CVE-2022-20821
Cisco IOS XR Open Port Vulnerability
CVSS
—
Sin CVSS
EPSS
11.8%
p96
KEV
SÍ
23 may 2022
Exploit Today
79
0-100
Publicado: — · Última mod.: —
11.8%EPSS · 30 días11.8%
2026-06-302026-07-17
Producto
Cisco / IOS XR
Vulnerabilidad
Cisco IOS XR Open Port Vulnerability
Añadido a KEV
23 may 2022
Remediar antes de
13 jun 2022
Uso conocido en ransomware
No
Descripción resumida
Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2022-20821
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2020-3118—95.6%
KEV—79Cisco IOS XR Software Discovery Protocol Format String Vulnerability—CVE-2010-3035—92.0%
KEV—78Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability—CVE-2020-3566—88.3%
KEV—76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability—CVE-2009-2055—87.2%
KEV—76Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability—CVE-2020-3569—87.1%
KEV—76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability—