CVE-2020-3475: Input Validation
First published: Thu Sep 24 2020(Updated: )
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive data or cause the web management software to hang or crash, resulting in a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | ||
| Cisco 1100 Integrated Services Router | ||
| Cisco 1101 Integrated Services Router | ||
| Cisco 1109 Integrated Services Router | ||
| Cisco 1111x Integrated Services Router | ||
| Cisco 111x Integrated Services Router | ||
| Cisco 1120 Integrated Services Router | ||
| Cisco 1160 Integrated Services Router | ||
| Cisco Asr 1001-hx | ||
| Cisco Asr 1001-x | ||
| Cisco Asr 1002-hx | ||
| Cisco Asr 1002-x | ||
| Cisco Asr 1004 | ||
| Cisco Asr 1006 | ||
| Cisco Asr 1006-x | ||
| Cisco Asr 1009-x | ||
| Cisco Asr 1013 | ||
| Cisco Catalyst 9800-40 | ||
| Cisco Catalyst 9800-80 | ||
| Cisco Catalyst 9800-cl | ||
| Cisco Catalyst 9800-l | ||
| Cisco Catalyst 9800-l-c | ||
| Cisco Catalyst 9800-l-f | ||
| Cisco Catalyst C9200-24p | ||
| Cisco Catalyst C9200-24t | ||
| Cisco Catalyst C9200-48p | ||
| Cisco Catalyst C9200-48t | ||
| Cisco Catalyst C9200l-24p-4g | ||
| Cisco Catalyst C9200l-24p-4x | ||
| Cisco Catalyst C9200l-24pxg-2y | ||
| Cisco Catalyst C9200l-24pxg-4x | ||
| Cisco Catalyst C9200l-24t-4g | ||
| Cisco Catalyst C9200l-24t-4x | ||
| Cisco Catalyst C9200l-48p-4g | ||
| Cisco Catalyst C9200l-48p-4x | ||
| Cisco Catalyst C9200l-48pxg-2y | ||
| Cisco Catalyst C9200l-48pxg-4x | ||
| Cisco Catalyst C9200l-48t-4g | ||
| Cisco Catalyst C9200l-48t-4x | ||
| Cisco Catalyst C9300-24p | ||
| Cisco Catalyst C9300-24s | ||
| Cisco Catalyst C9300-24t | ||
| Cisco Catalyst C9300-24u | ||
| Cisco Catalyst C9300-24ux | ||
| Cisco Catalyst C9300-48p | ||
| Cisco Catalyst C9300-48s | ||
| Cisco Catalyst C9300-48t | ||
| Cisco Catalyst C9300-48u | ||
| Cisco Catalyst C9300-48un | ||
| Cisco Catalyst C9300-48uxm | ||
| Cisco Catalyst C9300l-24p-4g | ||
| Cisco Catalyst C9300l-24p-4x | ||
| Cisco Catalyst C9300l-24t-4g | ||
| Cisco Catalyst C9300l-24t-4x | ||
| Cisco Catalyst C9300l-48p-4g | ||
| Cisco Catalyst C9300l-48p-4x | ||
| Cisco Catalyst C9300l-48t-4g | ||
| Cisco Catalyst C9300l-48t-4x | ||
| Cisco Catalyst C9500-12q | ||
| Cisco Catalyst C9500-16x | ||
| Cisco Catalyst C9500-24q | ||
| Cisco Catalyst C9500-24y4c | ||
| Cisco Catalyst C9500-32c | ||
| Cisco Catalyst C9500-32qc | ||
| Cisco Catalyst C9500-40x | ||
| Cisco Catalyst C9500-48y4c | ||
| Cisco Ws-c3650-12x48uq | ||
| Cisco Ws-c3650-12x48ur | ||
| Cisco Ws-c3650-12x48uz | ||
| Cisco Ws-c3650-24pd | ||
| Cisco Ws-c3650-24pdm | ||
| Cisco Ws-c3650-24ps | ||
| Cisco Ws-c3650-24td | ||
| Cisco Ws-c3650-24ts | ||
| Cisco Ws-c3650-48fd | ||
| Cisco Ws-c3650-48fq | ||
| Cisco Ws-c3650-48fqm | ||
| Cisco Ws-c3650-48fs | ||
| Cisco Ws-c3650-48pd | ||
| Cisco Ws-c3650-48pq | ||
| Cisco Ws-c3650-48ps | ||
| Cisco Ws-c3650-48td | ||
| Cisco Ws-c3650-48tq | ||
| Cisco Ws-c3650-48ts | ||
| Cisco Ws-c3650-8x24uq | ||
| Cisco Ws-c3850 | ||
| Cisco Ws-c3850-12s | ||
| Cisco Ws-c3850-12x48u | ||
| Cisco Ws-c3850-12xs | ||
| Cisco Ws-c3850-24p | ||
| Cisco Ws-c3850-24s | ||
| Cisco Ws-c3850-24t | ||
| Cisco Ws-c3850-24u | ||
| Cisco Ws-c3850-24xs | ||
| Cisco Ws-c3850-24xu | ||
| Cisco Ws-c3850-48f | ||
| Cisco Ws-c3850-48p | ||
| Cisco Ws-c3850-48t | ||
| Cisco Ws-c3850-48u | ||
| Cisco Ws-c3850-48xs |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- vendor/cisco
- canonical/cisco ios
- canonical/cisco 1100 integrated services router
- canonical/cisco 1101 integrated services router
- canonical/cisco 1109 integrated services router
- canonical/cisco 1111x integrated services router
- canonical/cisco 111x integrated services router
- canonical/cisco 1120 integrated services router
- canonical/cisco 1160 integrated services router
- canonical/cisco asr 1001-hx
- canonical/cisco asr 1001-x
- canonical/cisco asr 1002-hx
- canonical/cisco asr 1002-x
- canonical/cisco asr 1004
- canonical/cisco asr 1006
- canonical/cisco asr 1006-x
- canonical/cisco asr 1009-x
- canonical/cisco asr 1013
- canonical/cisco catalyst 9800-40
- canonical/cisco catalyst 9800-80
- canonical/cisco catalyst 9800-cl
- canonical/cisco catalyst 9800-l
- canonical/cisco catalyst 9800-l-c
- canonical/cisco catalyst 9800-l-f
- canonical/cisco catalyst c9200-24p
- canonical/cisco catalyst c9200-24t
- canonical/cisco catalyst c9200-48p
- canonical/cisco catalyst c9200-48t
- canonical/cisco catalyst c9200l-24p-4g
- canonical/cisco catalyst c9200l-24p-4x
- canonical/cisco catalyst c9200l-24pxg-2y
- canonical/cisco catalyst c9200l-24pxg-4x
- canonical/cisco catalyst c9200l-24t-4g
- canonical/cisco catalyst c9200l-24t-4x
- canonical/cisco catalyst c9200l-48p-4g
- canonical/cisco catalyst c9200l-48p-4x
- canonical/cisco catalyst c9200l-48pxg-2y
- canonical/cisco catalyst c9200l-48pxg-4x
- canonical/cisco catalyst c9200l-48t-4g
- canonical/cisco catalyst c9200l-48t-4x
- canonical/cisco catalyst c9300-24p
- canonical/cisco catalyst c9300-24s
- canonical/cisco catalyst c9300-24t
- canonical/cisco catalyst c9300-24u
- canonical/cisco catalyst c9300-24ux
- canonical/cisco catalyst c9300-48p
- canonical/cisco catalyst c9300-48s
- canonical/cisco catalyst c9300-48t
- canonical/cisco catalyst c9300-48u
- canonical/cisco catalyst c9300-48un
- canonical/cisco catalyst c9300-48uxm
- canonical/cisco catalyst c9300l-24p-4g
- canonical/cisco catalyst c9300l-24p-4x
- canonical/cisco catalyst c9300l-24t-4g
- canonical/cisco catalyst c9300l-24t-4x
- canonical/cisco catalyst c9300l-48p-4g
- canonical/cisco catalyst c9300l-48p-4x
- canonical/cisco catalyst c9300l-48t-4g
- canonical/cisco catalyst c9300l-48t-4x
- canonical/cisco catalyst c9500-12q
- canonical/cisco catalyst c9500-16x
- canonical/cisco catalyst c9500-24q
- canonical/cisco catalyst c9500-24y4c
- canonical/cisco catalyst c9500-32c
- canonical/cisco catalyst c9500-32qc
- canonical/cisco catalyst c9500-40x
- canonical/cisco catalyst c9500-48y4c
- canonical/cisco ws-c3650-12x48uq
- canonical/cisco ws-c3650-12x48ur
- canonical/cisco ws-c3650-12x48uz
- canonical/cisco ws-c3650-24pd
- canonical/cisco ws-c3650-24pdm
- canonical/cisco ws-c3650-24ps
- canonical/cisco ws-c3650-24td
- canonical/cisco ws-c3650-24ts
- canonical/cisco ws-c3650-48fd
- canonical/cisco ws-c3650-48fq
- canonical/cisco ws-c3650-48fqm
- canonical/cisco ws-c3650-48fs
- canonical/cisco ws-c3650-48pd
- canonical/cisco ws-c3650-48pq
- canonical/cisco ws-c3650-48ps
- canonical/cisco ws-c3650-48td
- canonical/cisco ws-c3650-48tq
- canonical/cisco ws-c3650-48ts
- canonical/cisco ws-c3650-8x24uq
- canonical/cisco ws-c3850
- canonical/cisco ws-c3850-12s
- canonical/cisco ws-c3850-12x48u
- canonical/cisco ws-c3850-12xs
- canonical/cisco ws-c3850-24p
- canonical/cisco ws-c3850-24s
- canonical/cisco ws-c3850-24t
- canonical/cisco ws-c3850-24u
- canonical/cisco ws-c3850-24xs
- canonical/cisco ws-c3850-24xu
- canonical/cisco ws-c3850-48f
- canonical/cisco ws-c3850-48p
- canonical/cisco ws-c3850-48t
- canonical/cisco ws-c3850-48u
- canonical/cisco ws-c3850-48xs