How severe is CVE-2020-3201?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6 out of 10.

What type of vulnerability is CVE-2020-3201?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2020-3201

MEDIUM Year: 2020

CVSS v3 Score

6.0

Medium

CVSS v2 Score

4.9

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker with privileged EXEC credentials to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient input validation of data passed to the Tcl interpreter. An attacker could exploit this vulnerability by executing crafted Tcl arguments on an affected device. An exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

CVE-2016-10024

MEDIUM

CVSS:6.0(Medium)

Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kerne...

CWE-202016

CVE-2016-2841

MEDIUM

CVSS:6.0(Medium)

The ne2000_receive function in the NE2000 NIC emulation support (hw/net/ne2000.c) in QEMU before 2.5.1 allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process...

CWE-202016

CVE-2016-9385

MEDIUM

CVSS:6.0(Medium)

The x86 segment base write emulation functionality in Xen 4.4.x through 4.7.x allows local x86 PV guest OS administrators to cause a denial of service (host crash) by leveraging lack of canonical addr...

CWE-202016

CVE-2017-12338

MEDIUM

CVSS:6.0(Medium)

A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validatio...

CWE-202017

CVE-2018-12198

MEDIUM

CVSS:6.0(Medium)

Insufficient input validation in Intel(R) Server Platform Services HECI subsystem before version SPS_E5_04.00.04.393.0 may allow privileged user to potentially cause a denial of service via local acce...

CWE-202018

CVE-2018-12215

MEDIUM

CVSS:6.0(Medium)

Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x...

CWE-202018

CVE-2020-3201

Vulnerability Description

Related Vulnerabilities

CVE-2016-10024

CVE-2016-2841

CVE-2016-9385

CVE-2017-12338

CVE-2018-12198

CVE-2018-12215