CVE-2020-3225

03.06.2020, 18:15

Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to insufficient input processing of CIP traffic. An attacker could exploit these vulnerabilities by sending crafted CIP traffic to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
cisco	CNA	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 82%

Vendor	Product	Version
cisco	ios	12.2\(44\)ex
cisco	ios	12.2\(44\)ex1
cisco	ios	12.2\(46\)se1
cisco	ios	12.2\(46\)se2
cisco	ios	12.2\(50\)se
cisco	ios	12.2\(50\)se1
cisco	ios	12.2\(50\)se2
cisco	ios	12.2\(50\)se3
cisco	ios	12.2\(50\)se4
cisco	ios	12.2\(50\)se5
cisco	ios	12.2\(52\)se
cisco	ios	12.2\(52\)se1
cisco	ios	12.2\(55\)se
cisco	ios	12.2\(55\)se3
cisco	ios	12.2\(55\)se4
cisco	ios	12.2\(55\)se5
cisco	ios	12.2\(55\)se6
cisco	ios	12.2\(55\)se7
cisco	ios	12.2\(55\)se9
cisco	ios	12.2\(55\)se10
cisco	ios	12.2\(55\)se11
cisco	ios	12.2\(55\)se12
cisco	ios	12.2\(55\)se13
cisco	ios	12.2\(55\)se13a
cisco	ios	12.2\(58\)se
cisco	ios	12.2\(58\)se1
cisco	ios	12.2\(58\)se2
cisco	ios	12.2\(60\)ez16
cisco	ios	15.0\(1\)ey
cisco	ios	15.0\(1\)ey1
cisco	ios	15.0\(1\)ey2
cisco	ios	15.0\(2\)ek
cisco	ios	15.0\(2\)ek1
cisco	ios	15.0\(2\)ex2
cisco	ios	15.0\(2\)ex8
cisco	ios	15.0\(2\)ey
cisco	ios	15.0\(2\)ey1
cisco	ios	15.0\(2\)ey2
cisco	ios	15.0\(2\)ey3
cisco	ios	15.0\(2\)se
cisco	ios	15.0\(2\)se1
cisco	ios	15.0\(2\)se2
cisco	ios	15.0\(2\)se3
cisco	ios	15.0\(2\)se4
cisco	ios	15.0\(2\)se5
cisco	ios	15.0\(2\)se6
cisco	ios	15.0\(2\)se7
cisco	ios	15.0\(2\)se8
cisco	ios	15.0\(2\)se9
cisco	ios	15.0\(2\)se10
cisco	ios	15.0\(2\)se10a
cisco	ios	15.0\(2\)se11
cisco	ios	15.0\(2\)se12
cisco	ios	15.0\(2\)se13
cisco	ios	15.0\(2\)se13a
cisco	ios	15.0\(2\)sg11a
cisco	ios	15.2\(1\)ey
cisco	ios	15.2\(2\)e
cisco	ios	15.2\(2\)e1
cisco	ios	15.2\(2\)e2
cisco	ios	15.2\(2\)e3
cisco	ios	15.2\(2\)e4
cisco	ios	15.2\(2\)e5
cisco	ios	15.2\(2\)e5a
cisco	ios	15.2\(2\)e5b
cisco	ios	15.2\(2\)e6
cisco	ios	15.2\(2\)e7
cisco	ios	15.2\(2\)e7b
cisco	ios	15.2\(2\)e8
cisco	ios	15.2\(2\)e9
cisco	ios	15.2\(2\)e10
cisco	ios	15.2\(2\)ea
cisco	ios	15.2\(2\)ea1
cisco	ios	15.2\(2\)ea2
cisco	ios	15.2\(2\)ea3
cisco	ios	15.2\(2\)eb
cisco	ios	15.2\(2\)eb1
cisco	ios	15.2\(2\)eb2
cisco	ios	15.2\(2b\)e
cisco	ios	15.2\(3\)e1
cisco	ios	15.2\(3\)e2
cisco	ios	15.2\(3\)e3
cisco	ios	15.2\(3\)e4
cisco	ios	15.2\(3\)e5
cisco	ios	15.2\(3\)ea
cisco	ios	15.2\(4\)e9
cisco	ios	15.2\(4\)e10
cisco	ios	15.2\(4\)ea
cisco	ios	15.2\(4\)ea1
cisco	ios	15.2\(4\)ea2
cisco	ios	15.2\(4\)ea3
cisco	ios	15.2\(4\)ea4
cisco	ios	15.2\(4\)ea5
cisco	ios	15.2\(4\)ea6
cisco	ios	15.2\(4\)ea7
cisco	ios	15.2\(4\)ea8
cisco	ios	15.2\(4\)ea9
cisco	ios	15.2\(4\)ec1
cisco	ios	15.2\(4\)ec2
cisco	ios	15.2\(4\)jaz
cisco	ios	15.2\(4\)jaz1
cisco	ios	15.2\(5\)e
cisco	ios	15.2\(5\)e1
cisco	ios	15.2\(5\)e2
cisco	ios	15.2\(5\)e2b
cisco	ios	15.2\(5\)e2c
cisco	ios	15.2\(5\)ea
cisco	ios	15.2\(5a\)e1
cisco	ios	15.2\(6\)e
cisco	ios	15.2\(6\)e0a
cisco	ios	15.2\(6\)e0c
cisco	ios	15.2\(6\)e1
cisco	ios	15.2\(6\)e1a
cisco	ios	15.2\(6\)e1s
cisco	ios	15.2\(6\)e2a
cisco	ios	15.2\(6\)e3
cisco	ios	15.2\(6\)eb
cisco	ios	15.2\(7\)e
cisco	ios	15.2\(7\)e0b
cisco	ios	15.2\(7\)e0s
cisco	ios	15.2\(7a\)e0b
cisco	ios	15.2\(7b\)e0b
cisco	ios	15.3\(3\)ja1
cisco	ios	15.3\(3\)ja1n
cisco	ios	15.3\(3\)ja4
cisco	ios	15.3\(3\)ja5
cisco	ios	15.3\(3\)ja6
cisco	ios	15.3\(3\)ja7
cisco	ios	15.3\(3\)ja8
cisco	ios	15.3\(3\)ja10
cisco	ios	15.3\(3\)ja11
cisco	ios	15.3\(3\)ja12
cisco	ios	15.3\(3\)jaa
cisco	ios	15.3\(3\)jaa1
cisco	ios	15.3\(3\)jax
cisco	ios	15.3\(3\)jax1
cisco	ios	15.3\(3\)jax2
cisco	ios	15.3\(3\)jb
cisco	ios	15.3\(3\)jbb
cisco	ios	15.3\(3\)jbb1
cisco	ios	15.3\(3\)jbb2
cisco	ios	15.3\(3\)jbb4
cisco	ios	15.3\(3\)jbb5
cisco	ios	15.3\(3\)jbb6
cisco	ios	15.3\(3\)jbb6a
cisco	ios	15.3\(3\)jbb8
cisco	ios	15.3\(3\)jc
cisco	ios	15.3\(3\)jc1
cisco	ios	15.3\(3\)jc2
cisco	ios	15.3\(3\)jc3
cisco	ios	15.3\(3\)jc4
cisco	ios	15.3\(3\)jc5
cisco	ios	15.3\(3\)jc6
cisco	ios	15.3\(3\)jc8
cisco	ios	15.3\(3\)jc9
cisco	ios	15.3\(3\)jc14
cisco	ios	15.3\(3\)jd
cisco	ios	15.3\(3\)jd2
cisco	ios	15.3\(3\)jd3
cisco	ios	15.3\(3\)jd4
cisco	ios	15.3\(3\)jd5
cisco	ios	15.3\(3\)jd6
cisco	ios	15.3\(3\)jd7
cisco	ios	15.3\(3\)jd8
cisco	ios	15.3\(3\)jd9
cisco	ios	15.3\(3\)jd11
cisco	ios	15.3\(3\)jd12
cisco	ios	15.3\(3\)jd13
cisco	ios	15.3\(3\)jd14
cisco	ios	15.3\(3\)jd16
cisco	ios	15.3\(3\)jd17
cisco	ios	15.3\(3\)je
cisco	ios	15.3\(3\)jf
cisco	ios	15.3\(3\)jf1
cisco	ios	15.3\(3\)jf2
cisco	ios	15.3\(3\)jf4
cisco	ios	15.3\(3\)jf5
cisco	ios	15.3\(3\)jf6
cisco	ios	15.3\(3\)jf7
cisco	ios	15.3\(3\)jf8
cisco	ios	15.3\(3\)jf9
cisco	ios	15.3\(3\)jf10
cisco	ios	15.3\(3\)jf13
cisco	ios	15.3\(3\)jf99
cisco	ios	15.3\(3\)jg
cisco	ios	15.3\(3\)jg1
cisco	ios	15.3\(3\)jh
cisco	ios	15.3\(3\)jh1
cisco	ios	15.3\(3\)ji1
cisco	ios	15.3\(3\)ji3
cisco	ios	15.3\(3\)ji4
cisco	ios	15.3\(3\)ji5
cisco	ios	15.3\(3\)jj
cisco	ios	15.3\(3\)jj1
cisco	ios	15.3\(3\)jk
cisco	ios	15.3\(3\)jk1a
cisco	ios	15.3\(3\)jk1t
cisco	ios	15.3\(3\)jk2a
cisco	ios	15.3\(3\)jk3
cisco	ios	15.3\(3\)jk99
cisco	ios	15.3\(3\)jn
cisco	ios	15.3\(3\)jn1
cisco	ios	15.3\(3\)jn2
cisco	ios	15.3\(3\)jn3
cisco	ios	15.3\(3\)jn4
cisco	ios	15.3\(3\)jn6
cisco	ios	15.3\(3\)jn7
cisco	ios	15.3\(3\)jn8
cisco	ios	15.3\(3\)jn9
cisco	ios	15.3\(3\)jn11
cisco	ios	15.3\(3\)jn13
cisco	ios	15.3\(3\)jn14
cisco	ios	15.3\(3\)jn15
cisco	ios	15.3\(3\)jnb
cisco	ios	15.3\(3\)jnb1
cisco	ios	15.3\(3\)jnb2
cisco	ios	15.3\(3\)jnb3
cisco	ios	15.3\(3\)jnb4
cisco	ios	15.3\(3\)jnb5
cisco	ios	15.3\(3\)jnb6
cisco	ios	15.3\(3\)jnc
cisco	ios	15.3\(3\)jnc1
cisco	ios	15.3\(3\)jnc2
cisco	ios	15.3\(3\)jnc3
cisco	ios	15.3\(3\)jnc4
cisco	ios	15.3\(3\)jnd
cisco	ios	15.3\(3\)jnd1
cisco	ios	15.3\(3\)jnd2
cisco	ios	15.3\(3\)jnd3
cisco	ios	15.3\(3\)jnp
cisco	ios	15.3\(3\)jnp1
cisco	ios	15.3\(3\)jnp3
cisco	ios	15.3\(3\)jpb
cisco	ios	15.3\(3\)jpb1
cisco	ios	15.3\(3\)jpc
cisco	ios	15.3\(3\)jpc1
cisco	ios	15.3\(3\)jpc2
cisco	ios	15.3\(3\)jpc3
cisco	ios	15.3\(3\)jpc5
cisco	ios	15.3\(3\)jpc99
cisco	ios	15.3\(3\)jpd
cisco	ios	15.3\(3\)jpi
cisco	ios	15.3\(3\)jpi3
cisco	ios	15.3\(3\)jpj
cisco	ios_xe	3.3.0xo:xo
cisco	ios_xe	3.3.1xo:xo
cisco	ios_xe	3.3.2xo:xo
cisco	ios_xe	3.6.5be:be
cisco	ios_xe	3.8.9e:e
cisco	ios_xe	3.8.10e:e
cisco	ios_xe	3.10.3e:e
cisco	ios_xe	16.3.9
cisco	ios_xe	16.3.10
cisco	ios_xe	16.6.7
cisco	ios_xe	16.6.7a:a
cisco	ios_xe	16.6.8
cisco	ios_xe	16.9.1
cisco	ios_xe	16.9.1d:d
cisco	ios_xe	16.9.4
cisco	ios_xe	16.9.4c:c
cisco	ios_xe	16.9.5
cisco	ios_xe	16.9.5f:f
cisco	ios_xe	16.10.1
cisco	ios_xe	16.10.1e:e
cisco	ios_xe	16.10.1g:g
cisco	ios_xe	16.10.2
cisco	ios_xe	16.10.3
cisco	ios_xe	16.11.1
cisco	ios_xe	16.11.1a:a
cisco	ios_xe	16.11.1b:b
cisco	ios_xe	16.11.1c:c
cisco	ios_xe	16.11.1s:s
cisco	ios_xe	16.12.1
cisco	ios_xe	16.12.1a:a
cisco	ios_xe	16.12.1c:c
cisco	ios_xe	16.12.1s:s
cisco	ios_xe	16.12.1t:t
cisco	ios_xe	16.12.1w:w

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cipdos-hkfTZXEx