ID
VAR-202006-1087
CVE
CVE-2020-3220
TITLE
Cisco IOS XE Inadequate validation of data reliability vulnerabilities in software
Trust: 0.8
sources:
JVNDB: JVNDB-2020-006343
DESCRIPTION
A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers could allow an unauthenticated, remote attacker to disconnect legitimate IPsec VPN sessions to an affected device. The vulnerability is due to insufficient verification of authenticity of received Encapsulating Security Payload (ESP) packets. An attacker could exploit this vulnerability by tampering with ESP cleartext values as a man-in-the-middle. Cisco IOS XE The software contains vulnerabilities to inadequate validation of data reliability.Service operation interruption (DoS) It may be put into a state. Cisco IOS XE is an operating system developed by Cisco for its network equipment
Trust: 1.71
sources:
NVD: CVE-2020-3220 //
JVNDB: JVNDB-2020-006343 //
VULHUB: VHN-181345
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1w | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.5.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.2s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.6 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1f | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.3h | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.4.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.5.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.4 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1c | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1e | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1c | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.4.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1c | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.5a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.2a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1d | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1d | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1c | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.4a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1d | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.4s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.4.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.5.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.5.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1e | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.5.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.4 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1t | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.5 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.7.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.11.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.11.1c | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.12.1y | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.3a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.10.1g | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.6.5b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1a | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.3s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.9.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.8.2 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.11.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.11.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 16.11.1b | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2020-006343 //
NVD: CVE-2020-3220
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-181345 //
JVNDB: JVNDB-2020-006343 //
CNNVD: CNNVD-202006-350 //
NVD: CVE-2020-3220 //
NVD: CVE-2020-3220
PROBLEMTYPE DATA
| problemtype: | CWE-345 | Trust: 1.9 |
sources:
VULHUB: VHN-181345 //
JVNDB: JVNDB-2020-006343 //
NVD: CVE-2020-3220
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202006-350
TYPE
data forgery
Trust: 0.6
sources:
CNNVD: CNNVD-202006-350
CONFIGURATIONS
sources:
JVNDB: JVNDB-2020-006343
PATCH
| title: | cisco-sa-iosxe-vpn-dos-edOmW28Z | url: | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-vpn-dos-edOmW28Z | Trust: 0.8 |
| title: | Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers IOS XE Repair measures for data forgery problem vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=120249 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2020-006343 //
CNNVD: CNNVD-202006-350
EXTERNAL IDS
| db: | NVD | id: | CVE-2020-3220 | Trust: 2.5 |
| db: | JVNDB | id: | JVNDB-2020-006343 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202006-350 | Trust: 0.7 |
| db: | AUSCERT | id: | ESB-2020.1941 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-181345 | Trust: 0.1 |
sources:
VULHUB: VHN-181345 //
JVNDB: JVNDB-2020-006343 //
CNNVD: CNNVD-202006-350 //
NVD: CVE-2020-3220
REFERENCES
| url: | https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-iosxe-vpn-dos-edomw28z | Trust: 1.7 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2020-3220 | Trust: 1.4 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-3220 | Trust: 0.8 |
| url: | https://vigilance.fr/vulnerability/cisco-ios-xe-multiple-vulnerabilities-32421 | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.1941/ | Trust: 0.6 |
sources:
VULHUB: VHN-181345 //
JVNDB: JVNDB-2020-006343 //
CNNVD: CNNVD-202006-350 //
NVD: CVE-2020-3220
SOURCES
| db: | VULHUB | id: | VHN-181345 |
| db: | JVNDB | id: | JVNDB-2020-006343 |
| db: | CNNVD | id: | CNNVD-202006-350 |
| db: | NVD | id: | CVE-2020-3220 |
LAST UPDATE DATE
2024-11-23T21:34:49.190000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-181345 | date: | 2020-06-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-006343 | date: | 2020-07-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-202006-350 | date: | 2020-06-11T00:00:00 |
| db: | NVD | id: | CVE-2020-3220 | date: | 2024-11-21T05:30:35.417 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-181345 | date: | 2020-06-03T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-006343 | date: | 2020-07-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-202006-350 | date: | 2020-06-03T00:00:00 |
| db: | NVD | id: | CVE-2020-3220 | date: | 2020-06-03T18:15:19.997 |