CVE-2020-3409

Published Sep 24, 2020

Last updated 2 years ago

CVSS high 7.4

Overview

Description: A vulnerability in the PROFINET feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to crash and reload, resulting in a denial of service (DoS) condition on the device. The vulnerability is due to insufficient processing logic for crafted PROFINET packets that are sent to an affected device. An attacker could exploit this vulnerability by sending crafted PROFINET packets to an affected device for processing. A successful exploit could allow the attacker to cause the device to crash and reload, resulting in a DoS condition on the device.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.4
Impact score: 4
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Severity: HIGH

CVSS 3.0

Type: Secondary
Base score: 7.4
Impact score: 4
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.1
Impact score: 6.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-400
ykramarz@cisco.com: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.2\\(7\\)e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6437E689-A049-4D48-AB7A-49CA7EBDE8B6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:15.2\\(7\\)e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C63AD57E-BA66-45B6-AC6E-2BD92A19A036"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-16gt4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DD991C01-E65C-481C-AAA3-E08A24254DB2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-16t4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "268A46F5-DBB4-47BA-966E-F5A62DDF3C9C"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-4gc4gp4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "600D74B4-4F39-4C44-BA6A-BBB54A2BD180"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-4gs8gp4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "99A6D521-867A-4153-9D44-9031DCEDE001"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-4s8p4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B3E68FB8-A69F-44F3-85D1-615AB5C69ED7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-4t4p4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "03563067-37A6-40C7-AC54-23EC0A6E8447"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-4tc4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "24BD8251-608E-4107-9573-46D9B8F86943"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-8gs4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F83B7416-A5EF-49FA-85FC-88EBA723999B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-8gt4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4BE4D4D0-0637-4E34-8834-399155CD06E5"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-8gt8gp4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "38D65414-A04C-46AF-837C-E3BA694CCF62"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-8s4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8A6CD85B-88F3-484A-8D47-41E04CF34AF7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-4000-8t4g-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "08FDAAB5-0FF5-4313-A04F-7BC35061B553"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D43154B-EF43-42F8-93CF-7AF47685827D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:16.11.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AD6EF2F-3BEB-4103-A7D7-73F580C58EB2"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ie-3200-8p2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "409A8E23-765E-4DDF-A1D6-957C069485F7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3200-8t2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EBDA8A7A-0E67-457D-B141-4A7123D88563"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8p2s-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB9BE362-7510-49AA-8407-9DF16C2CE83F"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8p2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "188F53F7-026B-439F-8230-7A86F88ED291"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8t2s-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D83BE1F-BEAA-4A5E-ABB3-3D1C1290C33D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8t2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8A025E73-71FF-4021-A531-972597B20983"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8t2x-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "258F818D-A13B-487F-B885-BCD66CFD9A35"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3300-8t2x-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "96578BAC-0720-4662-9C15-10B085618ADB"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3400-8p2s-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7E1424EF-E9F8-40AD-8B77-95A6EC220C2E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3400-8p2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE60F5EA-EE6A-45F2-8276-6859F1F976F3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ie-3400-8t2s-e:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3E58BBF6-0975-45F0-9EBE-10AD86FBE1C3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-14t2s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8FB643C1-EF42-440B-98B1-EAD1F2263BD6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-16p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D7DCD235-75AC-42A8-BFD8-A6D7C0F4FD7E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-16t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5C1BD017-FFE6-449B-BCA2-3FF63DF0817B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-6t2s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "90BFFD51-73C6-4A29-940D-92D1747BCB74"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-8p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "67AAE6BB-F377-42A8-B837-52D8C037CB4B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-8s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C49447E5-A907-410D-9902-6791236C48E7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3300-8t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4A2425A7-D37F-4B12-B2DD-96DD7ED09914"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3400-8p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "51880705-BE24-4849-8A61-A4D3A25592F7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3400-8s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3555C71B-3CCF-41A4-85F7-91408D1451FC"
          },
          {
            "criteria": "cpe:2.3:h:cisco:iem-3400-8t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E68CBE3F-7204-45F6-A1DB-6C7FE71575C9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References