漏洞标题
Cisco Small Business 220 Series Smart Switches Link Layer Discovery Protocol 漏洞
漏洞描述信息
Cisco小型企业220系列智能交换机链路层发现协议漏洞
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
漏洞类别
N/A
漏洞标题
Cisco Small Business 220 Series Smart Switches Link Layer Discovery Protocol Vulnerabilities
漏洞描述信息
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. An unauthenticated, adjacent attacker could perform the following: Execute code on the affected device or cause it to reload unexpectedly Cause LLDP database corruption on the affected device For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). Cisco has released firmware updates that address these vulnerabilities.
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
漏洞类别
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
漏洞标题
Cisco Small Business 220 Series Smart Switches缓冲区错误漏洞
漏洞描述信息
Cisco Small Business 220 Series Smart Switches是美国思科(Cisco)公司的一款小型智能交换机设备。 Cisco Small Business 220 Series Smart Switches存在缓冲区错误漏洞,攻击者可利用该漏洞在受影响的设备上执行代码或导致代码意外重新加载在受影响的设备上导致LLDP数据库损坏。注:LLDP是第2层协议。要利用这些漏洞进行攻击,攻击者必须与受影响设备位于同一广播域中(第2层相邻)
CVSS信息
N/A
漏洞类别
缓冲区错误