CVE-2022-20625
4.3
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Exploitability: 2.8 / Impact: 1.4
Source: NVD
Description
A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in a denial of service (DoS) condition. This vulnerability is due to improper handling of Cisco Discovery Protocol messages that are processed by the Cisco Discovery Protocol service. An attacker could exploit this vulnerability by sending a series of malicious Cisco Discovery Protocol messages to an affected device. A successful exploit could allow the attacker to cause the Cisco Discovery Protocol service to fail and restart. In rare conditions, repeated failures of the process could occur, which could cause the entire device to restart.
Affected (8)
Products: Cisco: Firepower Extensible Operating System, Nx Os
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.3.1.219 |
| Running on/with | Platform Versions |
|---|---|
Cisco Firepower 4110 | All versions |
Cisco Firepower 4112 | All versions |
Cisco Firepower 4115 | All versions |
Cisco Firepower 4120 | All versions |
Cisco Firepower 4125 | All versions |
Cisco Firepower 4140 | All versions |
Cisco Firepower 4145 | All versions |
Cisco Firepower 4150 | All versions |
Cisco Firepower 9300 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 8.2(7.34) |
| Running on/with | Platform Versions |
|---|---|
Cisco Mds 9132t | All versions |
Cisco Mds 9148s | All versions |
Cisco Mds 9148t | All versions |
Cisco Mds 9222i | All versions |
Cisco Mds 9250i | All versions |
Cisco Mds 9396s | All versions |
Cisco Mds 9396t | All versions |
Cisco Mds 9506 | All versions |
Cisco Mds 9513 | All versions |
Cisco Mds 9706 | All versions |
Cisco Mds 9710 | All versions |
Cisco Mds 9718 | All versions |
Cisco N77 F312ck 26 | All versions |
Cisco N77 F324fq 25 | All versions |
Cisco N77 F348xp 23 | All versions |
Cisco N77 F430cq 36 | All versions |
Cisco N77 M312cq 26l | All versions |
Cisco N77 M324fq 25l | All versions |
Cisco N77 M348xp 23l | All versions |
Cisco N7k F248xp 25e | All versions |
Cisco N7k F306ck 25 | All versions |
Cisco N7k F312fq 25 | All versions |
Cisco N7k M202cf 22l | All versions |
Cisco N7k M206fq 23l | All versions |
Cisco N7k M224xp 23l | All versions |
Cisco N7k M324fq 25l | All versions |
Cisco N7k M348xp 25l | All versions |
Cisco Nexus 7000 10 Slot | All versions |
Cisco Nexus 7000 18 Slot | All versions |
Cisco Nexus 7000 4 Slot | All versions |
Cisco Nexus 7000 9 Slot | All versions |
Cisco Nexus 7000 Supervisor 1 | All versions |
Cisco Nexus 7000 Supervisor 2 | All versions |
Cisco Nexus 7000 Supervisor 2e | All versions |
Cisco Nexus 7700 10 Slot | All versions |
Cisco Nexus 7700 18 Slot | All versions |
Cisco Nexus 7700 2 Slot | All versions |
Cisco Nexus 7700 6 Slot | All versions |
Cisco Nexus 7700 Supervisor 2e | All versions |
Cisco Nexus 7700 Supervisor 3e | All versions |
Configuration C
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.3(8.15) |
| Running on/with | Platform Versions |
|---|---|
Cisco N9k C9316d Gx | All versions |
Cisco N9k C9332d Gx2b | All versions |
Cisco N9k C9348d Gx2a | All versions |
Cisco N9k C93600cd Gx | All versions |
Cisco N9k C9364d Gx2a | All versions |
Cisco Nexus 1000v | All versions |
Cisco Nexus 3048 | All versions |
Cisco Nexus 31108pc V | All versions |
Cisco Nexus 31108tc V | All versions |
Cisco Nexus 31128pq | All versions |
Cisco Nexus 3132c Z | All versions |
Cisco Nexus 3132q V | All versions |
Cisco Nexus 3132q X | All versions |
Cisco Nexus 3132q Xl | All versions |
Cisco Nexus 3164q | All versions |
Cisco Nexus 3172pq | All versions |
Cisco Nexus 3172pq Xl | All versions |
Cisco Nexus 3172tq Xl | All versions |
Cisco Nexus 3232c | All versions |
Cisco Nexus 3264c E | All versions |
Cisco Nexus 3264q | All versions |
Cisco Nexus 3408 S | All versions |
Cisco Nexus 34180yc | All versions |
Cisco Nexus 3432d S | All versions |
Cisco Nexus 3464c | All versions |
Cisco Nexus 3524 X | All versions |
Cisco Nexus 3524 Xl | All versions |
Cisco Nexus 3548 X | All versions |
Cisco Nexus 3548 Xl | All versions |
Cisco Nexus 36180yc R | All versions |
Cisco Nexus 3636c R | All versions |
Cisco Nexus 92160yc X | All versions |
Cisco Nexus 92300yc | All versions |
Cisco Nexus 92304qc | All versions |
Cisco Nexus 92348gc X | All versions |
Cisco Nexus 9236c | All versions |
Cisco Nexus 9272q | All versions |
Cisco Nexus 93108tc Ex | All versions |
Cisco Nexus 93108tc Fx | All versions |
Cisco Nexus 93108tc Fx3p | All versions |
Cisco Nexus 93120tx | All versions |
Cisco Nexus 93216tc Fx2 | All versions |
Cisco Nexus 9332c | All versions |
Cisco Nexus 9336c Fx2 | All versions |
Cisco Nexus 9336c Fx2 E | All versions |
Cisco Nexus 9348gc Fxp | All versions |
Cisco Nexus 9364c | All versions |
Cisco Nexus 9364c Gx | All versions |
Cisco Nexus 9504 | All versions |
Cisco Nexus 9508 | All versions |
Cisco Nexus 9516 | All versions |
Configuration E
Related CWEs
References (2)
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.