CVE-2022-20717

A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient memory management when an affected device receives large amounts of traffic. An attacker could exploit this vulnerability by sending malicious traffic to an affected device. A successful exploit could allow the attacker to cause the device to crash, resulting in a DoS condition.

Severity	MEDIUM
CVSS	5.5
CWE	CWE-789
KEV
Published	4 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco vEdge Routers	cisco-sa-sdwan-vedge-dos-jerVm4bB
Cisco SD-WAN	cisco-sa-sdwan-vedge-dos-jerVm4bB
Cisco RV Series Routers	cisco-sa-sdwan-vedge-dos-jerVm4bB
Cisco Nexus Dashboard	cisco-sa-sdwan-vedge-dos-jerVm4bB
Cisco Catalyst SD-WAN Software	cisco-sa-sdwan-vedge-dos-jerVm4bB
Cisco SD-WAN vEdge Router	cisco-sa-sdwan-vedge-dos-jerVm4bB