CVE-2022-20731
Published Apr 15, 2022
Last updated a year ago
Overview
- Description
- Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.8
- Impact score
- 5.9
- Exploitability score
- 0.9
- Vector string
- CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:catalyst_digital_building_series_switches_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "99FA2CA7-19AA-4404-8803-DD2B23CFB5BC",
"versionEndIncluding": "15.2\\(7\\)e"
},
{
"criteria": "cpe:2.3:o:cisco:ios_rommon:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17140F0D-252E-460E-BE41-FAB3E22425D3"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:catalyst_digital_building_series_switches:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2C9E76FA-E449-415B-81AA-538BF8A0EA76"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]