Strix
26.1K

CVE-2022-20824

HIGHCVSS 8.8/10EPSS 0.37%

Last modified

CVE-2022-20824 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper input validation of specific values that are within a Cisco Discovery Protocol message. EPSS estimates a 0.37% chance of exploitation in the next 30 days.

Description

A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper input validation of specific values that are within a Cisco Discovery Protocol message. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. A successful exploit could allow the attacker to execute arbitrary code with root privileges or cause the Cisco Discovery Protocol process to crash and restart multiple times, which would cause the affected device to reload, resulting in a DoS condition. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Metrics

CVSS 3.1
8.8/10

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.37%

28.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoMds 9506 FirmwareAll versions
CiscoMds 9513 FirmwareAll versions
CiscoMds 9706 FirmwareAll versions
CiscoMds 9710 FirmwareAll versions
CiscoMds 9718 FirmwareAll versions
CiscoNexus 1000v FirmwareAll versions
CiscoNexus 3016 FirmwareAll versions
CiscoNexus 3016q FirmwareAll versions
CiscoNexus 3048 FirmwareAll versions
CiscoNexus 3064 FirmwareAll versions
CiscoNexus 3064-32t FirmwareAll versions
CiscoNexus 3064-T FirmwareAll versions
CiscoNexus 3064-X FirmwareAll versions
CiscoNexus 3064t FirmwareAll versions
CiscoNexus 3064x FirmwareAll versions
CiscoNexus 3100 FirmwareAll versions
CiscoNexus 3100-V FirmwareAll versions
CiscoNexus 3100-Z FirmwareAll versions
CiscoNexus 3100v FirmwareAll versions
CiscoNexus 31108pc-V FirmwareAll versions
CiscoNexus 31108pv-V FirmwareAll versions
CiscoNexus 31108tc-V FirmwareAll versions
CiscoNexus 31128pq FirmwareAll versions
CiscoNexus 3132c-Z FirmwareAll versions
CiscoNexus 3132q FirmwareAll versions
CiscoNexus 3132q-V FirmwareAll versions
CiscoNexus 3132q-X FirmwareAll versions
CiscoNexus 3132q-X\/3132q-Xl FirmwareAll versions
CiscoNexus 3132q-Xl FirmwareAll versions
CiscoNexus 3164q FirmwareAll versions
CiscoNexus 3172 FirmwareAll versions
CiscoNexus 3172pq FirmwareAll versions
CiscoNexus 3172pq-Xl FirmwareAll versions
CiscoNexus 3172pq\/Pq-Xl FirmwareAll versions
CiscoNexus 3172tq FirmwareAll versions
CiscoNexus 3172tq-32t FirmwareAll versions
CiscoNexus 3172tq-Xl FirmwareAll versions
CiscoNexus 3200 FirmwareAll versions
CiscoNexus 3232c FirmwareAll versions
CiscoNexus 3232c FirmwareAll versions
CiscoNexus 3264c-E FirmwareAll versions
CiscoNexus 3264q FirmwareAll versions
CiscoNexus 3400 FirmwareAll versions
CiscoNexus 3408-S FirmwareAll versions
CiscoNexus 34180yc FirmwareAll versions
CiscoNexus 34200yc-Sm FirmwareAll versions
CiscoNexus 3432d-S FirmwareAll versions
CiscoNexus 3464c FirmwareAll versions
CiscoNexus 3524 FirmwareAll versions
CiscoNexus 3524-X FirmwareAll versions

Showing 50 of 144 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-20824?
A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper input validation of specific values that are within a Cisco Discovery Protocol message. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. A successful exploit could allow the attacker to execute arbitrary code with root privileges or cause the Cisco Discovery Protocol process to crash and restart multiple times, which would cause the affected device to reload, resulting in a DoS condition. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).
How severe is CVE-2022-20824?
CVE-2022-20824 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 0.37% probability of exploitation in the next 30 days.
How do I fix CVE-2022-20824?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-20824?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST