1. Home
  2. CVE Database
  3. CVE-2022-20731
MEDIUM · 4.6

CVE-2022-20731

Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently...

Vulnerability Description

Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS Score

4.6

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
CiscoCatalyst Digital Building Series Switches Firmware<= 15.2\(7\)e
CiscoIos Rommon-
CiscoCatalyst Digital Building Series Switches-

Related Weaknesses (CWE)

CWE-1221CWE-665

References

FAQ

What is CVE-2022-20731?

CVE-2022-20731 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently...

How severe is CVE-2022-20731?

CVE-2022-20731 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-20731?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Catalyst Digital Building Series Switches Firmware, Cisco Ios Rommon, Cisco Catalyst Digital Building Series Switches.