Nx-os@6.0(2)a8(3) Security Vulnerabilities and Issues — Nx-os@6.0(2)a8(3) CVE List

Lucene search

CiscoNx-os6.0(2)a8(3)

10 matches found

CVE•added 2024/07/01 5:15 p.m.•313 views

CVE-2024-20399

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated user in possession of Administrator credentials to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are ...

6.7CVSS7AI score0.00084EPSS

CVE•added 2024/02/29 1:43 a.m.•129 views

CVE-2024-20267

A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. This vulnerability is due to lack of proper...

8.6CVSS8.3AI score0.00412EPSS

CVE•added 2024/02/29 1:43 a.m.•113 views

CVE-2024-20294

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific fields...

6.6CVSS6.5AI score0.00128EPSS

CVE•added 2020/08/27 4:15 p.m.•86 views

CVE-2020-3517

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated attacker to cause process crashes, which could result in a denial of service (DoS) condition on an affected device. The attack vector is configuration dependent and ...

8.6CVSS8.4AI score0.0151EPSS

CVE•added 2020/06/03 6:15 p.m.•65 views

CVE-2020-3217

A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a denial of service (DoS) condition ...

8.8CVSS9AI score0.00324EPSS

CVE•added 2021/02/24 8:15 p.m.•60 views

CVE-2021-1387

A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because the software improperly releases resources when it processes certain IPv6 packets that a...

8.6CVSS8.5AI score0.00947EPSS

CVE•added 2017/10/19 8:29 a.m.•52 views

CVE-2017-12301

A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and gain unauthorized access to the underlying operating system of the device. The vulnerability exists due to insufficient sanitization of user-supplie...

7.2CVSS6.7AI score0.0011EPSS

CVE•added 2017/11/30 9:29 a.m.•45 views

CVE-2017-12336

A vulnerability in the TCL scripting subsystem of Cisco NX-OS System Software could allow an authenticated, local attacker to escape the interactive TCL shell and gain unauthorized access to the underlying operating system of the device. The vulnerability exists due to insufficient input validation...

4.6CVSS5.1AI score0.00045EPSS

CVE•added 2018/06/21 11:29 a.m.•44 views

CVE-2018-0306

A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecti...

7.8CVSS7.8AI score0.00134EPSS

CVE•added 2017/11/30 9:29 a.m.•43 views

CVE-2017-12334

A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due to insufficient input validation of command argument...

7.2CVSS6.9AI score0.00106EPSS