CVE-2020-3199

Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) that are running Cisco IOS Software could allow an attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Published: Jun 3, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-3199
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 8.3
AV:A/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / ios	12.2(60)ez16	12.2(60)ez16.x
cisco / ios	15.0(2)sg11a	15.0(2)sg11a.x
cisco / ios	15.3(3)jaa1	15.3(3)jaa1.x
cisco / ios	15.3(3)jpj	15.3(3)jpj.x
cisco / ios	15.4(1)cg	15.4(1)cg.x
cisco / ios	15.4(2)cg	15.4(2)cg.x
cisco / ios	15.4(3)m	15.4(3)m.x
cisco / ios	15.4(3)m1	15.4(3)m1.x
cisco / ios	15.4(3)m2	15.4(3)m2.x
cisco / ios	15.4(3)m3	15.4(3)m3.x
cisco / ios	15.4(3)m4	15.4(3)m4.x
cisco / ios	15.4(3)m5	15.4(3)m5.x
cisco / ios	15.4(3)m6	15.4(3)m6.x
cisco / ios	15.4(3)m6a	15.4(3)m6a.x
cisco / ios	15.4(3)m7	15.4(3)m7.x
cisco / ios	15.4(3)m8	15.4(3)m8.x
cisco / ios	15.4(3)m9	15.4(3)m9.x
cisco / ios	15.4(3)m10	15.4(3)m10.x
cisco / ios	15.5(1)t	15.5(1)t.x
cisco / ios	15.5(1)t2	15.5(1)t2.x
cisco / ios	15.5(1)t3	15.5(1)t3.x
cisco / ios	15.5(1)t4	15.5(1)t4.x
cisco / ios	15.5(2)t	15.5(2)t.x
cisco / ios	15.5(2)t1	15.5(2)t1.x
cisco / ios	15.5(2)t2	15.5(2)t2.x
cisco / ios	15.5(2)t3	15.5(2)t3.x
cisco / ios	15.5(2)t4	15.5(2)t4.x
cisco / ios	15.5(3)m	15.5(3)m.x
cisco / ios	15.5(3)m0a	15.5(3)m0a.x
cisco / ios	15.5(3)m1	15.5(3)m1.x
cisco / ios	15.5(3)m2	15.5(3)m2.x
cisco / ios	15.5(3)m2a	15.5(3)m2a.x
cisco / ios	15.5(3)m3	15.5(3)m3.x
cisco / ios	15.5(3)m4	15.5(3)m4.x
cisco / ios	15.5(3)m4a	15.5(3)m4a.x
cisco / ios	15.5(3)m5	15.5(3)m5.x
cisco / ios	15.5(3)m6	15.5(3)m6.x
cisco / ios	15.5(3)m6a	15.5(3)m6a.x
cisco / ios	15.5(3)m7	15.5(3)m7.x
cisco / ios	15.5(3)m8	15.5(3)m8.x
cisco / ios	15.5(3)m9	15.5(3)m9.x
cisco / ios	15.5(3)m10	15.5(3)m10.x
cisco / ios	15.5(3)m11	15.5(3)m11.x
cisco / ios	15.6(1)t	15.6(1)t.x
cisco / ios	15.6(1)t0a	15.6(1)t0a.x
cisco / ios	15.6(1)t1	15.6(1)t1.x
cisco / ios	15.6(1)t2	15.6(1)t2.x
cisco / ios	15.6(1)t3	15.6(1)t3.x
cisco / ios	15.6(2)t	15.6(2)t.x
cisco / ios	15.6(2)t1	15.6(2)t1.x
cisco / ios	15.6(2)t2	15.6(2)t2.x
cisco / ios	15.6(2)t3	15.6(2)t3.x
cisco / ios	15.6(3)m	15.6(3)m.x
cisco / ios	15.6(3)m0a	15.6(3)m0a.x
cisco / ios	15.6(3)m1	15.6(3)m1.x
cisco / ios	15.6(3)m1b	15.6(3)m1b.x
cisco / ios	15.6(3)m2	15.6(3)m2.x
cisco / ios	15.6(3)m3	15.6(3)m3.x
cisco / ios	15.6(3)m3a	15.6(3)m3a.x
cisco / ios	15.6(3)m4	15.6(3)m4.x
cisco / ios	15.6(3)m5	15.6(3)m5.x
cisco / ios	15.6(3)m6	15.6(3)m6.x
cisco / ios	15.6(3)m6a	15.6(3)m6a.x
cisco / ios	15.6(3)m6b	15.6(3)m6b.x
cisco / ios	15.6(3)m7	15.6(3)m7.x
cisco / ios	15.6(3)m8	15.6(3)m8.x
cisco / ios	15.6(3)m9	15.6(3)m9.x
cisco / ios	15.7(3)m	15.7(3)m.x
cisco / ios	15.7(3)m1	15.7(3)m1.x
cisco / ios	15.7(3)m2	15.7(3)m2.x
cisco / ios	15.7(3)m3	15.7(3)m3.x
cisco / ios	15.7(3)m4	15.7(3)m4.x
cisco / ios	15.7(3)m4a	15.7(3)m4a.x
cisco / ios	15.7(3)m4b	15.7(3)m4b.x
cisco / ios	15.7(3)m5	15.7(3)m5.x
cisco / ios	15.7(3)m6	15.7(3)m6.x
cisco / ios	15.7(3)m7	15.7(3)m7.x
cisco / ios	15.8(3)m	15.8(3)m.x
cisco / ios	15.8(3)m0a	15.8(3)m0a.x
cisco / ios	15.8(3)m1	15.8(3)m1.x
cisco / ios	15.8(3)m2	15.8(3)m2.x
cisco / ios	15.8(3)m2a	15.8(3)m2a.x
cisco / ios	15.8(3)m3	15.8(3)m3.x
cisco / ios	15.8(3)m3a	15.8(3)m3a.x
cisco / ios	15.8(3)m3b	15.8(3)m3b.x
cisco / ios	15.8(3)m4	15.8(3)m4.x
cisco / ios	15.8(3)m5	15.8(3)m5.x
cisco / ios	15.9(3)m	15.9(3)m.x
cisco / ios	15.9(3)m0a	15.9(3)m0a.x

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-gos-vuln-s9qS8kYL

Vulnerability Database

289,599

CVE-2020-3199