CVE-2020-3334

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 06-05-2020 07:15

Last modified: - 21-11-2022 03:37

Total changes: - 2

Description

A vulnerability in the ARP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Security Appliances could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect processing of ARP packets received by the management interface of an affected device. An attacker could exploit this vulnerability by sending a series of unicast ARP packets in a short timeframe that would reach the management interface of an affected device. A successful exploit could allow the attacker to consume resources on an affected device, which would prevent the device from sending internal system keepalives and eventually cause the device to reload, resulting in a denial of service (DoS) condition.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Low

Attack complexity

Adjacent

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Changed

Scope

None

User interaction

7.4

Base score

2.8

4.0

Exploitability score

Impact score

Verification logic

Reference

20200506 Cisco Firepower 2100 Series Security Appliances ARP Denial of Service Vulnerability-Vendor Advisory

Keywords

NVD

CVE-2020-3334

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.