1. Home
  2. CVE Database
  3. CVE-2020-3465
HIGH · 7.4

CVE-2020-3465

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical...

Vulnerability Description

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending the Ethernet frames onto the Ethernet segment. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.

CVSS Score

7.4

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
CiscoIos Xe16.6.9
Cisco1100-4P-
Cisco1100-8P-
Cisco1100 Terminal Services Gateways-
Cisco1101-4P-
Cisco1109-2P-
Cisco1109-4P-
Cisco1111X-8P-
Cisco4221 Integrated Services Router-
Cisco4331 Integrated Services Router-
Cisco4431 Integrated Services Router-
Cisco4461 Integrated Services Router-
Cisco9800-Cl-
Cisco9800-L-
CiscoCsr 1000V-
CiscoEsr6300-
CiscoIr 1101-
CiscoIsrv-
CiscoVg400-

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2020-3465?

CVE-2020-3465 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical...

How severe is CVE-2020-3465?

CVE-2020-3465 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-3465?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xe, Cisco 1100-4P, Cisco 1100-8P, Cisco 1100 Terminal Services Gateways, Cisco 1101-4P.