Lucene search

CiscoCISCO-SA-20190306-NEXUS-FBR-DOS

HistoryMar 06, 2019 - 4:00 p.m.

Cisco Nexus 5600 and 6000 Series Switches Fibre Channel over Ethernet Denial of Service Vulnerability

2019-03-0616:00:00

tools.cisco.com

EPSS

0.001

Percentile

22.3%

JSON

A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.

The vulnerability is due to an incorrect allocation of an internal interface index. An adjacent attacker with the ability to submit a crafted FCoE packet that crosses affected interfaces could trigger this vulnerability. A successful exploit could allow the attacker to cause a packet loop and high throughput on the affected interfaces, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos”]

Affected configurations

Vulners

Node

ciscocisco_nx-os_softwareMatch6.0\(2\)n1

ciscocisco_nx-os_softwareMatch6.0\(2\)n2

ciscocisco_nx-os_softwareMatch7.0\(0\)n1

ciscocisco_nx-os_softwareMatch7.0\(1\)n1

ciscocisco_nx-os_softwareMatch7.0\(2\)n1

ciscocisco_nx-os_softwareMatch7.0\(3\)n1

ciscocisco_nx-os_softwareMatch7.0\(4\)n1

ciscocisco_nx-os_softwareMatch7.0\(5\)n1

ciscocisco_nx-os_softwareMatch7.0\(6\)n1

ciscocisco_nx-os_softwareMatch7.0\(7\)n1

ciscocisco_nx-os_softwareMatch7.0\(8\)n1

ciscocisco_nx-os_softwareMatch7.1\(0\)n1

ciscocisco_nx-os_softwareMatch7.1\(1\)n1

ciscocisco_nx-os_softwareMatch7.1\(2\)n1

ciscocisco_nx-os_softwareMatch7.1\(3\)n1

ciscocisco_nx-os_softwareMatch7.1\(4\)n1

ciscocisco_nx-os_softwareMatch7.1\(5\)n1

ciscocisco_nx-os_softwareMatch7.2\(0\)n1

ciscocisco_nx-os_softwareMatch7.2\(1\)n1

ciscocisco_nx-os_softwareMatch7.3\(0\)n1

ciscocisco_nx-os_softwareMatch7.3\(1\)n1

ciscocisco_nx-os_softwareMatch7.3\(2\)n1

ciscocisco_nx-os_softwareMatch7.3\(3\)n1

ciscocisco_nx-os_softwareMatch6.0\(2\)n1\(1\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n1\(2\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n1\(2a\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(1\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(1b\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(2\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(3\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(4\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(5\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(5a\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(6\)

ciscocisco_nx-os_softwareMatch6.0\(2\)n2\(7\)

ciscocisco_nx-os_softwareMatch7.0\(0\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(1\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(2\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(3\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(4\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(5\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(5\)n1\(1a\)

ciscocisco_nx-os_softwareMatch7.0\(6\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(7\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.0\(8\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(0\)n1\(1a\)

ciscocisco_nx-os_softwareMatch7.1\(0\)n1\(1b\)

ciscocisco_nx-os_softwareMatch7.1\(0\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(1\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(2\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(3\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(3\)n1\(2\)

ciscocisco_nx-os_softwareMatch7.1\(4\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.1\(5\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.2\(0\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.2\(1\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.3\(0\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.3\(1\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.3\(2\)n1\(1\)

ciscocisco_nx-os_softwareMatch7.3\(3\)n1\(1\)

VendorProductVersionCPE
ciscocisco_nx-os_software6.0(2)n1cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software6.0(2)n2cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n2:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(0)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(0\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(1)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(1\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(2)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(2\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(3)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(3\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(4)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(4\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(5)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(5\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(6)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(6\)n1:*:*:*:*:*:*:*
ciscocisco_nx-os_software7.0(7)n1cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(7\)n1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	cisco_nx-os_software	6.0(2)n1	cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n1:::::::*
cisco	cisco_nx-os_software	6.0(2)n2	cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n2:::::::*
cisco	cisco_nx-os_software	7.0(0)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(0\)n1:::::::*
cisco	cisco_nx-os_software	7.0(1)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(1\)n1:::::::*
cisco	cisco_nx-os_software	7.0(2)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(2\)n1:::::::*
cisco	cisco_nx-os_software	7.0(3)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(3\)n1:::::::*
cisco	cisco_nx-os_software	7.0(4)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(4\)n1:::::::*
cisco	cisco_nx-os_software	7.0(5)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(5\)n1:::::::*
cisco	cisco_nx-os_software	7.0(6)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(6\)n1:::::::*
cisco	cisco_nx-os_software	7.0(7)n1	cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(7\)n1:::::::*