CVE-2020-3566
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability
CVSS
—
Sin CVSS
EPSS
3.6%
p88
KEV
SÍ
3 nov 2021
Exploit Today
76
0-100
Publicado: — · Última mod.: —
3.6%EPSS · 30 días3.6%
2026-06-302026-07-17
Producto
Cisco / IOS XR
Vulnerabilidad
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability
Añadido a KEV
3 nov 2021
Remediar antes de
3 may 2022
Uso conocido en ransomware
No
Descripción resumida
Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash the IGMP process or make it consume available memory and eventually crash.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2020-3566
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2022-20821—95.6%
KEV—79Cisco IOS XR Open Port Vulnerability—CVE-2020-3118—95.6%
KEV—79Cisco IOS XR Software Discovery Protocol Format String Vulnerability—CVE-2010-3035—92.0%
KEV—78Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability—CVE-2009-2055—87.2%
KEV—76Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability—CVE-2020-3569—87.1%
KEV—76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability—