Vulnerability Name:

CVE-2020-3231 (CCN-182894)

Assigned:2019-12-12
Published:2020-06-03
Updated:2020-06-08
Summary:A vulnerability in the 802.1X feature of Cisco Catalyst 2960-L Series Switches and Cisco Catalyst CDB-8P Switches could allow an unauthenticated, adjacent attacker to forward broadcast traffic before being authenticated on the port. The vulnerability exists because broadcast traffic that is received on the 802.1X-enabled port is mishandled. An attacker could exploit this vulnerability by sending broadcast traffic on the port before being authenticated. A successful exploit could allow the attacker to send and receive broadcast traffic on the 802.1X-enabled port before authentication.
CVSS v3 Severity:4.7 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N)
4.1 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
4.7 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N)
4.1 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.9 Low (CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
3.3 Low (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-863
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2020-3231

Source: XF
Type: UNKNOWN
cisco-cve20203231-sec-bypass(182894)

Source: CCN
Type: Cisco Security Advisory cisco-sa-c2960L-DpWA9Re4
Cisco IOS Software for Catalyst 2960-L Series Switches and Catalyst CDB-8P Switches 802.1X Authentication Bypass Vulnerability

Source: CISCO
Type: Patch, Vendor Advisory
20200603 Cisco IOS Software for Catalyst 2960-L Series Switches and Catalyst CDB-8P Switches 802.1X Authentication Bypass Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/o:cisco:ios:15.2(5)e2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(5)ex:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(5a)e:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(5b)e:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(5c)e:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e0c:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e1a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e1s:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e2b:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.3(3)jaa1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7)e:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7)e0s:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7)e0a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7a)e0b:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e4:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(6)e3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7)e0b:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.3(3)jpj:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.2(7b)e0b:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:cisco:ios_software:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    cisco ios 15.2(5)e2
    cisco ios 15.2(5)ex
    cisco ios 15.2(5a)e
    cisco ios 15.2(5b)e
    cisco ios 15.2(5c)e
    cisco ios 15.2(6)e
    cisco ios 15.2(6)e0c
    cisco ios 15.2(6)e1
    cisco ios 15.2(6)e1a
    cisco ios 15.2(6)e1s
    cisco ios 15.2(6)e2
    cisco ios 15.2(6)e2b
    cisco ios 15.3(3)jaa1
    cisco ios 15.2(7)e
    cisco ios 15.2(7)e0s
    cisco ios 15.2(7)e0a
    cisco ios 15.2(7a)e0b
    cisco ios 15.2(6)e4
    cisco ios 15.2(6)e3
    cisco ios 15.2(7)e0b
    cisco ios 15.3(3)jpj
    cisco ios 15.2(7b)e0b
    cisco ios software *