Nx-os Security Vulnerabilities and Issues — Nx-os CVE List

Lucene search

CiscoNx-os

8 matches found

CVE•added 2020/02/05 6:15 p.m.•120 views

CVE-2020-3120

A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is d...

7.4CVSS6.5AI score0.00319EPSS

CVE•added 2020/02/05 6:15 p.m.•111 views

CVE-2020-3119

A vulnerability in the Cisco Discovery Protocol implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected device. The vulnerability exists because the Cisco Discovery Protocol parser does not properly validat...

8.8CVSS8.9AI score0.07914EPSS

CVE•added 2020/02/26 5:15 p.m.•92 views

CVE-2020-3165

A vulnerability in the implementation of Border Gateway Protocol (BGP) Message Digest 5 (MD5) authentication in Cisco NX-OS Software could allow an unauthenticated, remote attacker to bypass MD5 authentication and establish a BGP connection with the device. The vulnerability occurs because the BGP ...

8.2CVSS8.2AI score0.00618EPSS

CVE•added 2020/02/26 5:15 p.m.•83 views

CVE-2020-3172

A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on an affected device. The vulnerability exists because of insuffi...

8.8CVSS9.4AI score0.01078EPSS

CVE•added 2020/02/26 5:15 p.m.•81 views

CVE-2020-3170

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could exp...

5.3CVSS5.3AI score0.004EPSS

CVE•added 2020/02/26 5:15 p.m.•81 views

CVE-2020-3175

A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An a...

8.6CVSS8.4AI score0.02588EPSS

CVE•added 2020/02/26 5:15 p.m.•80 views

CVE-2020-3174

A vulnerability in the anycast gateway feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a device to learn invalid Address Resolution Protocol (ARP) entries. The ARP entries are for nonlocal IP addresses for the subnet. The vulnerability is due to improper v...

4.7CVSS4.6AI score0.00103EPSS

CVE•added 2020/02/26 5:15 p.m.•53 views

CVE-2020-3168

A vulnerability in the Secure Login Enhancements capability of Cisco Nexus 1000V Switch for VMware vSphere could allow an unauthenticated, remote attacker to cause an affected Nexus 1000V Virtual Supervisor Module (VSM) to become inaccessible to users through the CLI. The vulnerability is due to im...

7.5CVSS7.5AI score0.02412EPSS