Lucene search

K
ciscoCiscoCISCO-SA-20190306-NEXUS-FBR-DOS
HistoryMar 06, 2019 - 4:00 p.m.

Cisco Nexus 5600 and 6000 Series Switches Fibre Channel over Ethernet Denial of Service Vulnerability

2019-03-0616:00:00
tools.cisco.com
40

0.001 Low

EPSS

Percentile

29.1%

A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.

The vulnerability is due to an incorrect allocation of an internal interface index. An adjacent attacker with the ability to submit a crafted FCoE packet that crosses affected interfaces could trigger this vulnerability. A successful exploit could allow the attacker to cause a packet loop and high throughput on the affected interfaces, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos”]

Affected configurations

Vulners
Node
cisconx_osMatch6.0(2)N1
OR
cisconx_osMatch6.0(2)N2
OR
cisconx_osMatch7.0(0)N1
OR
cisconx_osMatch7.0(1)N1
OR
cisconx_osMatch7.0(2)N1
OR
cisconx_osMatch7.0(3)N1
OR
cisconx_osMatch7.0(4)N1
OR
cisconx_osMatch7.0(5)N1
OR
cisconx_osMatch7.0(6)N1
OR
cisconx_osMatch7.0(7)N1
OR
cisconx_osMatch7.0(8)N1
OR
cisconx_osMatch7.1(0)N1
OR
cisconx_osMatch7.1(1)N1
OR
cisconx_osMatch7.1(2)N1
OR
cisconx_osMatch7.1(3)N1
OR
cisconx_osMatch7.1(4)N1
OR
cisconx_osMatch7.1(5)N1
OR
cisconx_osMatch7.2(0)N1
OR
cisconx_osMatch7.2(1)N1
OR
cisconx_osMatch7.3(0)N1
OR
cisconx_osMatch7.3(1)N1
OR
cisconx_osMatch7.3(2)N1
OR
cisconx_osMatch7.3(3)N1
OR
cisconx_osMatch6.0(2)N1(1)
OR
cisconx_osMatch6.0(2)N1(2)
OR
cisconx_osMatch6.0(2)N1(2a)
OR
cisconx_osMatch6.0(2)N2(1)
OR
cisconx_osMatch6.0(2)N2(1b)
OR
cisconx_osMatch6.0(2)N2(2)
OR
cisconx_osMatch6.0(2)N2(3)
OR
cisconx_osMatch6.0(2)N2(4)
OR
cisconx_osMatch6.0(2)N2(5)
OR
cisconx_osMatch6.0(2)N2(5a)
OR
cisconx_osMatch6.0(2)N2(6)
OR
cisconx_osMatch6.0(2)N2(7)
OR
cisconx_osMatch7.0(0)N1(1)
OR
cisconx_osMatch7.0(1)N1(1)
OR
cisconx_osMatch7.0(2)N1(1)
OR
cisconx_osMatch7.0(3)N1(1)
OR
cisconx_osMatch7.0(4)N1(1)
OR
cisconx_osMatch7.0(5)N1(1)
OR
cisconx_osMatch7.0(5)N1(1a)
OR
cisconx_osMatch7.0(6)N1(1)
OR
cisconx_osMatch7.0(7)N1(1)
OR
cisconx_osMatch7.0(8)N1(1)
OR
cisconx_osMatch7.1(0)N1(1a)
OR
cisconx_osMatch7.1(0)N1(1b)
OR
cisconx_osMatch7.1(0)N1(1)
OR
cisconx_osMatch7.1(1)N1(1)
OR
cisconx_osMatch7.1(2)N1(1)
OR
cisconx_osMatch7.1(3)N1(1)
OR
cisconx_osMatch7.1(3)N1(2)
OR
cisconx_osMatch7.1(4)N1(1)
OR
cisconx_osMatch7.1(5)N1(1)
OR
cisconx_osMatch7.2(0)N1(1)
OR
cisconx_osMatch7.2(1)N1(1)
OR
cisconx_osMatch7.3(0)N1(1)
OR
cisconx_osMatch7.3(1)N1(1)
OR
cisconx_osMatch7.3(2)N1(1)
OR
cisconx_osMatch7.3(3)N1(1)

0.001 Low

EPSS

Percentile

29.1%

Related for CISCO-SA-20190306-NEXUS-FBR-DOS