CVE-2020-3512: Cisco IOS and IOS XE Software PROFINET Link Layer Discovery Protocol Denial of Service Vulnerability
First published: Thu Sep 24 2020(Updated: )
A vulnerability in the PROFINET handler for Link Layer Discovery Protocol (LLDP) messages of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a crash on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of LLDP messages in the PROFINET LLDP message handler. An attacker could exploit this vulnerability by sending a malicious LLDP message to an affected device. A successful exploit could allow the attacker to cause the affected device to reload.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XE | =15.2\(7\)e | |
| Cisco Catalyst 3650-12x48UQ | ||
| Cisco Catalyst 3650-12X48UR | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-8X24UQ | ||
| Cisco Catalyst 3850-24XS | ||
| Cisco Catalyst 3850-48XS | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst C9200 | ||
| Cisco Catalyst 9200 Series | ||
| Cisco Catalyst C9200 | ||
| Cisco Catalyst 9200 Series | ||
| Cisco Catalyst C9200L-24P-4G | ||
| Cisco Catalyst C9200L-24P-4X | ||
| Cisco Catalyst C9200L-24PXG-2Y | ||
| Cisco Catalyst C9200L-24PXG-4X | ||
| Cisco Catalyst C9200L-24T-4G | ||
| Cisco Catalyst C9200L-24T-4X | ||
| Cisco Catalyst C9200L-48P-4G | ||
| Cisco Catalyst C9200L-48P-4X | ||
| Cisco Catalyst C9200L-24PXG-2Y | ||
| Cisco Catalyst C9200L-48PXG-4X | ||
| Cisco Catalyst C9200L-48T-4G | ||
| Cisco Catalyst C9200L-48T-4X | ||
| Cisco Catalyst C9300-24P | ||
| Cisco Catalyst C9300 | ||
| Cisco Catalyst 9300-24T-A | ||
| Cisco Catalyst C9300-24U | ||
| Cisco Catalyst 9300-24UX | ||
| Cisco Catalyst C9300-48P | ||
| Cisco Catalyst C9300 | ||
| Cisco Catalyst C9300 | ||
| Cisco Catalyst 9300-48U | ||
| Cisco Catalyst C9300 Series | ||
| Cisco Catalyst C9300-48UXM | ||
| Cisco Catalyst C9300 | ||
| Cisco Catalyst C9300L-24P-4X | ||
| Cisco Catalyst 9300L-24T-4G | ||
| Cisco Catalyst 9300 | ||
| Cisco Catalyst C9300L-48P-4G | ||
| Cisco Catalyst 9300 Series Switches | ||
| Cisco Catalyst C9300 | ||
| Cisco Catalyst C9300L-48T-4X | ||
| Cisco Catalyst C9404R | ||
| Cisco Catalyst 9407R | ||
| Cisco Catalyst 9410R | ||
| Cisco Catalyst 9500 | ||
| Cisco Catalyst 9500 | ||
| Cisco Catalyst 9500 | ||
| Cisco Catalyst C9500-24Y4C | ||
| Cisco Catalyst 9500 | ||
| Cisco Catalyst C9500-32QC | ||
| Cisco Catalyst C9500-40x | ||
| Cisco Catalyst C9500-48Y4C | ||
| Cisco Connected Grid Switch 2520 | ||
| Cisco Embedded Service 2020 | ||
| Cisco ESS 3300 | ||
| Cisco IE 1000 | ||
| Cisco IE 2000-16TC-G | ||
| Cisco IE 2000 Series | ||
| Cisco IE 2000-16TC-GP | ||
| Cisco IE 2000 Series | ||
| Cisco IE 2000-4T-G | ||
| Cisco IE 2000 Series Switches | ||
| Cisco IE 2000 Series Switch | ||
| Cisco IE 3000 | ||
| Cisco IE 3010-16S-8PC Industrial Ethernet Switch | ||
| Cisco IE 3010-24TC Industrial Ethernet Switch | ||
| Cisco Industrial Ethernet 3200 Series Switches | ||
| Cisco IE-3200-8P2S-E | ||
| Cisco IE-3300-8P2S-A | ||
| Cisco IE-3300-8P2S-E | ||
| Cisco IE-3300-8T2X-A | ||
| Cisco IE 3300-8T2S-E | ||
| Cisco IE-3300-8T2X-A | ||
| Cisco IE-3300-8U2X-E | ||
| Cisco IE-3300-8U2X-A | ||
| Cisco IE-3300-8U2X-E | ||
| Cisco IE-3400-8P2S-A | ||
| Cisco IE 3400-8P2S-E | ||
| Cisco IE-3400-8T2S-A | ||
| Cisco IE 3400 Series Switches | ||
| Cisco IE 4000 Series | ||
| Cisco IE 4000 Series Switch | ||
| Cisco IE 4000 Series Switches | ||
| Cisco IE 4000 Series Switches | ||
| Cisco IE 4000 Series Industrial Ethernet Switches | ||
| Cisco IE 4000 Series Switches | ||
| Cisco IE 4000 Series Switches | ||
| Cisco IE-4000 Series Switches | ||
| Cisco IE-4000 Series | ||
| Cisco IE 4000 Series Switch | ||
| Cisco IE-4000 Series Switch | ||
| Cisco IE 4000 Series Switch | ||
| Cisco IE-4010-16S12P Industrial Ethernet Switch | ||
| Cisco IE-4010-4S24P | ||
| Cisco IE 5000-12S12P-10G Industrial Ethernet Switch | ||
| Cisco IE 5000-16S12P | ||
| Cisco IE 2000 Industrial Ethernet switch | ||
| Cisco Industrial Ethernet 2000 16t67p-g-e Switch | ||
| Cisco Industrial Ethernet 2000 16t67p-g-e Switch | ||
| Cisco IE 2000 Series Industrial Ethernet Switch | ||
| Cisco IE 2000-16tc Industrial Ethernet Switch | ||
| Cisco IE 2000-16tc Industrial Ethernet Switch | ||
| Cisco Industrial Ethernet 2000 16ptc-g-e Switch | ||
| Cisco IE 2000 Series Industrial Ethernet Switch | ||
| Cisco IE 2000 Series Industrial Ethernet Switch | ||
| Cisco IE 2000-4s-ts-g Industrial Ethernet Switch | ||
| Cisco IE 2000 Series Industrial Ethernet Switch | ||
| Cisco IE 2000 Industrial Ethernet switch | ||
| Cisco IE 2000 Series Industrial Ethernet Switch | ||
| Cisco IE 2000 Industrial Ethernet switch | ||
| Cisco Industrial Ethernet 2000 8t67-b Switch | ||
| Cisco IE 2000-8T67P | ||
| Cisco Industrial Ethernet 2000 8tc-g-b Switch | ||
| Cisco IE 2000 Series | ||
| Cisco Industrial Ethernet 2000 8tc-g-l Switch | ||
| Cisco IEM 3300 Series | ||
| Cisco IEM-3300 Series | ||
| Cisco IEM-3300 Series | ||
| Cisco IEM-3300 | ||
| Cisco IEM-3300 Series | ||
| Cisco Industrial Ethernet 3300 Series Switches | ||
| Cisco IEM-3300-8S | ||
| Cisco IEM 3300-8T | ||
| Cisco IEM 3400-8P | ||
| Cisco IEM-3400 Series | ||
| Cisco IEM-3400 Series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-3512?
CVE-2020-3512 has a severity rating of Medium since it allows an unauthenticated attacker to cause a denial of service condition on affected devices.
How do I fix CVE-2020-3512?
To mitigate CVE-2020-3512, you should upgrade to a Cisco IOS or IOS XE version that addresses this vulnerability.
What devices are affected by CVE-2020-3512?
CVE-2020-3512 affects various Cisco IOS and IOS XE devices, particularly those versions prior to the patched releases.
Can CVE-2020-3512 be exploited remotely?
CVE-2020-3512 can only be exploited by an adjacent attacker, meaning it requires physical or local network access.
What symptoms indicate an exploitation of CVE-2020-3512?
Exploitation of CVE-2020-3512 may lead to device crashes, resulting in loss of service or operational downtime.
- agent/weakness
- agent/type
- agent/references
- agent/author
- agent/description
- agent/severity
- agent/title
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xe
- version/cisco ios xe/15.2\(7\)e
- canonical/cisco catalyst 3650-12x48uq
- canonical/cisco catalyst 3650-12x48ur
- canonical/cisco catalyst 3650
- canonical/cisco catalyst 3650-8x24uq
- canonical/cisco catalyst 3850-24xs
- canonical/cisco catalyst 3850-48xs
- canonical/cisco catalyst 3850
- canonical/cisco catalyst c9200
- canonical/cisco catalyst 9200 series
- canonical/cisco catalyst c9200l-24p-4g
- canonical/cisco catalyst c9200l-24p-4x
- canonical/cisco catalyst c9200l-24pxg-2y
- canonical/cisco catalyst c9200l-24pxg-4x
- canonical/cisco catalyst c9200l-24t-4g
- canonical/cisco catalyst c9200l-24t-4x
- canonical/cisco catalyst c9200l-48p-4g
- canonical/cisco catalyst c9200l-48p-4x
- canonical/cisco catalyst c9200l-48pxg-4x
- canonical/cisco catalyst c9200l-48t-4g
- canonical/cisco catalyst c9200l-48t-4x
- canonical/cisco catalyst c9300-24p
- canonical/cisco catalyst c9300
- canonical/cisco catalyst 9300-24t-a
- canonical/cisco catalyst c9300-24u
- canonical/cisco catalyst 9300-24ux
- canonical/cisco catalyst c9300-48p
- canonical/cisco catalyst 9300-48u
- canonical/cisco catalyst c9300 series
- canonical/cisco catalyst c9300-48uxm
- canonical/cisco catalyst c9300l-24p-4x
- canonical/cisco catalyst 9300l-24t-4g
- canonical/cisco catalyst 9300
- canonical/cisco catalyst c9300l-48p-4g
- canonical/cisco catalyst 9300 series switches
- canonical/cisco catalyst c9300l-48t-4x
- canonical/cisco catalyst c9404r
- canonical/cisco catalyst 9407r
- canonical/cisco catalyst 9410r
- canonical/cisco catalyst 9500
- canonical/cisco catalyst c9500-24y4c
- canonical/cisco catalyst c9500-32qc
- canonical/cisco catalyst c9500-40x
- canonical/cisco catalyst c9500-48y4c
- canonical/cisco connected grid switch 2520
- canonical/cisco embedded service 2020
- canonical/cisco ess 3300
- canonical/cisco ie 1000
- canonical/cisco ie 2000-16tc-g
- canonical/cisco ie 2000 series
- canonical/cisco ie 2000-16tc-gp
- canonical/cisco ie 2000-4t-g
- canonical/cisco ie 2000 series switches
- canonical/cisco ie 2000 series switch
- canonical/cisco ie 3000
- canonical/cisco ie 3010-16s-8pc industrial ethernet switch
- canonical/cisco ie 3010-24tc industrial ethernet switch
- canonical/cisco industrial ethernet 3200 series switches
- canonical/cisco ie-3200-8p2s-e
- canonical/cisco ie-3300-8p2s-a
- canonical/cisco ie-3300-8p2s-e
- canonical/cisco ie-3300-8t2x-a
- canonical/cisco ie 3300-8t2s-e
- canonical/cisco ie-3300-8u2x-e
- canonical/cisco ie-3300-8u2x-a
- canonical/cisco ie-3400-8p2s-a
- canonical/cisco ie 3400-8p2s-e
- canonical/cisco ie-3400-8t2s-a
- canonical/cisco ie 3400 series switches
- canonical/cisco ie 4000 series
- canonical/cisco ie 4000 series switch
- canonical/cisco ie 4000 series switches
- canonical/cisco ie 4000 series industrial ethernet switches
- canonical/cisco ie-4000 series switches
- canonical/cisco ie-4000 series
- canonical/cisco ie-4000 series switch
- canonical/cisco ie-4010-16s12p industrial ethernet switch
- canonical/cisco ie-4010-4s24p
- canonical/cisco ie 5000-12s12p-10g industrial ethernet switch
- canonical/cisco ie 5000-16s12p
- canonical/cisco ie 2000 industrial ethernet switch
- canonical/cisco industrial ethernet 2000 16t67p-g-e switch
- canonical/cisco ie 2000 series industrial ethernet switch
- canonical/cisco ie 2000-16tc industrial ethernet switch
- canonical/cisco industrial ethernet 2000 16ptc-g-e switch
- canonical/cisco ie 2000-4s-ts-g industrial ethernet switch
- canonical/cisco industrial ethernet 2000 8t67-b switch
- canonical/cisco ie 2000-8t67p
- canonical/cisco industrial ethernet 2000 8tc-g-b switch
- canonical/cisco industrial ethernet 2000 8tc-g-l switch
- canonical/cisco iem 3300 series
- canonical/cisco iem-3300 series
- canonical/cisco iem-3300
- canonical/cisco industrial ethernet 3300 series switches
- canonical/cisco iem-3300-8s
- canonical/cisco iem 3300-8t
- canonical/cisco iem 3400-8p
- canonical/cisco iem-3400 series