CVE-2022-20848

HIGH

Cisco IOS XE - Unauthenticated Denial of Service via UDP Datagram Processing

Title source: llm

Description

A vulnerability in the UDP processing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Series Access Points could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to the improper processing of UDP datagrams. An attacker could exploit this vulnerability by sending malicious UDP datagrams to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-udp-dos-XDyEwhNz

Scores

CVSS v3 8.6

EPSS 0.0163

EPSS Percentile 82.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-399

Status published

Products (3)

cisco/ios_xe 17.6.1

cisco/ios_xe 17.6.3

cisco/ios_xe 17.9.1

Published Sep 30, 2022

Tracked Since Feb 18, 2026