CVE-2020-7121
Last modified
CVE-2020-7121 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of the LLDP (Link Layer Discovery Protocol) process in the switch. EPSS estimates a 0.99% chance of exploitation in the next 30 days.
Description
Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of the LLDP (Link Layer Discovery Protocol) process in the switch. This applies to firmware versions prior to 10.04.3021.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Arubanetworks | Cx 6200f Firmware | <= 10.04.3021 |
| Arubanetworks | Cx 6300 Firmware | <= 10.04.3021 |
| Arubanetworks | Cx 6400 Firmware | <= 10.04.3021 |
| Arubanetworks | Cx 8320 Firmware | <= 10.04.3021 |
| Arubanetworks | Cx 8325 Firmware | <= 10.04.3021 |
| Arubanetworks | Cx 8400 Firmware | <= 10.04.3021 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-7121?
How severe is CVE-2020-7121?
How do I fix CVE-2020-7121?
Are you affected by CVE-2020-7121?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST