CVE-2022-20821
Cisco / IOS XR
Added 2022-05-23
Due 2022-06-13
Cisco IOS XR Open Port Vulnerability
Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
Required action
Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2022-20821
Metadata
| Added to KEV | 2022-05-23 |
| Remediation due | 2022-06-13 |
| Ransomware use | Unknown |
| CWEs | CWE-923 |
| Ingested | 2026-04-24 15:03:13 |
Cross-mesh regulatory overlay
If you're breached via this CVE, what disclosure laws and cyber regs fire? Asks LexiWorld and RegulatoryRadar via signed mesh.