Description Preview
Overview
CVE-2020-3118 is a stack overflow vulnerability in the Cisco Discovery Protocol (CDP) implementation for Cisco IOS XR Software. The vulnerability has been classified as CWE-787 (Out-of-bounds Write). When exploited, this vulnerability allows an adjacent attacker to send malicious CDP packets to trigger a stack overflow condition, potentially leading to arbitrary code execution with administrative privileges or causing the device to reload. This represents a significant security risk for network infrastructure running affected versions of Cisco IOS XR Software, as it could lead to complete device compromise without requiring authentication.
Remediation
Organizations using affected Cisco IOS XR Software should:
- Apply the security updates provided by Cisco as soon as possible.
- If immediate patching is not possible, consider disabling CDP on interfaces where it is not required.
- Implement network segmentation to limit the potential attack surface.
- Monitor network traffic for suspicious CDP packets.
- Ensure only trusted devices are connected to the same broadcast domain as critical infrastructure.
- Follow the detailed remediation steps in Cisco's security advisory (cisco-sa-20200205-iosxr-cdp-rce).
References
- Cisco Security Advisory: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-iosxr-cdp-rce
- Packet Storm Security: http://packetstormsecurity.com/files/156203/Cisco-Discovery-Protocol-CDP-Remote-Device-Takeover.html
- CWE-787 (Out-of-bounds Write): https://cwe.mitre.org/data/definitions/787.html
Early Warning
Customers using Armis Early Warning were notified about this vulnerability before it appeared in CISA's Known Exploited Vulnerabilities Catalog, enabling them to assess their exposure and act proactively. Armis offers these examples of CVEs already included in CISA KEV for potential customers. Click here to learn how to receive alerts earlier.
- Armis Alert Date
- Feb 5, 2020
- CISA KEV Date
- Nov 3, 2021
Industry ExposureMost to leastThis section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
- InformationInformation: Low
- Accommodation & Food ServicesAccommodation & Food Services: Low
- Administrative, Support, Waste Management & Remediation ServicesAdministrative, Support, Waste Management & Remediation Services: Low
- Agriculture, Forestry Fishing & HuntingAgriculture, Forestry Fishing & Hunting: Low
- Arts, Entertainment & RecreationArts, Entertainment & Recreation: Low
- ConstructionConstruction: Low
- Educational ServicesEducational Services: Low
- Finance and InsuranceFinance and Insurance: Low
- Health Care & Social AssistanceHealth Care & Social Assistance: Low
- Management of Companies & EnterprisesManagement of Companies & Enterprises: Low
- ManufacturingManufacturing: Low
- MiningMining: Low
- Other Services (except Public Administration)Other Services (except Public Administration): Low
- Professional, Scientific, & Technical ServicesProfessional, Scientific, & Technical Services: Low
- Public AdministrationPublic Administration: Low
- Real Estate Rental & LeasingReal Estate Rental & Leasing: Low
- Retail TradeRetail Trade: Low
- Transportation & WarehousingTransportation & Warehousing: Low
- UtilitiesUtilities: Low
- Wholesale TradeWholesale Trade: Low