A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to the incorrect handling of certain TCP segments. An attacker could exploit this vulnerability by sending a stream of crafted TCP traffic at a high rate through an interface of an affected device. That interface would need to have AppNav interception enabled. A successful exploit could allow the attacker to cause the device to reload.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 06 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2024-11-06T16:25:43.535Z

Reserved: 2021-11-02T00:00:00

Link: CVE-2022-20678

cve-icon Vulnrichment

Updated: 2024-08-03T02:17:53.075Z

cve-icon NVD

Status : Modified

Published: 2022-04-15T15:15:12.467

Modified: 2024-11-21T06:43:18.097

Link: CVE-2022-20678

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.