CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: May 3, 2022
High
CISA KEVCVE-2020-3566
Cisco—IOS XR
Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash the IGMP process or make it consume available memory and eventually crash.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2020-3566
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- Nov 3, 2021
- KEV Added
- Nov 3, 2021
- Due Date
- May 3, 2022
- Related Articles
- 0
Vendor
Cisco
IOS XR