CVE-2022-20625

Name of the Vulnerable Software and Affected Versions Cisco FXOS Software and Cisco NX-OS Software (affected versions not specified)

Description A vulnerability in the Cisco Discovery Protocol service could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in a denial of service (DoS) condition. This is due to improper handling of Cisco Discovery Protocol messages processed by the service. An attacker could exploit this by sending malicious Cisco Discovery Protocol messages to an affected device, potentially causing the service to fail and restart. In rare conditions, repeated failures could cause the entire device to restart.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. However, according to the provided information, Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. As a temporary workaround, consider disabling the Cisco Discovery Protocol service until a patch is available. Restrict access to the Cisco Discovery Protocol service to minimize the risk of exploitation. Avoid using the Cisco Discovery Protocol until the issue is resolved.