CVE-2020-3569

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software (affected versions not specified)

Description: The issue is related to the incorrect handling of IGMP packets in the Distance Vector Multicast Routing Protocol (DVMRP) feature, which could allow an unauthenticated, remote attacker to either immediately crash the Internet Group Management Protocol (IGMP) process or make it consume available memory and eventually crash. This may negatively impact other processes running on the device, including interior and exterior routing protocols. An attacker could exploit this by sending crafted IGMP traffic to an affected device.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.