Main Vulnerability Database Vulnerabilities #VU28763

#VU28763 Insufficient verification of data authenticity in Cisco IOS XE - CVE-2020-3220

Published: June 5, 2020

Vulnerability identifier: #VU28763

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2020-3220

CWE-ID: CWE-345

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Cisco IOS XE

Software vendor:
Cisco Systems, Inc

Description

The vulnerability allows a remote attacker to disconnect legitimate IPsec VPN sessions to an affected device.

The vulnerability exists due to insufficient verification of authenticity of received Encapsulating Security Payload (ESP) packets. A remote attacker can tamper with ESP cleartext values as a man-in-the-middle and disconnect legitimate IPsec VPN sessions to an affected device.

This vulnerability affects the following products if they are running affected release of Cisco IOS XE Software:

Cisco ASR 1000 Series Aggregation Services Routers
Cisco Cloud Services Router 1000V Series
Cisco 4000 Series Integrated Services Routers
Cisco 1000 Series Integrated Services Routers

Remediation

Install updates from vendor's website.

External links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-vpn-dos-edOmW28Z

#VU28763 Insufficient verification of data authenticity in Cisco IOS XE - CVE-2020-3220

Description

Remediation

External links

Please verify you're human