CVE-2022-20756: Cisco Identity Services Engine RADIUS Service Denial of Service Vulnerability
First published: Wed Apr 06 2022(Updated: )
A vulnerability in the RADIUS feature of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause the affected system to stop processing RADIUS packets. This vulnerability is due to improper handling of certain RADIUS requests. An attacker could exploit this vulnerability by attempting to authenticate to a network or a service where the access server is using Cisco ISE as the RADIUS server. A successful exploit could allow the attacker to cause Cisco ISE to stop processing RADIUS requests, causing authentication/authorization timeouts, which would then result in legitimate requests being denied access. Note: To recover the ability to process RADIUS packets, a manual restart of the affected Policy Service Node (PSN) is required. See the Details section for more information.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Identity Services Engine | =2.2.0-patch17 | |
| Cisco Identity Services Engine | =2.4.0-patch12 | |
| Cisco Identity Services Engine | =2.4.0-patch13 | |
| Cisco Identity Services Engine | =2.4.0-patch14 | |
| Cisco Identity Services Engine | =2.6.0-patch10 | |
| Cisco Identity Services Engine | =2.6.0-patch5 | |
| Cisco Identity Services Engine | =2.6.0-patch6 | |
| Cisco Identity Services Engine | =2.6.0-patch7 | |
| Cisco Identity Services Engine | =2.6.0-patch8 | |
| Cisco Identity Services Engine | =2.6.0-patch9 | |
| Cisco Identity Services Engine | =2.7.0-patch2 | |
| Cisco Identity Services Engine | =2.7.0-patch3 | |
| Cisco Identity Services Engine | =2.7.0-patch4 | |
| Cisco Identity Services Engine | =2.7.0.356-patch1 | |
| Cisco Identity Services Engine | =3.0.0 | |
| Cisco Identity Services Engine | =3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-20756?
CVE-2022-20756 is a vulnerability found in the RADIUS feature of Cisco Identity Services Engine (ISE) that could allow an unauthenticated, remote attacker to cause the affected system to stop processing RADIUS packets.
How does CVE-2022-20756 occur?
CVE-2022-20756 occurs due to improper handling of certain RADIUS requests in Cisco Identity Services Engine (ISE).
Who can exploit CVE-2022-20756?
Any unauthenticated, remote attacker can exploit CVE-2022-20756.
What is the severity of CVE-2022-20756?
CVE-2022-20756 has a severity level of high with a CVSS score of 7.5.
How can I fix CVE-2022-20756?
To fix CVE-2022-20756, apply the necessary patches or updates provided by Cisco Identity Services Engine (ISE).
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/title
- agent/last-modified-date
- agent/references
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/cisco
- canonical/cisco identity services engine
- version/cisco identity services engine/2.2.0-patch17
- version/cisco identity services engine/2.4.0-patch12
- version/cisco identity services engine/2.4.0-patch13
- version/cisco identity services engine/2.4.0-patch14
- version/cisco identity services engine/2.6.0-patch10
- version/cisco identity services engine/2.6.0-patch5
- version/cisco identity services engine/2.6.0-patch6
- version/cisco identity services engine/2.6.0-patch7
- version/cisco identity services engine/2.6.0-patch8
- version/cisco identity services engine/2.6.0-patch9
- version/cisco identity services engine/2.7.0-patch2
- version/cisco identity services engine/2.7.0-patch3
- version/cisco identity services engine/2.7.0-patch4
- version/cisco identity services engine/2.7.0.356-patch1
- version/cisco identity services engine/3.0.0
- version/cisco identity services engine/3.1