CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
5.1%
The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service (tmp/*config file creation, memory consumption, and device hang) via unspecified vectors, aka Bug ID CSCut93842.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | nx-os | 5.1.3 | cpe:2.3:o:cisco:nx-os:5.1.3:*:*:*:*:*:*:* |
cisco | nx-os | 5.3.0 | cpe:2.3:o:cisco:nx-os:5.3.0:*:*:*:*:*:*:* |
cisco | nexus_93120tx | - | cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:* |
cisco | nexus_93128tx | - | cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:* |
cisco | nexus_9332pq | - | cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:* |
cisco | nexus_9336pq_aci_spine | - | cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:*:*:*:*:*:*:* |
cisco | nexus_9372px | - | cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:* |
cisco | nexus_9372tx | - | cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:* |
cisco | nexus_9396px | - | cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:* |
cisco | nexus_9396tx | - | cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:* |