How severe is CVE-2024-20496?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.1 out of 10.

What type of vulnerability is CVE-2024-20496?

This is classified as CWE-787, which is a common weakness in software security.

CVE-2024-20496 - MEDIUM Severity | CVSS 6.1

Vulnerability Description

A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to incorrect handling of a specific type of malformed UDP packet. An attacker in a machine-in-the-middle position could exploit this vulnerability by sending crafted UDP packets to an affected device. A successful exploit could allow the attacker to cause the device to reboot, resulting in a DoS condition on the affected system.

Related Vulnerabilities

CVE-2019-19332

MEDIUM

CVSS:6.1(Medium)

An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get C...

CWE-7872019

CVE-2020-26208

MEDIUM

CVSS:6.1(Medium)

JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras. In affected versions there is a heap-buffer-overflow on jhead...

CWE-7872020

CVE-2021-3623

MEDIUM

CVSS:6.1(Medium)

A flaw was found in libtpms. The flaw can be triggered by specially-crafted TPM 2 command packets containing illegal values and may lead to an out-of-bounds access when the volatile state of the TPM 2...

CWE-7872021

CVE-2021-46759

MEDIUM

CVSS:6.1(Medium)

Improper syscall input validation in AMD TEE (Trusted Execution Environment) may allow an attacker with physical access and control of a Uapp that runs under the bootloader to reveal the contents of t...

CWE-7872021

CVE-2023-0199

MEDIUM

CVSS:6.1(Medium)

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler, where an out-of-bounds write can lead to denial of service and data tampering.

CWE-7872023

CVE-2023-22351

MEDIUM

CVSS:6.1(Medium)

Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

CWE-7872023