Medium
CVE-2022-20845
Cisco Network Convergence System 4000 Series devices are vulnerable to a denial of service, caused by a flaw with TL1 not freeing memory under some conditions. By sending specially-crafted TL1 commands, a local authenticated attacker could exploit this vulnerability to cause the TL1 process to consume large amounts of memory, and results in a denial of service condition.
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.