A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
The vulnerability is due to an incorrect allocation of an internal interface index. An adjacent attacker with the ability to submit a crafted FCoE packet that crosses affected interfaces could trigger this vulnerability. A successful exploit could allow the attacker to cause a packet loop and high throughput on the affected interfaces, resulting in a DoS condition.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nexus-fbr-dos”]
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | cisco_nx-os_software | 6.0(2)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 6.0(2)n2 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)n2:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(0)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(0\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(1)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(1\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(2)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(2\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(3)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(3\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(4)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(4\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(5)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(5\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(6)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(6\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 7.0(7)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(7\)n1:*:*:*:*:*:*:* |