Cisco Nexus 5000, 6000, and 7000 Series Switches Software IS-IS Packet Processing Denial of Service Vulnerability

2017-01-1816:00:00

tools.cisco.com

0.001 Low

EPSS

Percentile

39.6%

JSON

A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device.

The vulnerability is due to improper processing of crafted IS-IS protocol packets. An attacker could exploit this vulnerability by sending a crafted IS-IS protocol packet over an established adjacency. An exploit could allow the attacker to cause a reload of the affected device.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-nexus[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-nexus”]

Affected configurations

Vulners

Node

cisconx-osMatch7.1\(3\)n1nexus_9000_series

cisconx-osMatch7.3\(2\)n1nexus_9000_series

cisconx-osMatch8.0nexus_9000_series

cisconx-osMatch7.1\(3\)n1\(2.1\)nexus_9000_series

cisconx-osMatch7.1\(3\)n1\(3.12\)nexus_9000_series

cisconx-osMatch7.3\(2\)n1\(0.296\)nexus_9000_series

cisconx-osMatch8.0\(1\)s2nexus_9000_series

CPENameOperatorVersion
cisco nx-os softwareeq7.1(3)N1
cisco nx-os softwareeq7.3(2)N1
cisco nx-os softwareeq8.0
cisco nx-os softwareeq7.1(3)N1(2.1)
cisco nx-os softwareeq7.1(3)N1(3.12)
cisco nx-os softwareeq7.3(2)N1(0.296)
cisco nx-os softwareeq8.0(1)S2

Name	Operator	Version
cisco nx-os software	eq	7.1(3)N1
cisco nx-os software	eq	7.3(2)N1
cisco nx-os software	eq	8.0
cisco nx-os software	eq	7.1(3)N1(2.1)
cisco nx-os software	eq	7.1(3)N1(3.12)
cisco nx-os software	eq	7.3(2)N1(0.296)
cisco nx-os software	eq	8.0(1)S2