Lucene search

[email protected]NVD:CVE-2024-20321

HistoryFeb 29, 2024 - 1:43 a.m.

CVE-2024-20321

2024-02-2901:43:59

CWE-400

CWE-770

[email protected]

web.nvd.nist.gov

vulnerability

cisco nx-os

denial of service

ebgp

remote attacker

dos condition

network traffic

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue. An attacker could exploit this vulnerability by sending large amounts of network traffic with certain characteristics through an affected device. A successful exploit could allow the attacker to cause eBGP neighbor sessions to be dropped, leading to a DoS condition in the network.

Affected configurations

Nvd

Node

cisconx-osMatch7.0\(3\)f1\(1\)

cisconx-osMatch7.0\(3\)f2\(1\)

cisconx-osMatch7.0\(3\)f2\(2\)

cisconx-osMatch7.0\(3\)f3\(1\)

cisconx-osMatch7.0\(3\)f3\(2\)

cisconx-osMatch7.0\(3\)f3\(3\)

cisconx-osMatch7.0\(3\)f3\(3a\)

cisconx-osMatch7.0\(3\)f3\(3c\)

cisconx-osMatch7.0\(3\)f3\(4\)

cisconx-osMatch7.0\(3\)f3\(5\)

cisconx-osMatch9.2\(1\)

cisconx-osMatch9.2\(2\)

cisconx-osMatch9.2\(2t\)

cisconx-osMatch9.2\(2v\)

cisconx-osMatch9.2\(3\)

cisconx-osMatch9.2\(4\)

cisconx-osMatch9.3\(1\)

cisconx-osMatch9.3\(2\)

cisconx-osMatch9.3\(3\)

cisconx-osMatch9.3\(4\)

cisconx-osMatch9.3\(5\)

cisconx-osMatch9.3\(6\)

cisconx-osMatch9.3\(7\)

cisconx-osMatch9.3\(7a\)

cisconx-osMatch9.3\(8\)

cisconx-osMatch9.3\(9\)

cisconx-osMatch9.3\(10\)

cisconx-osMatch9.3\(11\)

cisconx-osMatch9.3\(12\)

cisconx-osMatch10.1\(1\)

cisconx-osMatch10.1\(2\)

cisconx-osMatch10.1\(2t\)

cisconx-osMatch10.2\(1\)

cisconx-osMatch10.2\(1q\)

cisconx-osMatch10.2\(2\)

cisconx-osMatch10.2\(3\)

cisconx-osMatch10.2\(3t\)

cisconx-osMatch10.2\(3v\)

cisconx-osMatch10.2\(4\)

cisconx-osMatch10.2\(5\)

cisconx-osMatch10.2\(6\)

cisconx-osMatch10.3\(1\)

cisconx-osMatch10.3\(2\)

cisconx-osMatch10.3\(3\)

cisconx-osMatch10.3\(4a\)

cisconx-osMatch10.3\(99w\)

cisconx-osMatch10.3\(99x\)

cisconx-osMatch10.4\(1\)

VendorProductVersionCPE
cisconx-os7.0(3)f1(1)cpe:2.3:o:cisco:nx-os:7.0\(3\)f1\(1\):*:*:*:*:*:*:*
cisconx-os7.0(3)f2(1)cpe:2.3:o:cisco:nx-os:7.0\(3\)f2\(1\):*:*:*:*:*:*:*
cisconx-os7.0(3)f2(2)cpe:2.3:o:cisco:nx-os:7.0\(3\)f2\(2\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(1)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(1\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(2)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(2\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(3)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(3a)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3a\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(3c)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3c\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(4)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(4\):*:*:*:*:*:*:*
cisconx-os7.0(3)f3(5)cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(5\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	nx-os	7.0(3)f1(1)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f1\(1\):::::::*
cisco	nx-os	7.0(3)f2(1)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f2\(1\):::::::*
cisco	nx-os	7.0(3)f2(2)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f2\(2\):::::::*
cisco	nx-os	7.0(3)f3(1)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(1\):::::::*
cisco	nx-os	7.0(3)f3(2)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(2\):::::::*
cisco	nx-os	7.0(3)f3(3)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3\):::::::*
cisco	nx-os	7.0(3)f3(3a)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3a\):::::::*
cisco	nx-os	7.0(3)f3(3c)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(3c\):::::::*
cisco	nx-os	7.0(3)f3(4)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(4\):::::::*
cisco	nx-os	7.0(3)f3(5)	cpe:2.3:o:cisco:nx-os:7.0\(3\)f3\(5\):::::::*