{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T18:10:56.056","vulnerabilities":[{"cve":{"id":"CVE-2020-3527","sourceIdentifier":"psirt@cisco.com","published":"2020-09-24T18:15:21.807","lastModified":"2024-11-21T05:31:15.313","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to crash the device. The vulnerability is due to insufficient packet size validation. An attacker could exploit this vulnerability by sending jumbo frames or frames larger than the configured MTU size to the management interface of this device. A successful exploit could allow the attacker to crash the device fully before an automatic recovery."},{"lang":"es","value":"Una vulnerabilidad en el kernel Polaris de Cisco Catalyst 9200 Series Switches, podría permitir a un atacante remoto no autenticado bloquear el dispositivo. La vulnerabilidad es debido a una comprobación insuficiente del tamaño del paquete. Un atacante podría explotar esta vulnerabilidad mediante el envío de tramas gigantes o tramas más grandes que el tamaño de MTU configurado hacia la interfaz de administración de este dispositivo. Una explotación con éxito podría permitir al atacante bloquear completamente el dispositivo antes de una recuperación automática."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.0}],"cvssMetricV30":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*","versionStartIncluding":"16.9.0","versionEndExcluding":"16.9.5","matchCriteriaId":"A053F699-19B1-4104-A9D3-278B83DE69A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*","versionStartIncluding":"16.12.0","versionEndExcluding":"16.12.3","matchCriteriaId":"E8D596A2-38A6-4A61-BE20-CB11636B5219"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"AFCEBFFC-DD60-4CB1-A7F2-9AC09977BA4F"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"B9F7B21F-1DAA-45C7-8C24-D3A19F1C5459"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24pxg-2y:-:*:*:*:*:*:*:*","matchCriteriaId":"1C4F9918-E075-4F78-AFD7-0BB7FA97C1F6"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24pxg-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"C7E00A0B-A58E-472F-B107-0FE106751F2D"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"BCB45406-5216-4A11-B8D3-C44639DC26B0"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-24t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"215D01AE-3767-482A-85C5-3361506F0AC3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48p-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"A06E37A8-166F-4534-9089-D20B1227F4DD"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48p-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"B9D6DAE3-BAD0-46D8-B899-45B955F532F7"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48pxg-2y:-:*:*:*:*:*:*:*","matchCriteriaId":"327167E8-4B65-4F9D-8760-34CDA03887CA"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48pxg-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"A0DA2253-C6A9-4749-B313-6552628A96F3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48t-4g:-:*:*:*:*:*:*:*","matchCriteriaId":"C925086A-94B9-4FE0-9FEB-3242C1217453"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_c9200l-48t-4x:-:*:*:*:*:*:*:*","matchCriteriaId":"6EB14B34-4035-41D2-834B-7FB069264207"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-JP-DOS-g5FfGm8y","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-JP-DOS-g5FfGm8y","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}