CVE-2024-20496
CVE-2024-20496
Título es
CVE-2024-20496
Mié, 25/09/2024 – 17:15
Tipo
CWE-787
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2024-20496
Descripción en
A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system.
This vulnerability is due to incorrect handling of a specific type of malformed UDP packet. An attacker in a machine-in-the-middle position could exploit this vulnerability by sending crafted UDP packets to an affected device. A successful exploit could allow the attacker to cause the device to reboot, resulting in a DoS condition on the affected system.
25/09/2024
25/09/2024
Vector CVSS:3.1
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
Gravedad 3.1 (CVSS 3.1 Base Score)
6.10
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
MEDIUM
Referencias
Enviar en el boletín
Off
