THREATOPS
THREAT OPSCVEs › CVE-2020-3566

CVE-2020-3566 — Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability

CISA KEVExploited: confirmedCisco

Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash the IGMP process or make it consume available memory and eventually crash.

Vulnerability details