CVE-2024-20446
CVSS 3.1 Score 8.6 of 10 (high)
Details
Summary
CVE-2024-20446 is a vulnerability affecting the DHCPv6 relay agent of Cisco NX-OS Software that allows unauthenticated remote attackers to trigger a denial of service (DoS) condition on vulnerable devices. This issue arises from improper handling of certain fields in a DHCPv6 RELAY-REPLY message, enabling attackers to send crafted DHCPv6 packets to any configured IPv6 address. Successful exploitation can cause the dhcp_snoop process to crash and restart repeatedly, leading the affected device to reload and experience service disruption. To remediate this vulnerability, organizations should apply security updates provided by Cisco as outlined in their advisory. The vulnerability has a high base severity score of 8.6, indicating significant potential impact on availability without requiring user interaction or special privileges to exploit.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.