CVE-2020-3496

MEDIUM

Cisco Small Business Smart and Managed Switches - DoS

Title source: llm

Description

A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet through an affected device. A successful exploit could allow the attacker to cause the switch management CLI to stop responding, resulting in a DoS condition. This vulnerability is specific to IPv6 traffic. IPv4 traffic is not affected.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sbss-ipv6-dos-tsgqbffW

Scores

CVSS v3 5.3

EPSS 0.0035

EPSS Percentile 57.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (50)

cisco/sf200-24_firmware < 2.5.5.47

cisco/sf200-24fp_firmware < 2.5.5.47

cisco/sf200-24p_firmware < 2.5.5.47

cisco/sf200-48_firmware < 2.5.5.47

cisco/sf200-48p_firmware < 2.5.5.47

cisco/sf250-24_firmware < 2.5.5.47

cisco/sf250-24p_firmware < 2.5.5.47

cisco/sf250-48_firmware < 2.5.5.47

cisco/sf250-48hp_firmware < 2.5.5.47

cisco/sf300-08_firmware < 2.5.5.47

... and 40 more

Published Aug 26, 2020

Tracked Since Feb 18, 2026