A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition (DoS) on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this vulnerability by initiating a large number of NETCONF over SSH connections. A successful exploit could allow the attacker to exhaust resources, causing the device to reload and resulting in a DoS condition on an affected device.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncossh-dos-ZAkfOdq8 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2022-04-15 15:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-20692
Mitre link : CVE-2022-20692
CVE.ORG link : CVE-2022-20692
JSON object : View
Products Affected
cisco
- ios_xe
CWE
CWE-400
Uncontrolled Resource Consumption