HIGH✓ PATCH🇬🇧 English

CVE-2020-3175

CVSS 8.6v3.1pub. 2020-02-26upd. 2024-11-21

A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An attacker could exploit this vulnerability by sending traffic to the management interface (mgmt0) of an affected device at very high rates. An exploit could allow the attacker to cause unexpected behaviors such as high CPU usage, process crashes, or even full system reboots of an affected device.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco Mds 9132t

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9148s

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9148t

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9216

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9216a

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9216i

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9222i

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9506

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9509

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9513

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9706

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9710

    HW
    Cisco
    wszystkie wersje
  • Cisco Mds 9718

    HW
    Cisco
    wszystkie wersje
  • Cisco Nx Os

    OS
    Cisco
    6.2\(1\)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2021-1361CRITICAL9.8ten sam produkt

A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switc...

CVE-2018-0310CRITICAL9.8ten sam produkt

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could a...

CVE-2018-0301CRITICAL9.8ten sam produkt

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker ...

CVE-2016-1453CRITICAL9.8ten sam produkt

Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Ne...

CVE-2016-1341CRITICAL9.8ten sam produkt

Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3), and 7.0(4)N1(1) on Nexus 2000 Fabric Extender devices has a blank root p...