CVE-2020-3198— Cisco 809、829 Industrial Integrated Services Routers和Cisco 1000 Series Connected Grid Routers IOS Software 缓冲区错误漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2020-3198の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Cisco IOS Software for Cisco Industrial Routers Arbitrary Code Execution Vulnerabilities
ソース: NVD (National Vulnerability Database)
脆弱性説明
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker or an authenticated, local attacker to execute arbitrary code on an affected system or cause an affected system to crash and reload. For more information about these vulnerabilities, see the Details section of this advisory.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
内存缓冲区边界内操作的限制不恰当
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Cisco 809、829 Industrial Integrated Services Routers和Cisco 1000 Series Connected Grid Routers IOS Software 缓冲区错误漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Cisco 809 Industrial Integrated Services Routers等都是美国思科(Cisco)公司的产品。Cisco 809 Industrial Integrated Services Routers是一款工业集成多业务路由器。Cisco 829 Industrial Integrated Services Routers是一款工业集成多业务路由器。Cisco 1000 Series Connected Grid Routers是一款1000系列互联网格路由器。Cisco
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| Cisco | Cisco IOS 12.2(60)EZ16 | n/a | - |
II. CVE-2020-3198の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2020-3198のインテリジェンス情報
请登录查看更多情报信息。
CVE-2020-3198 厂商安全公告 (1)
- Cisco IOS Software for Cisco Industrial Routers Arbitrary Code Execution Vulnerabilitiesvendor-advisoryx_refsource_CISCO
Same Patch Batch · Cisco · 2020-06-03 · 50 CVEs total
| CVE-2020-3353 | 5.9 MEDIUM | Cisco Identity Services Engine Denial of Service Vulnerability |
| CVE-2020-3319 | 3.3 LOW | Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerabilit |
| CVE-2020-3322 | 3.3 LOW | Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerabilit |
| CVE-2020-3321 | 3.3 LOW | Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerabilit |
| CVE-2020-3333 | Cisco Application Services Engine Software Unauthenticated Event Policies Update Vulnerabi | |
| CVE-2020-3257 | Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Vulnerabil | |
| CVE-2020-3267 | Cisco Unified Contact Center Express Improper API Authorization Vulnerability | |
| CVE-2020-3258 | Cisco IOS Software for Cisco Industrial Routers Arbitrary Code Execution Vulnerabilities | |
| CVE-2020-3281 | Cisco Digital Network Architecture Center Information Disclosure Vulnerability | |
| CVE-2020-3232 | Cisco ASR 920 Series Aggregation Services Router Model 12SZ-IM SNMP Denial of Service Vuln | |
| CVE-2020-3200 | Cisco IOS and IOS XE Software Secure Shell Denial of Service Vulnerability | |
| CVE-2020-3199 | Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Vulnerabil | |
| CVE-2020-3228 | Cisco IOS, IOS XE, and NX-OS Software Security Group Tag Exchange Protocol Denial of Servi | |
| CVE-2020-3231 | Cisco IOS Software for Catalyst 2960-L Series Switches and Catalyst CDB-8P Switches 802.1X | |
| CVE-2020-3230 | Cisco IOS and IOS XE Software Internet Key Exchange Version 2 Denial of Service Vulnerabil | |
| CVE-2020-3229 | Cisco IOS XE Software Web UI Privilege Escalation Vulnerability | |
| CVE-2020-3227 | Cisco IOx for IOS XE Software Privilege Escalation Vulnerability | |
| CVE-2020-3226 | Cisco IOS and IOS XE Software Session Initiation Protocol Denial of Service Vulnerability | |
| CVE-2020-3224 | Cisco IOS XE Software Web UI Command Injection Vulnerability | |
| CVE-2020-3233 | Cisco IOx Application Framework Local Manager Stored Cross-Site Scripting Vulnerability |
Showing 20 of 50 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Cisco IOS 12.2(60)EZ16
- CVE-2020-3258
Cisco IOS Software for Cisco Industrial Routers Arbitrary Co - CVE-2020-3257
Cisco IOx Application Environment for IOS Software for Cisco - CVE-2020-3234
Cisco IOS Software for Cisco Industrial Routers Virtual Devi - CVE-2020-3199
Cisco IOx Application Environment for IOS Software for Cisco - CVE-2020-3210
Cisco IOS Software for Cisco Industrial Routers Virtual Devi
同じベンダー: Cisco
- CVE-2026-20178
Cisco Webex App URL参数验证缺陷致重定向 - CVE-2026-20246
Cisco Umbrella Virtual Appliance Privilege Escalation Vulner - CVE-2026-20220
Cisco Crosswork Network Controller Remote Code Execution Vul - CVE-2026-20190
Cisco Identity Services Engine Information Disclosure Vulner - CVE-2026-20181
Cisco Identity Services Engine Remote Code Execution Vulnera
同じ弱点: CWE-119
- CVE-2026-12216
svaarala duktape duk_api_bytecode.c memory corruption - CVE-2026-0409
Netgear Orbi 370 Series Remote Code Execution vulnerability - CVE-2026-9301
omec-project amf NGReset Message memory corruption - CVE-2026-9300
omec-project amf NGSetupRequest memory corruption - CVE-2026-9299
omec-project amf handler.go PDUSessionResourceModifyIndicati
V. CVE-2020-3198へのコメント
まだコメントはありません