CVE-2026-20084 - Vulnerability Analysis
HighCVSS: 8.6Last Updated: March 25, 2026
Cisco IOS XE - Denial of Service
Published: March 25, 2026Updated: March 25, 2026Remote Exploitable
Overview
Cisco IOS XE Software contains a denial of service vulnerability caused by improper handling of BOOTP packets in DHCP snooping on Catalyst 9000 Series Switches, letting unauthenticated remote attackers forward BOOTP packets between VLANs, exploit requires sending crafted BOOTP request packets.
Severity & Score
Severity: High
CVSS Score: 8.6
Impact
Attackers can cause high CPU utilization and device unreachability, resulting in denial of service.
Mitigation
Apply available workarounds or update to the latest Cisco IOS XE Software version.
Related Resources
Details
- CVE ID
- CVE-2026-20084
- Severity
- High
- CVSS Score
- 8.6
- Type
- denial_of_service
- Status
- new
CWE
- CWE-400
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H