Loading
IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.
Use CWE-290, Cisco vendor hub and Nx-Os product page to widen CVE-2020-10136 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2023-44487, CVE-2024-20399 and CVE-2024-20321 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: January 30th, 2026.