Technical Severity
HIGHCVSS v3.1 Metrics
7.5
/ 10
Minimal Risk
Critical
Vector Specification
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitation Likelihood
EPSS Prediction
6.04
%
Predictive Probability
Percentile Rank
92.5
th
Documented as more likely to be exploited than 92.5% of known CVEs.
Detection Date
Mar 03, 2022
Remediation Due
Mar 24, 2022
CISA Catalog Active
Threat Analysis
A vulnerability in the UDP processing code of Cisco IOS and IOS XE could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and denial of service.
Remediation Directive
Apply updates per vendor instructions.