PULSE
EN VIVO22señales / 24h
FEED
ransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Services
← Todos los CVEs
CVE Watch

CVE-2020-3118

Cisco IOS XR Software Discovery Protocol Format String Vulnerability

CVSS

Sin CVSS

EPSS

11.7%

p96

KEV

3 nov 2021

Exploit Today

79

0-100

Publicado: · Última mod.:

EPSS · 30d
11.7%EPSS · 30 días11.7%
2026-06-302026-07-16
Ficha del catálogo KEV

Producto

Cisco / IOS XR

Vulnerabilidad

Cisco IOS XR Software Discovery Protocol Format String Vulnerability

Añadido a KEV

3 nov 2021

Remediar antes de

3 may 2022

Uso conocido en ransomware

No

Descripción resumida

Cisco IOS XR improperly validates string input from certain fields in Cisco Discovery Protocol messages. Exploitation could allow an unauthenticated, adjacent attacker to execute code with administrative privileges or cause a reload on an affected device.

Acción requerida

Apply updates per vendor instructions.

Notas

https://nvd.nist.gov/vuln/detail/CVE-2020-3118

CVEs relacionados
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2022-20821
95.6%
KEV79Cisco IOS XR Open Port Vulnerability
CVE-2010-3035
92.0%
KEV78Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability
CVE-2020-3566
88.3%
KEV76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability
CVE-2009-2055
87.2%
KEV76Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability
CVE-2020-3569
87.1%
KEV76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability