Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-20267
HistoryFeb 29, 2024 - 1:43 a.m.

CVE-2024-20267

2024-02-2901:43:58
CWE-120
[email protected]
web.nvd.nist.gov
6
mpls handling
remote attacker
dos condition
ipv6 packet
network traffic
error checking
nx-os device

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON

A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload.

This vulnerability is due to lack of proper error checking when processing an ingress MPLS frame. An attacker could exploit this vulnerability by sending a crafted IPv6 packet that is encapsulated within an MPLS frame to an MPLS-enabled interface of the targeted device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition.

Note: The IPv6 packet can be generated multiple hops away from the targeted device and then encapsulated within MPLS. The DoS condition may occur when the NX-OS device processes the packet.

Affected configurations

Nvd
Node
cisconx-osMatch6.0\(2\)a3\(1\)
OR
cisconx-osMatch6.0\(2\)a3\(2\)
OR
cisconx-osMatch6.0\(2\)a3\(4\)
OR
cisconx-osMatch6.0\(2\)a4\(1\)
OR
cisconx-osMatch6.0\(2\)a4\(2\)
OR
cisconx-osMatch6.0\(2\)a4\(3\)
OR
cisconx-osMatch6.0\(2\)a4\(4\)
OR
cisconx-osMatch6.0\(2\)a4\(5\)
OR
cisconx-osMatch6.0\(2\)a4\(6\)
OR
cisconx-osMatch6.0\(2\)a6\(1\)
OR
cisconx-osMatch6.0\(2\)a6\(1a\)
OR
cisconx-osMatch6.0\(2\)a6\(2\)
OR
cisconx-osMatch6.0\(2\)a6\(2a\)
OR
cisconx-osMatch6.0\(2\)a6\(3\)
OR
cisconx-osMatch6.0\(2\)a6\(3a\)
OR
cisconx-osMatch6.0\(2\)a6\(4\)
OR
cisconx-osMatch6.0\(2\)a6\(4a\)
OR
cisconx-osMatch6.0\(2\)a6\(5\)
OR
cisconx-osMatch6.0\(2\)a6\(5a\)
OR
cisconx-osMatch6.0\(2\)a6\(5b\)
OR
cisconx-osMatch6.0\(2\)a6\(6\)
OR
cisconx-osMatch6.0\(2\)a6\(7\)
OR
cisconx-osMatch6.0\(2\)a6\(8\)
OR
cisconx-osMatch6.0\(2\)a7\(1\)
OR
cisconx-osMatch6.0\(2\)a7\(1a\)
OR
cisconx-osMatch6.0\(2\)a7\(2\)
OR
cisconx-osMatch6.0\(2\)a7\(2a\)
OR
cisconx-osMatch6.0\(2\)a8\(1\)
OR
cisconx-osMatch6.0\(2\)a8\(2\)
OR
cisconx-osMatch6.0\(2\)a8\(3\)
OR
cisconx-osMatch6.0\(2\)a8\(4\)
OR
cisconx-osMatch6.0\(2\)a8\(4a\)
OR
cisconx-osMatch6.0\(2\)a8\(5\)
OR
cisconx-osMatch6.0\(2\)a8\(6\)
OR
cisconx-osMatch6.0\(2\)a8\(7\)
OR
cisconx-osMatch6.0\(2\)a8\(7a\)
OR
cisconx-osMatch6.0\(2\)a8\(7b\)
OR
cisconx-osMatch6.0\(2\)a8\(8\)
OR
cisconx-osMatch6.0\(2\)a8\(9\)
OR
cisconx-osMatch6.0\(2\)a8\(10\)
OR
cisconx-osMatch6.0\(2\)a8\(10a\)
OR
cisconx-osMatch6.0\(2\)a8\(11\)
OR
cisconx-osMatch6.0\(2\)a8\(11a\)
OR
cisconx-osMatch6.0\(2\)a8\(11b\)
OR
cisconx-osMatch6.0\(2\)u2\(1\)
OR
cisconx-osMatch6.0\(2\)u2\(2\)
OR
cisconx-osMatch6.0\(2\)u2\(3\)
OR
cisconx-osMatch6.0\(2\)u2\(4\)
OR
cisconx-osMatch6.0\(2\)u2\(5\)
OR
cisconx-osMatch6.0\(2\)u2\(6\)
OR
cisconx-osMatch6.0\(2\)u3\(1\)
OR
cisconx-osMatch6.0\(2\)u3\(2\)
OR
cisconx-osMatch6.0\(2\)u3\(3\)
OR
cisconx-osMatch6.0\(2\)u3\(4\)
OR
cisconx-osMatch6.0\(2\)u3\(5\)
OR
cisconx-osMatch6.0\(2\)u3\(6\)
OR
cisconx-osMatch6.0\(2\)u3\(7\)
OR
cisconx-osMatch6.0\(2\)u3\(8\)
OR
cisconx-osMatch6.0\(2\)u3\(9\)
OR
cisconx-osMatch6.0\(2\)u4\(1\)
OR
cisconx-osMatch6.0\(2\)u4\(2\)
OR
cisconx-osMatch6.0\(2\)u4\(3\)
OR
cisconx-osMatch6.0\(2\)u4\(4\)
OR
cisconx-osMatch6.0\(2\)u5\(1\)
OR
cisconx-osMatch6.0\(2\)u5\(2\)
OR
cisconx-osMatch6.0\(2\)u5\(3\)
OR
cisconx-osMatch6.0\(2\)u5\(4\)
OR
cisconx-osMatch6.0\(2\)u6\(1\)
OR
cisconx-osMatch6.0\(2\)u6\(1a\)
OR
cisconx-osMatch6.0\(2\)u6\(2\)
OR
cisconx-osMatch6.0\(2\)u6\(2a\)
OR
cisconx-osMatch6.0\(2\)u6\(3\)
OR
cisconx-osMatch6.0\(2\)u6\(3a\)
OR
cisconx-osMatch6.0\(2\)u6\(4\)
OR
cisconx-osMatch6.0\(2\)u6\(4a\)
OR
cisconx-osMatch6.0\(2\)u6\(5\)
OR
cisconx-osMatch6.0\(2\)u6\(5a\)
OR
cisconx-osMatch6.0\(2\)u6\(5b\)
OR
cisconx-osMatch6.0\(2\)u6\(5c\)
OR
cisconx-osMatch6.0\(2\)u6\(6\)
OR
cisconx-osMatch6.0\(2\)u6\(7\)
OR
cisconx-osMatch6.0\(2\)u6\(8\)
OR
cisconx-osMatch6.0\(2\)u6\(9\)
OR
cisconx-osMatch6.0\(2\)u6\(10\)
OR
cisconx-osMatch6.2\(2\)
OR
cisconx-osMatch6.2\(2a\)
OR
cisconx-osMatch6.2\(6\)
OR
cisconx-osMatch6.2\(6a\)
OR
cisconx-osMatch6.2\(6b\)
OR
cisconx-osMatch6.2\(8\)
OR
cisconx-osMatch6.2\(8a\)
OR
cisconx-osMatch6.2\(8b\)
OR
cisconx-osMatch6.2\(10\)
OR
cisconx-osMatch6.2\(12\)
OR
cisconx-osMatch6.2\(14\)
OR
cisconx-osMatch6.2\(16\)
OR
cisconx-osMatch6.2\(18\)
OR
cisconx-osMatch6.2\(20\)
OR
cisconx-osMatch6.2\(20a\)
OR
cisconx-osMatch6.2\(22\)
OR
cisconx-osMatch6.2\(24\)
OR
cisconx-osMatch6.2\(24a\)
OR
cisconx-osMatch7.0\(3\)f1\(1\)
OR
cisconx-osMatch7.0\(3\)f2\(1\)
OR
cisconx-osMatch7.0\(3\)f2\(2\)
OR
cisconx-osMatch7.0\(3\)f3\(1\)
OR
cisconx-osMatch7.0\(3\)f3\(2\)
OR
cisconx-osMatch7.0\(3\)f3\(3\)
OR
cisconx-osMatch7.0\(3\)f3\(3a\)
OR
cisconx-osMatch7.0\(3\)f3\(3c\)
OR
cisconx-osMatch7.0\(3\)f3\(4\)
OR
cisconx-osMatch7.0\(3\)f3\(5\)
OR
cisconx-osMatch7.0\(3\)i2\(1\)
OR
cisconx-osMatch7.0\(3\)i2\(1a\)
OR
cisconx-osMatch7.0\(3\)i2\(2\)
OR
cisconx-osMatch7.0\(3\)i2\(2a\)
OR
cisconx-osMatch7.0\(3\)i2\(2b\)
OR
cisconx-osMatch7.0\(3\)i2\(2c\)
OR
cisconx-osMatch7.0\(3\)i2\(2d\)
OR
cisconx-osMatch7.0\(3\)i2\(2e\)
OR
cisconx-osMatch7.0\(3\)i2\(3\)
OR
cisconx-osMatch7.0\(3\)i2\(4\)
OR
cisconx-osMatch7.0\(3\)i2\(5\)
OR
cisconx-osMatch7.0\(3\)i3\(1\)
OR
cisconx-osMatch7.0\(3\)i4\(1\)
OR
cisconx-osMatch7.0\(3\)i4\(2\)
OR
cisconx-osMatch7.0\(3\)i4\(3\)
OR
cisconx-osMatch7.0\(3\)i4\(4\)
OR
cisconx-osMatch7.0\(3\)i4\(5\)
OR
cisconx-osMatch7.0\(3\)i4\(6\)
OR
cisconx-osMatch7.0\(3\)i4\(7\)
OR
cisconx-osMatch7.0\(3\)i4\(8\)
OR
cisconx-osMatch7.0\(3\)i4\(8a\)
OR
cisconx-osMatch7.0\(3\)i4\(8b\)
OR
cisconx-osMatch7.0\(3\)i4\(8z\)
OR
cisconx-osMatch7.0\(3\)i4\(9\)
OR
cisconx-osMatch7.0\(3\)i5\(1\)
OR
cisconx-osMatch7.0\(3\)i5\(2\)
OR
cisconx-osMatch7.0\(3\)i6\(1\)
OR
cisconx-osMatch7.0\(3\)i6\(2\)
OR
cisconx-osMatch7.0\(3\)i7\(1\)
OR
cisconx-osMatch7.0\(3\)i7\(2\)
OR
cisconx-osMatch7.0\(3\)i7\(3\)
OR
cisconx-osMatch7.0\(3\)i7\(4\)
OR
cisconx-osMatch7.0\(3\)i7\(5\)
OR
cisconx-osMatch7.0\(3\)i7\(5a\)
OR
cisconx-osMatch7.0\(3\)i7\(6\)
OR
cisconx-osMatch7.0\(3\)i7\(7\)
OR
cisconx-osMatch7.0\(3\)i7\(8\)
OR
cisconx-osMatch7.0\(3\)i7\(9\)
OR
cisconx-osMatch7.0\(3\)i7\(10\)
OR
cisconx-osMatch7.1\(0\)n1\(1\)
OR
cisconx-osMatch7.1\(0\)n1\(1a\)
OR
cisconx-osMatch7.1\(0\)n1\(1b\)
OR
cisconx-osMatch7.1\(1\)n1\(1\)
OR
cisconx-osMatch7.1\(2\)n1\(1\)
OR
cisconx-osMatch7.1\(3\)n1\(1\)
OR
cisconx-osMatch7.1\(3\)n1\(2\)
OR
cisconx-osMatch7.1\(4\)n1\(1\)
OR
cisconx-osMatch7.1\(5\)n1\(1\)
OR
cisconx-osMatch7.1\(5\)n1\(1b\)
OR
cisconx-osMatch7.2\(0\)d1\(1\)
OR
cisconx-osMatch7.2\(1\)d1\(1\)
OR
cisconx-osMatch7.2\(2\)d1\(1\)
OR
cisconx-osMatch7.2\(2\)d1\(2\)
OR
cisconx-osMatch7.3\(0\)d1\(1\)
OR
cisconx-osMatch7.3\(0\)dx\(1\)
OR
cisconx-osMatch7.3\(0\)n1\(1\)
OR
cisconx-osMatch9.2\(1\)
OR
cisconx-osMatch9.2\(2\)
OR
cisconx-osMatch9.2\(2t\)
OR
cisconx-osMatch9.2\(2v\)
OR
cisconx-osMatch9.2\(3\)
OR
cisconx-osMatch9.2\(4\)
OR
cisconx-osMatch9.3\(1\)
OR
cisconx-osMatch9.3\(2\)
OR
cisconx-osMatch9.3\(3\)
OR
cisconx-osMatch9.3\(4\)
OR
cisconx-osMatch9.3\(5\)
OR
cisconx-osMatch9.3\(6\)
OR
cisconx-osMatch9.3\(7\)
OR
cisconx-osMatch9.3\(7a\)
OR
cisconx-osMatch9.3\(8\)
OR
cisconx-osMatch9.3\(9\)
OR
cisconx-osMatch9.3\(10\)
OR
cisconx-osMatch9.3\(11\)
OR
cisconx-osMatch9.3\(12\)
OR
cisconx-osMatch10.1\(1\)
OR
cisconx-osMatch10.1\(2\)
OR
cisconx-osMatch10.1\(2t\)
OR
cisconx-osMatch10.2\(1\)
OR
cisconx-osMatch10.2\(1q\)
OR
cisconx-osMatch10.2\(2\)
OR
cisconx-osMatch10.2\(3\)
OR
cisconx-osMatch10.2\(3t\)
OR
cisconx-osMatch10.2\(3v\)
OR
cisconx-osMatch10.2\(4\)
OR
cisconx-osMatch10.2\(5\)
OR
cisconx-osMatch10.2\(6\)
OR
cisconx-osMatch10.3\(1\)
OR
cisconx-osMatch10.3\(2\)
OR
cisconx-osMatch10.3\(3\)
OR
cisconx-osMatch10.3\(99w\)
OR
cisconx-osMatch10.3\(99x\)
OR
cisconx-osMatch10.4\(1\)
VendorProductVersionCPE
cisconx-os6.0(2)a3(1)cpe:2.3:o:cisco:nx-os:6.0\(2\)a3\(1\):*:*:*:*:*:*:*
cisconx-os6.0(2)a3(2)cpe:2.3:o:cisco:nx-os:6.0\(2\)a3\(2\):*:*:*:*:*:*:*
cisconx-os6.0(2)a3(4)cpe:2.3:o:cisco:nx-os:6.0\(2\)a3\(4\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(1)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(1\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(2)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(2\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(3)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(3\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(4)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(4\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(5)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(5\):*:*:*:*:*:*:*
cisconx-os6.0(2)a4(6)cpe:2.3:o:cisco:nx-os:6.0\(2\)a4\(6\):*:*:*:*:*:*:*
cisconx-os6.0(2)a6(1)cpe:2.3:o:cisco:nx-os:6.0\(2\)a6\(1\):*:*:*:*:*:*:*
Rows per page:
1-10 of 2051

Related

cve 1
prion 1
cvelist 1
nessus 2
vulnrichment 1
cisco 1
cve
cve
CVE-2024-20267
2024-02-29 01:43:58
prion
prion
Design/Logic Flaw
2024-02-29 01:43:00
cvelist
cvelist
CVE-2024-20267
2024-02-28 16:15:18
nessus
nessus
Cisco NX-OS Buffer Copy without Checking Size of Input (CVE-2024-20267)
2024-03-08 00:00:00
Cisco NX-OS Software MPLS Encapsulated IPv6 DoS (cisco-sa-ipv6-mpls-dos-R9ycXkwM)
2024-03-01 00:00:00
vulnrichment
vulnrichment
CVE-2024-20267
2024-02-28 16:15:18
cisco
cisco
Cisco NX-OS Software MPLS Encapsulated IPv6 Denial of Service Vulnerability
2024-02-28 16:00:00

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON
Related for NVD:CVE-2024-20267
cve1prion1cvelist1nessus2vulnrichment1cisco1