Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2020-09-24 CVE-2020-3560 Resource Exhaustion vulnerability in Cisco products
A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device.
network
low complexity
cisco CWE-400
8.6
2020-09-24 CVE-2020-3527 Resource Exhaustion vulnerability in Cisco IOS XE
A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to crash the device.
network
low complexity
cisco CWE-400
8.6
2020-09-24 CVE-2020-3512 Resource Exhaustion vulnerability in Cisco IOS XE 15.2(7)E
A vulnerability in the PROFINET handler for Link Layer Discovery Protocol (LLDP) messages of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a crash on an affected device, resulting in a denial of service (DoS) condition.
low complexity
cisco CWE-400
7.4
2020-09-24 CVE-2020-3510 Resource Exhaustion vulnerability in Cisco IOS XE 16.12.1/16.12.2/17.1.1
A vulnerability in the Umbrella Connector component of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to trigger a reload, resulting in a denial of service condition on an affected device.
network
low complexity
cisco CWE-400
8.6
2020-09-24 CVE-2020-3487 Resource Exhaustion vulnerability in Cisco IOS XE
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition of an affected device.
low complexity
cisco CWE-400
6.5
2020-09-24 CVE-2020-3479 Resource Exhaustion vulnerability in Cisco IOS and IOS XE
A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
7.5
2020-09-24 CVE-2020-3428 Resource Exhaustion vulnerability in Cisco IOS XE
A vulnerability in the WLAN Local Profiling feature of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
low complexity
cisco CWE-400
6.5
2020-09-24 CVE-2020-3414 Resource Exhaustion vulnerability in Cisco IOS XE
A vulnerability in the packet processing of Cisco IOS XE Software for Cisco 4461 Integrated Services Routers could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
8.6
2020-09-24 CVE-2020-3409 Resource Exhaustion vulnerability in Cisco IOS and IOS XE
A vulnerability in the PROFINET feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to crash and reload, resulting in a denial of service (DoS) condition on the device.
low complexity
cisco CWE-400
7.4
2020-09-24 CVE-2020-3408 Resource Exhaustion vulnerability in Cisco IOS and IOS XE
A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
8.6