How severe is CVE-2024-20259?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.6 out of 10.

What type of vulnerability is CVE-2024-20259?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2024-20259 - HIGH Severity | CVSS 8.6

Vulnerability Description

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a crafted IPv4 DHCP request packet being mishandled when endpoint analytics are enabled. An attacker could exploit this vulnerability by sending a crafted DHCP request through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. Note: The attack vector is listed as network because a DHCP relay anywhere on the network could allow exploits from networks other than the adjacent one.

Related Vulnerabilities

CVE-2017-16717

HIGH

CVSS:8.6(High)

A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio HMI. The heap-based buffer overflow vulnerability has been identified, which may allow remote code execution.

CWE-1222017

CVE-2021-21006

HIGH

CVSS:8.6(High)

Adobe Photoshop version 22.1 (and earlier) is affected by a heap buffer overflow vulnerability when handling a specially crafted font file. Successful exploitation could lead to arbitrary code executi...

CWE-1222021

CVE-2021-3770

HIGH

CVSS:8.6(High)

vim is vulnerable to Heap-based Buffer Overflow

CWE-1222021

CVE-2022-2601

HIGH

CVSS:8.6(High)

A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for ...

CWE-1222022

CVE-2024-56406

HIGH

CVSS:8.6(High)

A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions from 5.33.1 through 5.41.10. When there are non-ASC...

CWE-1222024

CVE-2024-39825

HIGH

CVSS:8.5(High)

Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.

CWE-1222024