Nx-os@9.2(2) Security Vulnerabilities and Issues — Nx-os@9.2(2) CVE List

Lucene search

CiscoNx-os9.2(2)

10 matches found

CVE•added 2024/07/01 5:15 p.m.•313 views

CVE-2024-20399

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated user in possession of Administrator credentials to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are ...

6.7CVSS7AI score0.00084EPSS

CVE•added 2022/02/23 6:15 p.m.•160 views

CVE-2022-20624

A vulnerability in the Cisco Fabric Services over IP (CFSoIP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of incoming CFSoIP packets. An attac...

8.6CVSS7.8AI score0.05763EPSS

CVE•added 2024/02/29 1:43 a.m.•129 views

CVE-2024-20267

A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. This vulnerability is due to lack of proper...

8.6CVSS8.3AI score0.00412EPSS

CVE•added 2024/02/29 1:43 a.m.•120 views

CVE-2024-20321

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because eBGP traffic is mapped to a shared hardware rat...

8.6CVSS8.3AI score0.00599EPSS

CVE•added 2024/02/29 1:43 a.m.•113 views

CVE-2024-20294

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific fields...

6.6CVSS6.5AI score0.00128EPSS

CVE•added 2023/08/23 7:15 p.m.•98 views

CVE-2023-20115

A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote attacker to download or overwrite files from the underlying operating system of an affected device. This vulnerability is due...

5.4CVSS5.4AI score0.00308EPSS

CVE•added 2020/02/26 5:15 p.m.•92 views

CVE-2020-3165

A vulnerability in the implementation of Border Gateway Protocol (BGP) Message Digest 5 (MD5) authentication in Cisco NX-OS Software could allow an unauthenticated, remote attacker to bypass MD5 authentication and establish a BGP connection with the device. The vulnerability occurs because the BGP ...

8.2CVSS8.2AI score0.00618EPSS

CVE•added 2020/08/27 4:15 p.m.•86 views

CVE-2020-3517

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated attacker to cause process crashes, which could result in a denial of service (DoS) condition on an affected device. The attack vector is configuration dependent and ...

8.6CVSS8.4AI score0.0151EPSS

CVE•added 2019/08/30 9:15 a.m.•55 views

CVE-2019-1969

A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to perform SNMP polling of an affected device, even if it is configured to deny SNMP traffic. The vulnerab...

5.8CVSS5.4AI score0.00704EPSS

CVE•added 2019/03/11 10:0 p.m.•52 views

CVE-2019-1613

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker could ...

6.7CVSS5.7AI score0.0006EPSS