CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
43.0%
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could exploit this vulnerability by sending a crafted HTTP request to the NX-API on an affected device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition in the NX-API service; however, the NX-OS device itself would still be available and passing network traffic. Note: The NX-API feature is disabled by default.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | nx-os | 7.3 | cpe:2.3:o:cisco:nx-os:7.3:*:*:*:*:*:*:* |
cisco | nx-os | 8.1 | cpe:2.3:o:cisco:nx-os:8.1:*:*:*:*:*:*:* |
cisco | nx-os | 8.2 | cpe:2.3:o:cisco:nx-os:8.2:*:*:*:*:*:*:* |
cisco | nx-os | 8.3 | cpe:2.3:o:cisco:nx-os:8.3:*:*:*:*:*:*:* |
cisco | mds_9000 | - | cpe:2.3:h:cisco:mds_9000:-:*:*:*:*:*:*:* |
cisco | mds_9100 | - | cpe:2.3:h:cisco:mds_9100:-:*:*:*:*:*:*:* |
cisco | mds_9140 | - | cpe:2.3:h:cisco:mds_9140:-:*:*:*:*:*:*:* |
cisco | mds_9200 | - | cpe:2.3:h:cisco:mds_9200:-:*:*:*:*:*:*:* |
cisco | mds_9500 | - | cpe:2.3:h:cisco:mds_9500:-:*:*:*:*:*:*:* |
cisco | mds_9700 | - | cpe:2.3:h:cisco:mds_9700:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
43.0%