How severe is CVE-2022-20683?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.6 out of 10.

What type of vulnerability is CVE-2022-20683?

This is classified as CWE-124, which is a common weakness in software security.

CVE-2022-20683 - HIGH Severity | CVSS 8.6

Vulnerability Description

A vulnerability in the Application Visibility and Control (AVC-FNF) feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient packet verification for traffic inspected by the AVC feature. An attacker could exploit this vulnerability by sending crafted packets from the wired network to a wireless client, resulting in the crafted packets being processed by the wireless controller. A successful exploit could allow the attacker to cause a crash and reload of the affected device, resulting in a DoS condition.

Related Vulnerabilities

CVE-2025-27439

HIGH

CVSS:8.5(High)

Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.

CWE-1242025

CVE-2025-27440

HIGH

CVSS:8.5(High)

Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.

CWE-1242025

CVE-2021-38575

HIGH

CVSS:8.1(High)

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.

CWE-1242021

CVE-2021-36064

HIGH

CVSS:7.8(High)

XMP Toolkit version 2020.1 (and earlier) is affected by a Buffer Underflow vulnerability which could result in arbitrary code execution in the context of the current user. Exploitation of this issue r...

CWE-1242021

CVE-2022-33896

HIGH

CVSS:7.8(High)

A buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11.0.0.5357 parses XML-based office files. A specially-crafted malformed file can cause memory corruption by usin...

CWE-1242022

CVE-2024-52990

HIGH

CVSS:7.8(High)

Animate versions 23.0.8, 24.0.5 and earlier are affected by a Buffer Underwrite ('Buffer Underflow') vulnerability that could result in arbitrary code execution in the context of the current user. An ...

CWE-1242024