A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet through an affected device. A successful exploit could allow the attacker to cause the switch management CLI to stop responding, resulting in a DoS condition. This vulnerability is specific to IPv6 traffic. IPv4 traffic is not affected.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 13 Nov 2024 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2024-11-13T18:12:35.608Z

Reserved: 2019-12-12T00:00:00

Link: CVE-2020-3496

cve-icon Vulnrichment

Updated: 2024-08-04T07:37:54.337Z

cve-icon NVD

Status : Modified

Published: 2020-08-26T17:15:14.210

Modified: 2024-11-21T05:31:11.363

Link: CVE-2020-3496

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.