CVE-2021-1595

Name of the Vulnerable Software and Affected Versions Cisco Video Surveillance 7000 Series IP Cameras (affected versions not specified)

Description The issue is related to the Link Layer Discovery Protocol (LLDP) implementation, which could allow an unauthenticated, adjacent attacker to cause a memory leak. This is due to incorrect processing of certain LLDP packets at ingress time. An attacker could exploit this by sending crafted LLDP packets to an affected device, potentially causing the device to continuously consume memory, leading to a crash and reload, and resulting in a denial of service (DoS) condition. The attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent) to exploit this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.