How severe is CVE-2022-20675?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2022-20675?

This is classified as CWE-248, which is a common weakness in software security.

CVE-2022-20675 - MEDIUM Severity | CVSS 5.3

Vulnerability Description

A vulnerability in the TCP/IP stack of Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Secure Email and Web Manager, formerly Security Management Appliance, could allow an unauthenticated, remote attacker to crash the Simple Network Management Protocol (SNMP) service, resulting in a denial of service (DoS) condition. This vulnerability is due to an open port listener on TCP port 199. An attacker could exploit this vulnerability by connecting to TCP port 199. A successful exploit could allow the attacker to crash the SNMP service, resulting in a DoS condition.

Related Vulnerabilities

CVE-2022-36046

MEDIUM

CVSS:5.3(Medium)

Next.js is a React framework that can provide building blocks to create web applications. All of the following must be true to be affected by this CVE: Next.js version 12.2.3, Node.js version above v1...

CWE-2482022

CVE-2024-11738

MEDIUM

CVSS:5.3(Medium)

A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.

CWE-2482024

CVE-2024-23449

MEDIUM

CVSS:5.3(Medium)

An uncaught exception in Elasticsearch >= 8.4.0 and < 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to pars...

CWE-2482024

CVE-2024-56946

MEDIUM

CVSS:5.3(Medium)

Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from accepting new DNS-over-QUIC connections by triggering unhandled excep...

CWE-2482024

CVE-2019-10917

MEDIUM

CVSS:5.5(Medium)

A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS 7 V8.1 (All versions < V8.1 with WinCC V7.3 Upd 19), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1 with ...

CWE-2482019

CVE-2021-32694

MEDIUM

CVSS:5.5(Medium)

Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.15.1, a malicious application on the same device is possible to crash the Nextcloud Android Client due to an uncaught ...

CWE-2482021