Severity
High
Analysis Summary
The vulnerability is due to insufficient input validation of received CDP packets. An attacker could exploit this vulnerability by sending crafted CDP packets to an affected device. A successful exploit could allow the attacker to execute arbitrary shell commands or scripts on the targeted device.
Impact
Execute arbitrary shell commands
Affected Vendors
Cisco
Affected Products
Remediation
Please see vendor’s advisory for the fixed patches.