CVE-2024-20496
CVSS V2 None
CVSS V3 None
Description
A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system.
This vulnerability is due to incorrect handling of a specific type of malformed UDP packet. An attacker in a machine-in-the-middle position could exploit this vulnerability by sending crafted UDP packets to an affected device. A successful exploit could allow the attacker to cause the device to reboot, resulting in a DoS condition on the affected system.
Overview
- CVE ID
- CVE-2024-20496
- Assigner
- cisco
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-09-25T16:20:12.079Z
- Last Modified Date
- 2024-09-25T18:36:07.489Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-vedos-KqFfhps3 |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-20496 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20496 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-10-06 12:19:15 | Added to TrackCVE |