Vulnslist

find the latest Cisco vulnerabilities

Cisco SD-WAN vEdge Routers Denial of Service Vulnerability

cisco-sa-sdwan-vedge-dos-jerVm4bB · Medium · Published · Updated

A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient memory management when an affected device receives large amounts of traffic. An attacker could exploit this vulnerability by sending malicious traffic to an affected device. A successful exploit could allow the attacker to cause the device to crash, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vedge-dos-jerVm4bB

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2022-20717
Cisco Bug IDsCSCvt55609
CVSS ScoreBase 5.5
Base 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco SD-WAN vEdge Router

CSAF Product Statuses

Product Status Source CVE Rows
Cisco SD-WAN vEdge Router known_affected cisco_csaf CVE-2022-20717 1

Related Products

Product CVE Evidence
Cisco SD-WAN vEdge Router CVE-2022-20717 Cisco OpenVuln
Cisco SD-WAN CVE-2022-20717 Cisco OpenVuln
Cisco vEdge Routers CVE-2022-20717 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2022-20717 Cisco OpenVuln