CVE-2026-20084

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A flaw exists in the DHCP snooping feature that may allow a remote attacker to forward BOOTP packets between VLANs, leading to a denial of service (DoS). This is caused by improper handling of BOOTP packets on Cisco Catalyst 9000 Series Switches. An attacker can exploit this by sending BOOTP request packets to an affected device. A successful exploit could allow an attacker to forward BOOTP packets from one VLAN to another, resulting in BOOTP VLAN leakage and potentially leading to high CPU utilization, making the device unreachable and unable to forward traffic. The vulnerability can be exploited with either unicast or broadcast BOOTP packets.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.