CVE-2020-13100
Description
Aristas CloudVision eXchange (CVX) server before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cause a denial of service (crash and restart) in the ControllerOob agent via a malformed control-plane packet.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.691
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.24.1.1f | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.24.0 | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.23.4m | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.23.0 | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.22.6m | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.22.0 | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.21.10m | NCM |
| Vulnerabilities CVE-2020-13100 are affected in cloudvision_exchange 4.21.5f | NCM |
| CVE-2020-13100 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234