How severe is CVE-2020-3548?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2020-3548?

This is classified as CWE-407, which is a common weakness in software security.

CVE-2020-3548

MEDIUM Year: 2020

CVSS v3 Score

5.3

Medium

Weakness Type

CWE-407

View all →

Vulnerability Description

A vulnerability in the Transport Layer Security (TLS) protocol implementation of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause high CPU usage on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to inefficient processing of incoming TLS traffic. An attacker could exploit this vulnerability by sending a series of crafted TLS packets to an affected device. A successful exploit could allow the attacker to trigger a prolonged state of high CPU utilization. The affected device would still be operative, but response time and overall performance may be degraded.There are no workarounds that address this vulnerability.

CVE-2020-27223

MEDIUM

CVSS:5.3(Medium)

In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” (i.e. q) parameter...

CWE-4072020

CVE-2024-12133

MEDIUM

CVSS:5.3(Medium)

A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down ...

CWE-4072024

CVE-2024-12243

MEDIUM

CVSS:5.3(Medium)

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, lead...

CWE-4072024

CVE-2025-23020

MEDIUM

CVSS:5.3(Medium)

An issue was discovered in Kwik before 0.10.1. A hash collision vulnerability (in the hash table used to manage connections) allows remote attackers to cause a considerable CPU load on the server (a H...

CWE-4072025

CVE-2025-24946

MEDIUM

CVSS:5.3(Medium)

The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiati...

CWE-4072025

CVE-2025-24947

MEDIUM

CVSS:5.3(Medium)

A hash collision vulnerability (in the hash table used to manage connections) in LSQUIC (aka LiteSpeed QUIC) before 4.2.0 allows remote attackers to cause a considerable CPU load on the server (a Hash...

CWE-4072025

CVE-2020-3548

Vulnerability Description

Related Vulnerabilities

CVE-2020-27223

CVE-2024-12133

CVE-2024-12243

CVE-2025-23020

CVE-2025-24946

CVE-2025-24947