How severe is CVE-2020-3338?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2020-3338?

This is classified as CWE-404, which is a common weakness in software security.

CVE-2020-3338 - HIGH Severity | CVSS 7.5

Vulnerability Description

A vulnerability in the Protocol Independent Multicast (PIM) feature for IPv6 networks (PIM6) of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper error handling when processing inbound PIM6 packets. An attacker could exploit this vulnerability by sending multiple crafted PIM6 packets to an affected device. A successful exploit could allow the attacker to cause the PIM6 application to leak system memory. Over time, this memory leak could cause the PIM6 application to stop processing legitimate PIM6 traffic, leading to a DoS condition on the affected device.

Related Vulnerabilities

CVE-2010-4038

HIGH

CVSS:7.5(High)

The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a shutdown action, which allows remote attackers to cause a denial of service (application crash) via unspeci...

CWE-4042010

CVE-2012-2805

HIGH

CVSS:7.5(High)

Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service.

CWE-4042012

CVE-2013-4133

HIGH

CVSS:7.5(High)

kde-workspace before 4.10.5 has a memory leak in plasma desktop

CWE-4042013

CVE-2014-125066

HIGH

CVSS:7.5(High)

A vulnerability was found in emmflo yuko-bot. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument title leads to denial of service. The attac...

CWE-4042014

CVE-2015-10025

HIGH

CVSS:7.5(High)

A vulnerability has been found in luelista miniConf up to 1.7.6 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file miniConf/MessageView.cs of the com...

CWE-4042015

CVE-2015-10085

HIGH

CVSS:7.5(High)

A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious deli...

CWE-4042015