Guest

Preview Tool

Cisco Bug: CSCvs93302 - CDP Information Leakage Vulnerability

Last Modified

Oct 12, 2020

Products (14)

  • Cisco 2600 Series Multiservice Platforms
  • Cisco 1000 Series Integrated Services Routers
  • Cisco Catalyst 9500 Series Switches
  • Cisco Catalyst 3650 Series Switches
  • Cisco Catalyst 3850 Series Switches
  • Cisco 4000 Series Integrated Services Routers
  • Cisco Catalyst 9200 Series Switches
  • Cisco Catalyst 9800 Series Wireless Controllers
  • Cisco Catalyst 9600 Series Switches
  • Cisco ASR 1000 Series Aggregation Services Routers
View all products in Bug Search Tool Login Required

Known Affected Releases

Denali-16.3.9

Description (partial)

Symptom:
CDP when processing a crafted CDP packet; will leak random memory data (not packet data) which is stored in the CDP cache; which can be read via SNMP using the cisco-cdp-mib.

Conditions:
Cisco IOS or Cisco IOS XE software configured with both CDP and SNMP.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.