Arbitrary Code Exec in Cisco IOS GET VPN via GDOI
CVE-2023-20109 Published on September 27, 2023
A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affected device or cause the device to crash. This vulnerability is due to insufficient validation of attributes in the Group Domain of Interpretation (GDOI) and G-IKEv2 protocols of the GET VPN feature. An attacker could exploit this vulnerability by either compromising an installed key server or modifying the configuration of a group member to point to a key server that is controlled by the attacker. A successful exploit could allow the attacker to execute arbitrary code and gain full control of the affected system or cause the affected system to reload, resulting in a denial of service (DoS) condition. For more information, see the Details ["#details"] section of this advisory.
Known Exploited Vulnerability
This Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds Write Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.
The following remediation steps are recommended / required by October 31, 2023: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Vulnerability Analysis
CVE-2023-20109 can be exploited with network access, and requires user privileges. This vulnerability is consided to have a high level of attack complexity. This vulnerability is known to be actively exploited by threat actors. The potential impact of an exploit of this vulnerability is considered to be very high.
Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH
Weakness Type
What is a Memory Corruption Vulnerability?
The software writes data past the end, or before the beginning, of the intended buffer. Typically, this can result in corruption of data, a crash, or code execution. The software may modify an index or perform pointer arithmetic that references a memory location that is outside of the boundaries of the buffer. A subsequent write operation then produces undefined or unexpected results.
CVE-2023-20109 has been classified to as a Memory Corruption vulnerability or weakness.
Products Associated with CVE-2023-20109
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-20109 are published in these products:
Affected Versions
Cisco IOS:- Version 12.4(24)T is affected.
- Version 12.4(24)T3 is affected.
- Version 12.4(22)T1 is affected.
- Version 12.4(24)T5 is affected.
- Version 12.4(24)T4 is affected.
- Version 12.4(22)T is affected.
- Version 12.4(24)T8 is affected.
- Version 12.4(24)T2 is affected.
- Version 12.4(22)T5 is affected.
- Version 12.4(22)T4 is affected.
- Version 12.4(24)T1 is affected.
- Version 12.4(24)T7 is affected.
- Version 12.4(22)T3 is affected.
- Version 12.4(24)T6 is affected.
- Version 12.4(22)T2 is affected.
- Version 12.4(24)T4a is affected.
- Version 12.4(24)T4b is affected.
- Version 12.4(24)T3e is affected.
- Version 12.4(24)T4c is affected.
- Version 12.4(24)T4d is affected.
- Version 12.4(24)T4e is affected.
- Version 12.4(24)T3f is affected.
- Version 12.4(24)T4f is affected.
- Version 12.4(24)T4l is affected.
- Version 12.4(24)MD1 is affected.
- Version 12.4(24)MD is affected.
- Version 12.4(24)MD3 is affected.
- Version 12.4(24)MD2 is affected.
- Version 12.4(22)MD1 is affected.
- Version 12.4(22)MD2 is affected.
- Version 12.4(24)MD5 is affected.
- Version 12.4(22)MD is affected.
- Version 12.4(24)MD4 is affected.
- Version 12.4(24)MD6 is affected.
- Version 12.4(24)MD7 is affected.
- Version 12.4(22)XR5 is affected.
- Version 12.4(22)XR4 is affected.
- Version 12.4(22)XR7 is affected.
- Version 12.4(22)XR2 is affected.
- Version 12.4(22)XR6 is affected.
- Version 12.4(22)XR10 is affected.
- Version 12.4(22)XR1 is affected.
- Version 12.4(22)XR9 is affected.
- Version 12.4(22)XR3 is affected.
- Version 12.4(22)XR8 is affected.
- Version 12.4(22)XR11 is affected.
- Version 12.4(22)XR12 is affected.
- Version 12.4(22)MDA3 is affected.
- Version 12.4(24)MDA5 is affected.
- Version 12.4(22)MDA5 is affected.
- Version 12.4(24)MDA3 is affected.
- Version 12.4(22)MDA4 is affected.
- Version 12.4(24)MDA4 is affected.
- Version 12.4(24)MDA1 is affected.
- Version 12.4(22)MDA is affected.
- Version 12.4(22)MDA2 is affected.
- Version 12.4(22)MDA1 is affected.
- Version 12.4(24)MDA2 is affected.
- Version 12.4(22)MDA6 is affected.
- Version 12.4(24)MDA6 is affected.
- Version 12.4(24)MDA7 is affected.
- Version 12.4(24)MDA8 is affected.
- Version 12.4(24)MDA10 is affected.
- Version 12.4(24)MDA9 is affected.
- Version 12.4(24)MDA11 is affected.
- Version 12.4(24)MDA12 is affected.
- Version 12.4(24)MDA13 is affected.
- Version 12.4(24)YG3 is affected.
- Version 12.4(24)YG4 is affected.
- Version 12.4(24)YG1 is affected.
- Version 12.4(24)YG2 is affected.
- Version 12.4(24)YG is affected.
- Version 15.0(1)M1 is affected.
- Version 15.0(1)M5 is affected.
- Version 15.0(1)M4 is affected.
- Version 15.0(1)M3 is affected.
- Version 15.0(1)M2 is affected.
- Version 15.0(1)M6 is affected.
- Version 15.0(1)M is affected.
- Version 15.0(1)M7 is affected.
- Version 15.0(1)M10 is affected.
- Version 15.0(1)M9 is affected.
- Version 15.0(1)M8 is affected.
- Version 15.0(1)XA2 is affected.
- Version 15.0(1)XA4 is affected.
- Version 15.0(1)XA1 is affected.
- Version 15.0(1)XA3 is affected.
- Version 15.0(1)XA is affected.
- Version 15.0(1)XA5 is affected.
- Version 15.1(2)T is affected.
- Version 15.1(1)T4 is affected.
- Version 15.1(3)T2 is affected.
- Version 15.1(1)T1 is affected.
- Version 15.1(2)T0a is affected.
- Version 15.1(3)T3 is affected.
- Version 15.1(1)T3 is affected.
- Version 15.1(2)T3 is affected.
- Version 15.1(2)T4 is affected.
- Version 15.1(1)T2 is affected.
- Version 15.1(3)T is affected.
- Version 15.1(2)T2a is affected.
- Version 15.1(3)T1 is affected.
- Version 15.1(1)T is affected.
- Version 15.1(2)T2 is affected.
- Version 15.1(2)T1 is affected.
- Version 15.1(2)T5 is affected.
- Version 15.1(3)T4 is affected.
- Version 15.1(1)T5 is affected.
- Version 15.1(1)XB is affected.
- Version 15.0(1)S2 is affected.
- Version 15.0(1)S1 is affected.
- Version 15.0(1)S is affected.
- Version 15.0(1)S3a is affected.
- Version 15.0(1)S4 is affected.
- Version 15.0(1)S5 is affected.
- Version 15.0(1)S4a is affected.
- Version 15.0(1)S6 is affected.
- Version 15.2(1)S is affected.
- Version 15.2(2)S is affected.
- Version 15.2(1)S1 is affected.
- Version 15.2(4)S is affected.
- Version 15.2(1)S2 is affected.
- Version 15.2(2)S1 is affected.
- Version 15.2(2)S2 is affected.
- Version 15.2(2)S0a is affected.
- Version 15.2(2)S0c is affected.
- Version 15.2(4)S1 is affected.
- Version 15.2(4)S4 is affected.
- Version 15.2(4)S6 is affected.
- Version 15.2(4)S2 is affected.
- Version 15.2(4)S5 is affected.
- Version 15.2(4)S3 is affected.
- Version 15.2(4)S3a is affected.
- Version 15.2(4)S4a is affected.
- Version 15.2(4)S7 is affected.
- Version 15.3(1)T is affected.
- Version 15.3(2)T is affected.
- Version 15.3(1)T1 is affected.
- Version 15.3(1)T2 is affected.
- Version 15.3(1)T3 is affected.
- Version 15.3(1)T4 is affected.
- Version 15.3(2)T1 is affected.
- Version 15.3(2)T2 is affected.
- Version 15.3(2)T3 is affected.
- Version 15.3(2)T4 is affected.
- Version 15.0(2)EY is affected.
- Version 15.0(2)EY1 is affected.
- Version 15.0(2)EY2 is affected.
- Version 15.0(2)EY3 is affected.
- Version 15.1(2)S is affected.
- Version 15.1(1)S is affected.
- Version 15.1(1)S1 is affected.
- Version 15.1(3)S is affected.
- Version 15.1(1)S2 is affected.
- Version 15.1(2)S1 is affected.
- Version 15.1(2)S2 is affected.
- Version 15.1(3)S1 is affected.
- Version 15.1(3)S0a is affected.
- Version 15.1(3)S2 is affected.
- Version 15.1(3)S4 is affected.
- Version 15.1(3)S3 is affected.
- Version 15.1(3)S5 is affected.
- Version 15.1(3)S6 is affected.
- Version 15.1(3)S5a is affected.
- Version 15.1(4)M3 is affected.
- Version 15.1(4)M is affected.
- Version 15.1(4)M1 is affected.
- Version 15.1(4)M2 is affected.
- Version 15.1(4)M6 is affected.
- Version 15.1(4)M5 is affected.
- Version 15.1(4)M4 is affected.
- Version 15.1(4)M7 is affected.
- Version 15.1(4)M3a is affected.
- Version 15.1(4)M10 is affected.
- Version 15.1(4)M8 is affected.
- Version 15.1(4)M9 is affected.
- Version 15.0(2)SE is affected.
- Version 15.0(2)SE1 is affected.
- Version 15.0(2)SE2 is affected.
- Version 15.0(2)SE3 is affected.
- Version 15.0(2)SE4 is affected.
- Version 15.0(2)SE5 is affected.
- Version 15.0(2)SE6 is affected.
- Version 15.0(2)SE7 is affected.
- Version 15.0(2)SE8 is affected.
- Version 15.0(2)SE9 is affected.
- Version 15.0(2)SE10 is affected.
- Version 15.0(2)SE11 is affected.
- Version 15.0(2)SE10a is affected.
- Version 15.0(2)SE12 is affected.
- Version 15.0(2)SE13 is affected.
- Version 15.1(2)GC is affected.
- Version 15.1(2)GC1 is affected.
- Version 15.1(2)GC2 is affected.
- Version 15.1(4)GC is affected.
- Version 15.1(4)GC1 is affected.
- Version 15.1(4)GC2 is affected.
- Version 15.1(1)SG is affected.
- Version 15.1(2)SG is affected.
- Version 15.1(1)SG1 is affected.
- Version 15.1(1)SG2 is affected.
- Version 15.1(2)SG1 is affected.
- Version 15.1(2)SG2 is affected.
- Version 15.1(2)SG3 is affected.
- Version 15.1(2)SG4 is affected.
- Version 15.1(2)SG5 is affected.
- Version 15.1(2)SG6 is affected.
- Version 15.1(2)SG7 is affected.
- Version 15.1(2)SG8 is affected.
- Version 15.0(1)MR is affected.
- Version 15.0(2)MR is affected.
- Version 15.2(4)M is affected.
- Version 15.2(4)M1 is affected.
- Version 15.2(4)M2 is affected.
- Version 15.2(4)M4 is affected.
- Version 15.2(4)M3 is affected.
- Version 15.2(4)M5 is affected.
- Version 15.2(4)M8 is affected.
- Version 15.2(4)M10 is affected.
- Version 15.2(4)M7 is affected.
- Version 15.2(4)M6 is affected.
- Version 15.2(4)M9 is affected.
- Version 15.2(4)M6a is affected.
- Version 15.2(4)M11 is affected.
- Version 12.4(24)MDB is affected.
- Version 12.4(24)MDB1 is affected.
- Version 12.4(24)MDB3 is affected.
- Version 12.4(24)MDB4 is affected.
- Version 12.4(24)MDB5 is affected.
- Version 12.4(24)MDB6 is affected.
- Version 12.4(24)MDB7 is affected.
- Version 12.4(24)MDB5a is affected.
- Version 12.4(24)MDB8 is affected.
- Version 12.4(24)MDB9 is affected.
- Version 12.4(24)MDB10 is affected.
- Version 12.4(24)MDB11 is affected.
- Version 12.4(24)MDB12 is affected.
- Version 12.4(24)MDB13 is affected.
- Version 12.4(24)MDB14 is affected.
- Version 12.4(24)MDB15 is affected.
- Version 12.4(24)MDB16 is affected.
- Version 12.4(24)MDB17 is affected.
- Version 12.4(24)MDB18 is affected.
- Version 12.4(24)MDB19 is affected.
- Version 15.0(2)EX is affected.
- Version 15.0(2)EX1 is affected.
- Version 15.0(2)EX2 is affected.
- Version 15.0(2)EX3 is affected.
- Version 15.0(2)EX4 is affected.
- Version 15.0(2)EX5 is affected.
- Version 15.0(2)EX8 is affected.
- Version 15.0(2a)EX5 is affected.
- Version 15.0(2)EX10 is affected.
- Version 15.0(2)EX11 is affected.
- Version 15.0(2)EX13 is affected.
- Version 15.0(2)EX12 is affected.
- Version 15.2(1)GC is affected.
- Version 15.2(1)GC1 is affected.
- Version 15.2(1)GC2 is affected.
- Version 15.2(2)GC is affected.
- Version 15.2(3)GC is affected.
- Version 15.2(3)GC1 is affected.
- Version 15.2(4)GC is affected.
- Version 15.2(4)GC1 is affected.
- Version 15.2(4)GC2 is affected.
- Version 15.2(4)GC3 is affected.
- Version 15.1(1)SY is affected.
- Version 15.1(1)SY1 is affected.
- Version 15.1(2)SY is affected.
- Version 15.1(2)SY1 is affected.
- Version 15.1(2)SY2 is affected.
- Version 15.1(1)SY2 is affected.
- Version 15.1(1)SY3 is affected.
- Version 15.1(2)SY3 is affected.
- Version 15.1(1)SY4 is affected.
- Version 15.1(2)SY4 is affected.
- Version 15.1(1)SY5 is affected.
- Version 15.1(2)SY5 is affected.
- Version 15.1(2)SY4a is affected.
- Version 15.1(1)SY6 is affected.
- Version 15.1(2)SY6 is affected.
- Version 15.1(2)SY7 is affected.
- Version 15.1(2)SY8 is affected.
- Version 15.1(2)SY9 is affected.
- Version 15.1(2)SY10 is affected.
- Version 15.1(2)SY11 is affected.
- Version 15.1(2)SY12 is affected.
- Version 15.1(2)SY13 is affected.
- Version 15.1(2)SY14 is affected.
- Version 15.1(2)SY15 is affected.
- Version 15.1(2)SY16 is affected.
- Version 15.3(1)S is affected.
- Version 15.3(2)S is affected.
- Version 15.3(3)S is affected.
- Version 15.3(1)S2 is affected.
- Version 15.3(1)S1 is affected.
- Version 15.3(2)S2 is affected.
- Version 15.3(2)S1 is affected.
- Version 15.3(3)S1 is affected.
- Version 15.3(3)S2 is affected.
- Version 15.3(3)S3 is affected.
- Version 15.3(3)S6 is affected.
- Version 15.3(3)S4 is affected.
- Version 15.3(3)S1a is affected.
- Version 15.3(3)S5 is affected.
- Version 15.3(3)S7 is affected.
- Version 15.3(3)S8 is affected.
- Version 15.3(3)S9 is affected.
- Version 15.3(3)S10 is affected.
- Version 15.3(3)S8a is affected.
- Version 15.4(1)T is affected.
- Version 15.4(2)T is affected.
- Version 15.4(1)T2 is affected.
- Version 15.4(1)T1 is affected.
- Version 15.4(1)T3 is affected.
- Version 15.4(2)T1 is affected.
- Version 15.4(2)T3 is affected.
- Version 15.4(2)T2 is affected.
- Version 15.4(1)T4 is affected.
- Version 15.4(2)T4 is affected.
- Version 15.0(2)EA is affected.
- Version 15.0(2)EA1 is affected.
- Version 15.2(1)E is affected.
- Version 15.2(2)E is affected.
- Version 15.2(1)E1 is affected.
- Version 15.2(3)E is affected.
- Version 15.2(1)E2 is affected.
- Version 15.2(1)E3 is affected.
- Version 15.2(2)E1 is affected.
- Version 15.2(4)E is affected.
- Version 15.2(3)E1 is affected.
- Version 15.2(2)E2 is affected.
- Version 15.2(2a)E1 is affected.
- Version 15.2(2)E3 is affected.
- Version 15.2(2a)E2 is affected.
- Version 15.2(3)E2 is affected.
- Version 15.2(3a)E is affected.
- Version 15.2(3)E3 is affected.
- Version 15.2(4)E1 is affected.
- Version 15.2(2)E4 is affected.
- Version 15.2(2)E5 is affected.
- Version 15.2(4)E2 is affected.
- Version 15.2(3)E4 is affected.
- Version 15.2(5)E is affected.
- Version 15.2(4)E3 is affected.
- Version 15.2(2)E6 is affected.
- Version 15.2(5a)E is affected.
- Version 15.2(5)E1 is affected.
- Version 15.2(5b)E is affected.
- Version 15.2(2)E5a is affected.
- Version 15.2(5c)E is affected.
- Version 15.2(3)E5 is affected.
- Version 15.2(2)E5b is affected.
- Version 15.2(5a)E1 is affected.
- Version 15.2(4)E4 is affected.
- Version 15.2(2)E7 is affected.
- Version 15.2(5)E2 is affected.
- Version 15.2(6)E is affected.
- Version 15.2(5)E2b is affected.
- Version 15.2(4)E5 is affected.
- Version 15.2(5)E2c is affected.
- Version 15.2(2)E8 is affected.
- Version 15.2(6)E0a is affected.
- Version 15.2(6)E1 is affected.
- Version 15.2(2)E7b is affected.
- Version 15.2(4)E5a is affected.
- Version 15.2(6)E0c is affected.
- Version 15.2(4)E6 is affected.
- Version 15.2(6)E2 is affected.
- Version 15.2(2)E9 is affected.
- Version 15.2(4)E7 is affected.
- Version 15.2(7)E is affected.
- Version 15.2(2)E10 is affected.
- Version 15.2(4)E8 is affected.
- Version 15.2(6)E2a is affected.
- Version 15.2(6)E2b is affected.
- Version 15.2(7)E1 is affected.
- Version 15.2(7)E0a is affected.
- Version 15.2(7)E0b is affected.
- Version 15.2(7)E0s is affected.
- Version 15.2(6)E3 is affected.
- Version 15.2(4)E9 is affected.
- Version 15.2(7)E2 is affected.
- Version 15.2(7a)E0b is affected.
- Version 15.2(4)E10 is affected.
- Version 15.2(7)E3 is affected.
- Version 15.2(7)E1a is affected.
- Version 15.2(7b)E0b is affected.
- Version 15.2(7)E2a is affected.
- Version 15.2(4)E10a is affected.
- Version 15.2(7)E4 is affected.
- Version 15.2(7)E3k is affected.
- Version 15.2(8)E is affected.
- Version 15.2(8)E1 is affected.
- Version 15.2(7)E5 is affected.
- Version 15.2(7)E6 is affected.
- Version 15.2(8)E2 is affected.
- Version 15.2(4)E10d is affected.
- Version 15.2(7)E7 is affected.
- Version 15.2(8)E3 is affected.
- Version 15.2(7)E8 is affected.
- Version 15.2(8)E4 is affected.
- Version 15.1(3)MRA is affected.
- Version 15.1(3)MRA1 is affected.
- Version 15.1(3)MRA2 is affected.
- Version 15.1(3)MRA3 is affected.
- Version 15.1(3)MRA4 is affected.
- Version 15.1(3)SVB1 is affected.
- Version 15.1(3)SVB2 is affected.
- Version 15.4(1)S is affected.
- Version 15.4(2)S is affected.
- Version 15.4(3)S is affected.
- Version 15.4(1)S1 is affected.
- Version 15.4(1)S2 is affected.
- Version 15.4(2)S1 is affected.
- Version 15.4(1)S3 is affected.
- Version 15.4(3)S1 is affected.
- Version 15.4(2)S2 is affected.
- Version 15.4(3)S2 is affected.
- Version 15.4(3)S3 is affected.
- Version 15.4(1)S4 is affected.
- Version 15.4(2)S3 is affected.
- Version 15.4(2)S4 is affected.
- Version 15.4(3)S4 is affected.
- Version 15.4(3)S5 is affected.
- Version 15.4(3)S6 is affected.
- Version 15.4(3)S7 is affected.
- Version 15.4(3)S6a is affected.
- Version 15.4(3)S8 is affected.
- Version 15.4(3)S9 is affected.
- Version 15.4(3)S10 is affected.
- Version 15.3(3)M is affected.
- Version 15.3(3)M1 is affected.
- Version 15.3(3)M2 is affected.
- Version 15.3(3)M3 is affected.
- Version 15.3(3)M5 is affected.
- Version 15.3(3)M4 is affected.
- Version 15.3(3)M6 is affected.
- Version 15.3(3)M7 is affected.
- Version 15.3(3)M8 is affected.
- Version 15.3(3)M9 is affected.
- Version 15.3(3)M10 is affected.
- Version 15.3(3)M8a is affected.
- Version 15.0(2)EZ is affected.
- Version 15.1(3)SVD is affected.
- Version 15.1(3)SVD1 is affected.
- Version 15.1(3)SVD2 is affected.
- Version 15.2(1)EY is affected.
- Version 15.0(2)EJ is affected.
- Version 15.0(2)EJ1 is affected.
- Version 15.2(1)SY is affected.
- Version 15.2(1)SY1 is affected.
- Version 15.2(1)SY0a is affected.
- Version 15.2(1)SY2 is affected.
- Version 15.2(2)SY is affected.
- Version 15.2(1)SY1a is affected.
- Version 15.2(2)SY1 is affected.
- Version 15.2(2)SY2 is affected.
- Version 15.2(1)SY3 is affected.
- Version 15.2(1)SY4 is affected.
- Version 15.2(2)SY3 is affected.
- Version 15.2(1)SY5 is affected.
- Version 15.2(1)SY6 is affected.
- Version 15.2(1)SY7 is affected.
- Version 15.2(1)SY8 is affected.
- Version 15.2(5)EX is affected.
- Version 15.1(3)SVF is affected.
- Version 15.1(3)SVF1 is affected.
- Version 15.1(3)SVE is affected.
- Version 15.4(3)M is affected.
- Version 15.4(3)M1 is affected.
- Version 15.4(3)M2 is affected.
- Version 15.4(3)M3 is affected.
- Version 15.4(3)M4 is affected.
- Version 15.4(3)M5 is affected.
- Version 15.4(3)M6 is affected.
- Version 15.4(3)M7 is affected.
- Version 15.4(3)M6a is affected.
- Version 15.4(3)M8 is affected.
- Version 15.4(3)M9 is affected.
- Version 15.4(3)M10 is affected.
- Version 15.0(2)EK is affected.
- Version 15.0(2)EK1 is affected.
- Version 15.4(1)CG is affected.
- Version 15.4(1)CG1 is affected.
- Version 15.4(2)CG is affected.
- Version 15.5(1)S is affected.
- Version 15.5(2)S is affected.
- Version 15.5(1)S1 is affected.
- Version 15.5(3)S is affected.
- Version 15.5(1)S2 is affected.
- Version 15.5(1)S3 is affected.
- Version 15.5(2)S1 is affected.
- Version 15.5(2)S2 is affected.
- Version 15.5(3)S1 is affected.
- Version 15.5(3)S1a is affected.
- Version 15.5(2)S3 is affected.
- Version 15.5(3)S2 is affected.
- Version 15.5(3)S0a is affected.
- Version 15.5(3)S3 is affected.
- Version 15.5(1)S4 is affected.
- Version 15.5(2)S4 is affected.
- Version 15.5(3)S4 is affected.
- Version 15.5(3)S5 is affected.
- Version 15.5(3)S6 is affected.
- Version 15.5(3)S6a is affected.
- Version 15.5(3)S7 is affected.
- Version 15.5(3)S6b is affected.
- Version 15.5(3)S8 is affected.
- Version 15.5(3)S9 is affected.
- Version 15.5(3)S10 is affected.
- Version 15.5(3)S9a is affected.
- Version 15.1(3)SVG is affected.
- Version 15.2(2)EB is affected.
- Version 15.2(2)EB1 is affected.
- Version 15.2(2)EB2 is affected.
- Version 15.2(6)EB is affected.
- Version 15.5(1)T is affected.
- Version 15.5(1)T1 is affected.
- Version 15.5(2)T is affected.
- Version 15.5(1)T2 is affected.
- Version 15.5(1)T3 is affected.
- Version 15.5(2)T1 is affected.
- Version 15.5(2)T2 is affected.
- Version 15.5(2)T3 is affected.
- Version 15.5(2)T4 is affected.
- Version 15.5(1)T4 is affected.
- Version 15.2(2)EA is affected.
- Version 15.2(2)EA1 is affected.
- Version 15.2(2)EA2 is affected.
- Version 15.2(3)EA is affected.
- Version 15.2(4)EA is affected.
- Version 15.2(4)EA1 is affected.
- Version 15.2(2)EA3 is affected.
- Version 15.2(4)EA3 is affected.
- Version 15.2(5)EA is affected.
- Version 15.2(4)EA4 is affected.
- Version 15.2(4)EA5 is affected.
- Version 15.2(4)EA6 is affected.
- Version 15.2(4)EA7 is affected.
- Version 15.2(4)EA8 is affected.
- Version 15.2(4)EA9 is affected.
- Version 15.2(4)EA9a is affected.
- Version 15.5(3)M is affected.
- Version 15.5(3)M1 is affected.
- Version 15.5(3)M0a is affected.
- Version 15.5(3)M2 is affected.
- Version 15.5(3)M3 is affected.
- Version 15.5(3)M4 is affected.
- Version 15.5(3)M4a is affected.
- Version 15.5(3)M5 is affected.
- Version 15.5(3)M6 is affected.
- Version 15.5(3)M7 is affected.
- Version 15.5(3)M6a is affected.
- Version 15.5(3)M8 is affected.
- Version 15.5(3)M9 is affected.
- Version 15.5(3)M10 is affected.
- Version 15.5(3)SN is affected.
- Version 15.6(1)S is affected.
- Version 15.6(2)S is affected.
- Version 15.6(2)S1 is affected.
- Version 15.6(1)S1 is affected.
- Version 15.6(1)S2 is affected.
- Version 15.6(2)S2 is affected.
- Version 15.6(1)S3 is affected.
- Version 15.6(2)S3 is affected.
- Version 15.6(1)S4 is affected.
- Version 15.6(2)S4 is affected.
- Version 15.6(1)T is affected.
- Version 15.6(2)T is affected.
- Version 15.6(1)T0a is affected.
- Version 15.6(1)T1 is affected.
- Version 15.6(2)T1 is affected.
- Version 15.6(1)T2 is affected.
- Version 15.6(2)T2 is affected.
- Version 15.6(1)T3 is affected.
- Version 15.6(2)T3 is affected.
- Version 15.3(1)SY is affected.
- Version 15.3(1)SY1 is affected.
- Version 15.3(1)SY2 is affected.
- Version 15.6(2)SP is affected.
- Version 15.6(2)SP1 is affected.
- Version 15.6(2)SP2 is affected.
- Version 15.6(2)SP3 is affected.
- Version 15.6(2)SP4 is affected.
- Version 15.6(2)SP5 is affected.
- Version 15.6(2)SP6 is affected.
- Version 15.6(2)SP7 is affected.
- Version 15.6(2)SP8 is affected.
- Version 15.6(2)SP9 is affected.
- Version 15.6(2)SP10 is affected.
- Version 15.6(2)SN is affected.
- Version 15.6(3)M is affected.
- Version 15.6(3)M1 is affected.
- Version 15.6(3)M0a is affected.
- Version 15.6(3)M1b is affected.
- Version 15.6(3)M2 is affected.
- Version 15.6(3)M2a is affected.
- Version 15.6(3)M3 is affected.
- Version 15.6(3)M3a is affected.
- Version 15.6(3)M4 is affected.
- Version 15.6(3)M5 is affected.
- Version 15.6(3)M6 is affected.
- Version 15.6(3)M7 is affected.
- Version 15.6(3)M6a is affected.
- Version 15.6(3)M6b is affected.
- Version 15.6(3)M8 is affected.
- Version 15.6(3)M9 is affected.
- Version 15.1(3)SVJ2 is affected.
- Version 15.2(4)EC1 is affected.
- Version 15.2(4)EC2 is affected.
- Version 15.4(1)SY is affected.
- Version 15.4(1)SY1 is affected.
- Version 15.4(1)SY2 is affected.
- Version 15.4(1)SY3 is affected.
- Version 15.4(1)SY4 is affected.
- Version 15.5(1)SY is affected.
- Version 15.5(1)SY1 is affected.
- Version 15.5(1)SY2 is affected.
- Version 15.5(1)SY3 is affected.
- Version 15.5(1)SY4 is affected.
- Version 15.5(1)SY5 is affected.
- Version 15.5(1)SY6 is affected.
- Version 15.5(1)SY7 is affected.
- Version 15.5(1)SY8 is affected.
- Version 15.5(1)SY9 is affected.
- Version 15.5(1)SY10 is affected.
- Version 15.5(1)SY11 is affected.
- Version 15.7(3)M is affected.
- Version 15.7(3)M1 is affected.
- Version 15.7(3)M0a is affected.
- Version 15.7(3)M3 is affected.
- Version 15.7(3)M2 is affected.
- Version 15.7(3)M4 is affected.
- Version 15.7(3)M5 is affected.
- Version 15.7(3)M4a is affected.
- Version 15.7(3)M4b is affected.
- Version 15.7(3)M6 is affected.
- Version 15.7(3)M7 is affected.
- Version 15.7(3)M8 is affected.
- Version 15.7(3)M9 is affected.
- Version 15.8(3)M is affected.
- Version 15.8(3)M1 is affected.
- Version 15.8(3)M0a is affected.
- Version 15.8(3)M0b is affected.
- Version 15.8(3)M2 is affected.
- Version 15.8(3)M1a is affected.
- Version 15.8(3)M3 is affected.
- Version 15.8(3)M2a is affected.
- Version 15.8(3)M4 is affected.
- Version 15.8(3)M3a is affected.
- Version 15.8(3)M3b is affected.
- Version 15.8(3)M5 is affected.
- Version 15.8(3)M6 is affected.
- Version 15.8(3)M7 is affected.
- Version 15.8(3)M8 is affected.
- Version 15.8(3)M9 is affected.
- Version 15.8(3)M10 is affected.
- Version 15.9(3)M is affected.
- Version 15.9(3)M1 is affected.
- Version 15.9(3)M0a is affected.
- Version 15.9(3)M2 is affected.
- Version 15.9(3)M3 is affected.
- Version 15.9(3)M2a is affected.
- Version 15.9(3)M3a is affected.
- Version 15.9(3)M4 is affected.
- Version 15.9(3)M3b is affected.
- Version 15.9(3)M5 is affected.
- Version 15.9(3)M4a is affected.
- Version 15.9(3)M6 is affected.
- Version 15.9(3)M7 is affected.
- Version 15.9(3)M6a is affected.
- Version 15.9(3)M6b is affected.
- Version 15.9(3)M7a is affected.
- Version 3.7.0S is affected.
- Version 3.7.1S is affected.
- Version 3.7.2S is affected.
- Version 3.7.3S is affected.
- Version 3.7.4S is affected.
- Version 3.7.5S is affected.
- Version 3.7.6S is affected.
- Version 3.7.7S is affected.
- Version 3.7.4aS is affected.
- Version 3.7.2tS is affected.
- Version 3.7.0bS is affected.
- Version 3.7.1aS is affected.
- Version 3.3.0SG is affected.
- Version 3.3.2SG is affected.
- Version 3.3.1SG is affected.
- Version 3.8.0S is affected.
- Version 3.8.1S is affected.
- Version 3.8.2S is affected.
- Version 3.9.1S is affected.
- Version 3.9.0S is affected.
- Version 3.9.2S is affected.
- Version 3.9.1aS is affected.
- Version 3.9.0aS is affected.
- Version 3.4.0SG is affected.
- Version 3.4.2SG is affected.
- Version 3.4.1SG is affected.
- Version 3.4.3SG is affected.
- Version 3.4.4SG is affected.
- Version 3.4.5SG is affected.
- Version 3.4.6SG is affected.
- Version 3.4.7SG is affected.
- Version 3.4.8SG is affected.
- Version 3.5.0E is affected.
- Version 3.5.1E is affected.
- Version 3.5.2E is affected.
- Version 3.5.3E is affected.
- Version 3.10.0S is affected.
- Version 3.10.1S is affected.
- Version 3.10.2S is affected.
- Version 3.10.3S is affected.
- Version 3.10.4S is affected.
- Version 3.10.5S is affected.
- Version 3.10.6S is affected.
- Version 3.10.2tS is affected.
- Version 3.10.7S is affected.
- Version 3.10.1xbS is affected.
- Version 3.10.8S is affected.
- Version 3.10.8aS is affected.
- Version 3.10.9S is affected.
- Version 3.10.10S is affected.
- Version 3.11.1S is affected.
- Version 3.11.2S is affected.
- Version 3.11.0S is affected.
- Version 3.11.3S is affected.
- Version 3.11.4S is affected.
- Version 3.12.0S is affected.
- Version 3.12.1S is affected.
- Version 3.12.2S is affected.
- Version 3.12.3S is affected.
- Version 3.12.0aS is affected.
- Version 3.12.4S is affected.
- Version 3.13.0S is affected.
- Version 3.13.1S is affected.
- Version 3.13.2S is affected.
- Version 3.13.3S is affected.
- Version 3.13.4S is affected.
- Version 3.13.5S is affected.
- Version 3.13.2aS is affected.
- Version 3.13.0aS is affected.
- Version 3.13.5aS is affected.
- Version 3.13.6S is affected.
- Version 3.13.7S is affected.
- Version 3.13.6aS is affected.
- Version 3.13.7aS is affected.
- Version 3.13.8S is affected.
- Version 3.13.9S is affected.
- Version 3.13.10S is affected.
- Version 3.6.0E is affected.
- Version 3.6.1E is affected.
- Version 3.6.2aE is affected.
- Version 3.6.2E is affected.
- Version 3.6.3E is affected.
- Version 3.6.4E is affected.
- Version 3.6.5E is affected.
- Version 3.6.6E is affected.
- Version 3.6.5aE is affected.
- Version 3.6.5bE is affected.
- Version 3.6.7E is affected.
- Version 3.6.8E is affected.
- Version 3.6.7bE is affected.
- Version 3.6.9E is affected.
- Version 3.6.10E is affected.
- Version 3.14.0S is affected.
- Version 3.14.1S is affected.
- Version 3.14.2S is affected.
- Version 3.14.3S is affected.
- Version 3.14.4S is affected.
- Version 3.15.0S is affected.
- Version 3.15.1S is affected.
- Version 3.15.2S is affected.
- Version 3.15.1cS is affected.
- Version 3.15.3S is affected.
- Version 3.15.4S is affected.
- Version 3.16.0S is affected.
- Version 3.16.1S is affected.
- Version 3.16.1aS is affected.
- Version 3.16.2S is affected.
- Version 3.16.2aS is affected.
- Version 3.16.0cS is affected.
- Version 3.16.3S is affected.
- Version 3.16.2bS is affected.
- Version 3.16.3aS is affected.
- Version 3.16.4S is affected.
- Version 3.16.4aS is affected.
- Version 3.16.4bS is affected.
- Version 3.16.5S is affected.
- Version 3.16.4dS is affected.
- Version 3.16.6S is affected.
- Version 3.16.7S is affected.
- Version 3.16.6bS is affected.
- Version 3.16.7aS is affected.
- Version 3.16.7bS is affected.
- Version 3.16.8S is affected.
- Version 3.16.9S is affected.
- Version 3.16.10S is affected.
- Version 3.17.0S is affected.
- Version 3.17.1S is affected.
- Version 3.17.2S is affected.
- Version 3.17.1aS is affected.
- Version 3.17.3S is affected.
- Version 3.17.4S is affected.
- Version 16.1.1 is affected.
- Version 16.1.2 is affected.
- Version 16.1.3 is affected.
- Version 16.2.1 is affected.
- Version 16.2.2 is affected.
- Version 3.8.0E is affected.
- Version 3.8.1E is affected.
- Version 3.8.2E is affected.
- Version 3.8.3E is affected.
- Version 3.8.4E is affected.
- Version 3.8.5E is affected.
- Version 3.8.5aE is affected.
- Version 3.8.6E is affected.
- Version 3.8.7E is affected.
- Version 3.8.8E is affected.
- Version 3.8.9E is affected.
- Version 3.8.10E is affected.
- Version 16.3.1 is affected.
- Version 16.3.2 is affected.
- Version 16.3.3 is affected.
- Version 16.3.1a is affected.
- Version 16.3.4 is affected.
- Version 16.3.5 is affected.
- Version 16.3.5b is affected.
- Version 16.3.6 is affected.
- Version 16.3.7 is affected.
- Version 16.3.8 is affected.
- Version 16.3.9 is affected.
- Version 16.3.10 is affected.
- Version 16.3.11 is affected.
- Version 16.4.1 is affected.
- Version 16.4.2 is affected.
- Version 16.4.3 is affected.
- Version 16.5.1 is affected.
- Version 16.5.1a is affected.
- Version 16.5.1b is affected.
- Version 16.5.2 is affected.
- Version 16.5.3 is affected.
- Version 3.18.0aS is affected.
- Version 3.18.0S is affected.
- Version 3.18.1S is affected.
- Version 3.18.2S is affected.
- Version 3.18.3S is affected.
- Version 3.18.4S is affected.
- Version 3.18.0SP is affected.
- Version 3.18.1SP is affected.
- Version 3.18.1aSP is affected.
- Version 3.18.1bSP is affected.
- Version 3.18.1cSP is affected.
- Version 3.18.2SP is affected.
- Version 3.18.2aSP is affected.
- Version 3.18.3SP is affected.
- Version 3.18.4SP is affected.
- Version 3.18.3aSP is affected.
- Version 3.18.3bSP is affected.
- Version 3.18.5SP is affected.
- Version 3.18.6SP is affected.
- Version 3.18.7SP is affected.
- Version 3.18.8aSP is affected.
- Version 3.18.9SP is affected.
- Version 3.9.0E is affected.
- Version 3.9.1E is affected.
- Version 3.9.2E is affected.
- Version 16.6.1 is affected.
- Version 16.6.2 is affected.
- Version 16.6.3 is affected.
- Version 16.6.4 is affected.
- Version 16.6.5 is affected.
- Version 16.6.4a is affected.
- Version 16.6.5a is affected.
- Version 16.6.6 is affected.
- Version 16.6.7 is affected.
- Version 16.6.8 is affected.
- Version 16.6.9 is affected.
- Version 16.6.10 is affected.
- Version 16.7.1 is affected.
- Version 16.7.1a is affected.
- Version 16.7.1b is affected.
- Version 16.7.2 is affected.
- Version 16.7.3 is affected.
- Version 16.7.4 is affected.
- Version 16.8.1 is affected.
- Version 16.8.1a is affected.
- Version 16.8.1b is affected.
- Version 16.8.1s is affected.
- Version 16.8.1c is affected.
- Version 16.8.1d is affected.
- Version 16.8.2 is affected.
- Version 16.8.1e is affected.
- Version 16.8.3 is affected.
- Version 16.9.1 is affected.
- Version 16.9.2 is affected.
- Version 16.9.1a is affected.
- Version 16.9.1b is affected.
- Version 16.9.1s is affected.
- Version 16.9.3 is affected.
- Version 16.9.4 is affected.
- Version 16.9.3a is affected.
- Version 16.9.5 is affected.
- Version 16.9.5f is affected.
- Version 16.9.6 is affected.
- Version 16.9.7 is affected.
- Version 16.9.8 is affected.
- Version 16.10.1 is affected.
- Version 16.10.1a is affected.
- Version 16.10.1b is affected.
- Version 16.10.1s is affected.
- Version 16.10.1c is affected.
- Version 16.10.1e is affected.
- Version 16.10.1d is affected.
- Version 16.10.2 is affected.
- Version 16.10.1f is affected.
- Version 16.10.1g is affected.
- Version 16.10.3 is affected.
- Version 3.10.0E is affected.
- Version 3.10.1E is affected.
- Version 3.10.0cE is affected.
- Version 3.10.2E is affected.
- Version 3.10.3E is affected.
- Version 16.11.1 is affected.
- Version 16.11.1a is affected.
- Version 16.11.1b is affected.
- Version 16.11.2 is affected.
- Version 16.11.1s is affected.
- Version 16.12.1 is affected.
- Version 16.12.1s is affected.
- Version 16.12.1a is affected.
- Version 16.12.1c is affected.
- Version 16.12.1w is affected.
- Version 16.12.2 is affected.
- Version 16.12.1y is affected.
- Version 16.12.2a is affected.
- Version 16.12.3 is affected.
- Version 16.12.8 is affected.
- Version 16.12.2s is affected.
- Version 16.12.1x is affected.
- Version 16.12.1t is affected.
- Version 16.12.4 is affected.
- Version 16.12.3s is affected.
- Version 16.12.3a is affected.
- Version 16.12.4a is affected.
- Version 16.12.5 is affected.
- Version 16.12.6 is affected.
- Version 16.12.1z1 is affected.
- Version 16.12.5a is affected.
- Version 16.12.5b is affected.
- Version 16.12.1z2 is affected.
- Version 16.12.6a is affected.
- Version 16.12.7 is affected.
- Version 16.12.9 is affected.
- Version 3.11.0E is affected.
- Version 3.11.1E is affected.
- Version 3.11.2E is affected.
- Version 3.11.3E is affected.
- Version 3.11.1aE is affected.
- Version 3.11.4E is affected.
- Version 3.11.3aE is affected.
- Version 3.11.5E is affected.
- Version 3.11.6E is affected.
- Version 3.11.7E is affected.
- Version 3.11.8E is affected.
- Version 17.1.1 is affected.
- Version 17.1.1a is affected.
- Version 17.1.1s is affected.
- Version 17.1.1t is affected.
- Version 17.1.3 is affected.
- Version 17.2.1 is affected.
- Version 17.2.1r is affected.
- Version 17.2.1a is affected.
- Version 17.2.1v is affected.
- Version 17.2.2 is affected.
- Version 17.2.3 is affected.
- Version 17.3.1 is affected.
- Version 17.3.2 is affected.
- Version 17.3.3 is affected.
- Version 17.3.1a is affected.
- Version 17.3.1w is affected.
- Version 17.3.2a is affected.
- Version 17.3.1x is affected.
- Version 17.3.1z is affected.
- Version 17.3.4 is affected.
- Version 17.3.5 is affected.
- Version 17.3.4a is affected.
- Version 17.3.6 is affected.
- Version 17.3.4b is affected.
- Version 17.3.4c is affected.
- Version 17.3.5a is affected.
- Version 17.3.5b is affected.
- Version 17.3.7 is affected.
- Version 17.4.1 is affected.
- Version 17.4.2 is affected.
- Version 17.4.1a is affected.
- Version 17.4.1b is affected.
- Version 17.4.2a is affected.
- Version 17.5.1 is affected.
- Version 17.5.1a is affected.
- Version 17.5.1c is affected.
- Version 17.6.1 is affected.
- Version 17.6.2 is affected.
- Version 17.6.1w is affected.
- Version 17.6.1a is affected.
- Version 17.6.1x is affected.
- Version 17.6.3 is affected.
- Version 17.6.1y is affected.
- Version 17.6.1z is affected.
- Version 17.6.3a is affected.
- Version 17.6.4 is affected.
- Version 17.6.1z1 is affected.
- Version 17.6.5 is affected.
- Version 17.6.5a is affected.
- Version 17.7.1 is affected.
- Version 17.7.1a is affected.
- Version 17.7.1b is affected.
- Version 17.7.2 is affected.
- Version 17.10.1 is affected.
- Version 17.10.1a is affected.
- Version 17.10.1b is affected.
- Version 17.8.1 is affected.
- Version 17.8.1a is affected.
- Version 17.9.1 is affected.
- Version 17.9.1w is affected.
- Version 17.9.2 is affected.
- Version 17.9.1a is affected.
- Version 17.9.1x is affected.
- Version 17.9.1y is affected.
- Version 17.9.3 is affected.
- Version 17.9.2a is affected.
- Version 17.9.1x1 is affected.
- Version 17.9.3a is affected.
- Version 17.9.1y1 is affected.
- Version 17.11.1 is affected.
- Version 17.11.1a is affected.
- Version 17.11.99SW is affected.
Exploit Probability
EPSS
0.58%
Percentile
68.37%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.