How severe is CVE-2023-20213?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.3 out of 10.

What type of vulnerability is CVE-2023-20213?

This is classified as CWE-787, which is a common weakness in software security.

CVE-2023-20213

MEDIUM Year: 2023

CVSS v3 Score

4.3

Medium

Weakness Type

CWE-787

View all →

Vulnerability Description

A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic. An attacker could exploit this vulnerability by sending crafted CDP traffic to the device. A successful exploit could cause the CDP process to crash, impacting neighbor discovery and the ability of Cisco ISE to determine the reachability of remote devices. After a crash, the CDP process must be manually restarted using the cdp enable command in interface configuration mode.

CVE-2018-0847

MEDIUM

CVSS:4.3(Medium)

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 20...

CWE-7872018

CVE-2018-0939

MEDIUM

CVSS:4.3(Medium)

ChakraCore and Microsoft Edge in Windows 10 1703 and 1709 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerab...

CWE-7872018

CVE-2018-0989

MEDIUM

CVSS:4.3(Medium)

An information disclosure vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Information Disclosure Vulnerability." This af...

CWE-7872018

CVE-2020-6331

MEDIUM

CVSS:4.3(Medium)

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated HPGL file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila...

CWE-7872020

CVE-2020-6335

MEDIUM

CVSS:4.3(Medium)

CWE-7872020

CVE-2020-6336

MEDIUM

CVSS:4.3(Medium)

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavailab...

CWE-7872020

CVE-2023-20213

Vulnerability Description

Related Vulnerabilities

CVE-2018-0847

CVE-2018-0939

CVE-2018-0989

CVE-2020-6331

CVE-2020-6335

CVE-2020-6336