	ios_xe	16.11.1s	Yes
Operating System	cisco	ios_xe	16.12.1	Yes
Operating System	cisco	ios_xe	16.12.1a	Yes
Operating System	cisco	ios_xe	16.12.1c	Yes
Operating System	cisco	ios_xe	16.12.1s	Yes
Operating System	cisco	ios_xe	16.12.1t	Yes
Operating System	cisco	ios_xe	16.12.1w	Yes
Operating System	cisco	ios_xe	16.12.1y	Yes

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-vpn-dos-edOmW28Z Patch, Vendor Advisory ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-vpn-dos-edOmW28Z Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)