{"uuid": "937994a1-0d4d-4e3d-8622-c071367a31b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-3119", "type": "seen", "source": "https://t.me/arpsyndicate/2934", "content": "#ExploitObserverAlert\n\nCVE-2020-3119\n\nDESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to CVE-2020-3119. A vulnerability in the Cisco Discovery Protocol implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected device. The vulnerability exists because the Cisco Discovery Protocol parser does not properly validate input for certain fields in a Cisco Discovery Protocol message. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. An successful exploit could allow the attacker to cause a stack overflow, which could allow the attacker to execute arbitrary code with administrative privileges on an affected device. Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).\n\nFIRST-EPSS: 0.001210000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2024-01-19T15:09:23.000000Z"}