A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to consume excessive system memory and cause a denial of service (DoS) condition on an affected system. The vulnerability is due to inefficient memory management. An attacker could exploit this vulnerability by sending a large number of crafted HTTP requests to the affected web-based management interface. A successful exploit could allow the attacker to exhaust system memory, which could cause the system to stop processing new connections and could result in a DoS condition.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-emvman-3y6LuTcZ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2020-07-16 18:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-3372
Mitre link : CVE-2020-3372
CVE.ORG link : CVE-2020-3372
JSON object : View
Products Affected
cisco
- vedge_5000
- vedge_2000
- vedge_100m
- 1100-4g_integrated_services_router
- 1100-4gltena_integrated_services_router
- sd-wan_firmware
- vedge_100
- vedge_100b
- vedge_100wm
- 1100-4gltegb_integrated_services_router
- 1100-6g_integrated_services_router
- vedge_1000
CWE
CWE-400
Uncontrolled Resource Consumption