CVE-2020-10136

IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.

Severity	MEDIUM
CVSS	5.3
CWE	CWE-290
KEV
Published	5 years ago
Modified	6 months ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco Nexus Dashboard	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco Unified Computing System (Managed)	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco Nexus 7000 Series Switches	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco Nexus 6000 Series Switches	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco Nexus 5000 Series Switches	cisco-sa-nxos-ipip-dos-kCT9X4
Cisco NX-OS Software	cisco-sa-nxos-ipip-dos-kCT9X4