LCDPwn: Breaking Enterprise-Things with Layer 2 Discovery Protocol Vulnerabilities Again

When targeting enterprise devices, compared to higher layer protocols, the attack surface exposed by layer 2 protocols is often neglected. The recent research CDPwn, conducted by the Armis labs, sheds light on the severe impact of attack surface exposed by a proprietary layer-2 protocol called CDP (Cisco Discovery Protocol). It has gained lots of attention from the security research community, however, enterprise device vendors seem to pay little attention to it, including Cisco itself and this is where our work …

armis armis labs attack attack surface attention called cdp cisco community device devices discovery enterprise exposed higher impact labs pay protocol protocols questions research security security research targeting things vendors vulnerabilities work