CVE-2020-3509

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers (affected versions not specified)

Description A vulnerability in the DHCP message handler could allow an unauthenticated, remote attacker to cause the supervisor to crash, resulting in a denial of service (DoS) condition. This is due to insufficient error handling when DHCP version 4 (DHCPv4) messages are parsed. An attacker could exploit this by sending a malicious DHCPv4 message to or through a WAN interface of an affected device, potentially causing a reload of the device. WAN interfaces include 10 Gbps Ethernet interfaces, 100 Gbps Ethernet interfaces, and port channel interfaces with multiple 10 and/or 100 Gbps Ethernet interfaces.

Recommendations Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.