Search

Find a vulnerability

Search criteria

    30 vulnerabilities found for Cisco NX-OS System Software in ACI Mode by Cisco

    CVE-2026-20048 (GCVE-0-2026-20048)

    Vulnerability from nvd – Published: 2026-02-25 16:26 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco NX-OS Software SNMP Denial of Service Vulnerability
    Summary
    A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a DoS condition. Note: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv1 or SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-789 - Uncontrolled Memory Allocation
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 16.0(1g)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Affected: 16.0(9e)
    Affected: 16.1(4h)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20048",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:11.351419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:48.366Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9e)"
                },
                {
                  "status": "affected",
                  "version": "16.1(4h)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries\u0026nbsp;to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a\u0026nbsp;DoS condition.\r\nNote: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit\u0026nbsp;this vulnerability through SNMPv1 or\u0026nbsp;SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-789",
                  "description": "Uncontrolled Memory Allocation",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:26:28.329Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-dsnmp-cNN39Uh",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-dsnmp-cNN39Uh",
            "defects": [
              "CSCwq57598"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software SNMP Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20048",
        "datePublished": "2026-02-25T16:26:28.329Z",
        "dateReserved": "2025-10-08T11:59:15.355Z",
        "dateUpdated": "2026-02-25T19:05:48.366Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20033 (GCVE-0-2026-20033)

    Vulnerability from nvd – Published: 2026-02-25 16:26 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco NX-OS Software Denial of Service Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation when processing specific Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to the management interface of an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. Note: Only the out-of-band (OOB) management interface is affected.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 16.0(1g)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Affected: 16.0(9e)
    Affected: 16.1(4h)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20033",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:01.739135Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:48.146Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9e)"
                },
                {
                  "status": "affected",
                  "version": "16.1(4h)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to insufficient validation when processing specific Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to the\u0026nbsp;management interface of an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition.\r\nNote: Only the out-of-band (OOB) management interface is affected."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:26:29.215Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cpdos-qLsv6pFD",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cpdos-qLsv6pFD"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cpdos-qLsv6pFD",
            "defects": [
              "CSCwq96001"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20033",
        "datePublished": "2026-02-25T16:26:29.215Z",
        "dateReserved": "2025-10-08T11:59:15.353Z",
        "dateUpdated": "2026-02-25T19:05:48.146Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20010 (GCVE-0-2026-20010)

    Vulnerability from nvd – Published: 2026-02-25 16:18 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco Nexus 3000 and 9000 Series Switches Link Layer Discovery Protocol Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause an affected device to reload unexpectedly. This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 10.3(1)
    Affected: 10.3(2)
    Affected: 10.3(3)
    Affected: 10.4(1)
    Affected: 10.3(99w)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.3(3r)
    Affected: 10.3(4h)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 16.0(4c)
    Affected: 16.0(5h)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 16.0(6c)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.3(4e)
    Affected: 4.3(6b)
    Affected: 4.3(4c)
    Affected: 4.3(4f)
    Affected: 4.3(6d)
    Affected: 4.3(5e)
    Affected: 4.3(4d)
    Affected: 4.3(4b)
    Affected: 4.3(5a)
    Affected: 4.3(5c)
    Affected: 4.3(5d)
    Affected: 4.3(6c)
    Affected: 4.3(6a)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20010",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:44.628066Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:49.108Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.3(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5a)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6a)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause an affected device to reload unexpectedly.\r\n\r\nThis vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.\r\nNote:\u0026nbsp;LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be\u0026nbsp;directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol)."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:18:14.561Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3",
            "defects": [
              "CSCwq33193"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Nexus 3000 and 9000 Series Switches Link Layer Discovery Protocol Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20010",
        "datePublished": "2026-02-25T16:18:14.561Z",
        "dateReserved": "2025-10-08T11:59:15.350Z",
        "dateUpdated": "2026-02-25T19:05:49.108Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20292 (GCVE-0-2025-20292)

    Vulnerability from nvd – Published: 2025-08-27 16:23 – Updated: 2025-08-27 18:25
    VLAI
    Title
    Cisco NXOS Software Command Injection Vulnerability
    Summary
    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by entering crafted input as the argument of an affected CLI command. A successful exploit could allow the attacker to read and write files on the underlying operating system with the privileges of a non-root user account. File system access is limited to the permissions that are granted to that non-root user account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 8.2(5)
    Affected: 7.3(6)N1(1a)
    Affected: 7.3(5)D1(1)
    Affected: 8.4(2)
    Affected: 7.3(6)N1(1)
    Affected: 8.4(3)
    Affected: 9.2(3)
    Affected: 7.0(3)I5(2)
    Affected: 8.2(1)
    Affected: 6.0(2)A8(7a)
    Affected: 7.0(3)I4(5)
    Affected: 7.0(3)I4(6)
    Affected: 7.3(4)N1(1)
    Affected: 7.0(3)I4(3)
    Affected: 9.2(2v)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(2)
    Affected: 6.0(2)A8(11)
    Affected: 7.3(4)D1(1)
    Affected: 9.2(1)
    Affected: 9.2(2t)
    Affected: 9.2(3y)
    Affected: 7.0(3)I4(1t)
    Affected: 7.0(3)I7(6z)
    Affected: 9.3(2)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)I7(3z)
    Affected: 7.0(3)IM7(2)
    Affected: 6.0(2)A8(11b)
    Affected: 7.3(0)N1(1)
    Affected: 7.0(3)I7(5a)
    Affected: 8.1(1)
    Affected: 7.0(3)I6(1)
    Affected: 8.2(2)
    Affected: 7.3(2)N1(1c)
    Affected: 7.0(3)I5(3b)
    Affected: 8.3(2)
    Affected: 7.3(5)N1(1)
    Affected: 7.3(2)N1(1b)
    Affected: 7.3(2)D1(3a)
    Affected: 7.3(1)N1(1)
    Affected: 9.2(4)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(2)
    Affected: 7.0(3)IC4(4)
    Affected: 7.3(4)N1(1a)
    Affected: 8.1(2)
    Affected: 7.0(3)F3(3c)
    Affected: 7.3(3)D1(1)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(5)
    Affected: 8.2(3)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I5(3)
    Affected: 7.0(3)I7(3)
    Affected: 6.0(2)A8(6)
    Affected: 7.0(3)I6(2)
    Affected: 8.3(1)
    Affected: 8.4(1)
    Affected: 8.1(1b)
    Affected: 7.3(0)N1(1b)
    Affected: 6.0(2)A8(5)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(2)D1(1)
    Affected: 7.3(2)N1(1)
    Affected: 9.3(1)
    Affected: 7.3(0)N1(1a)
    Affected: 6.0(2)A8(7)
    Affected: 7.0(3)I7(6)
    Affected: 7.3(2)D1(2)
    Affected: 6.0(2)A8(11a)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 8.2(4)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(7)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(10a)
    Affected: 7.0(3)I5(1)
    Affected: 9.3(1z)
    Affected: 9.2(2)
    Affected: 5.2(1)SV5(1.2)
    Affected: 7.0(3)F3(4)
    Affected: 7.3(3)N1(1)
    Affected: 7.0(3)I4(8b)
    Affected: 8.1(2a)
    Affected: 7.3(2)D1(3)
    Affected: 6.0(2)A8(3)
    Affected: 7.0(3)I4(6t)
    Affected: 7.0(3)I5(3a)
    Affected: 8.1(1a)
    Affected: 6.0(2)A8(8)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)F3(3a)
    Affected: 6.0(2)A8(4)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)IA7(2)
    Affected: 7.0(3)IA7(1)
    Affected: 6.0(2)A8(7b)
    Affected: 7.3(1)D1(1)
    Affected: 5.2(1)SV5(1.1)
    Affected: 6.0(2)A8(4a)
    Affected: 7.3(0)D1(1)
    Affected: 5.2(1)SV5(1.3)
    Affected: 8.4(1a)
    Affected: 9.3(3)
    Affected: 7.3(2)D1(1d)
    Affected: 7.3(7)N1(1)
    Affected: 7.0(3)I7(8)
    Affected: 7.3(7)N1(1a)
    Affected: 9.3(4)
    Affected: 7.3(6)D1(1)
    Affected: 8.2(6)
    Affected: 9.3(5)
    Affected: 8.4(2a)
    Affected: 8.4(2b)
    Affected: 7.3(8)N1(1)
    Affected: 7.0(3)I7(9)
    Affected: 7.3(7)N1(1b)
    Affected: 5.2(1)SV5(1.3a)
    Affected: 8.5(1)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 8.4(4)
    Affected: 7.3(7)D1(1)
    Affected: 8.4(2c)
    Affected: 5.2(1)SV5(1.3b)
    Affected: 9.3(5w)
    Affected: 8.2(7)
    Affected: 7.3(9)N1(1)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 7.0(3)I7(9w)
    Affected: 10.2(1)
    Affected: 7.3(8)N1(1a)
    Affected: 7.3(8)D1(1)
    Affected: 9.3(7a)
    Affected: 8.2(7a)
    Affected: 9.3(8)
    Affected: 8.4(4a)
    Affected: 8.4(2d)
    Affected: 7.3(10)N1(1)
    Affected: 8.4(5)
    Affected: 7.0(3)I7(10)
    Affected: 7.3(8)N1(1b)
    Affected: 8.2(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 5.2(1)SV5(1.3c)
    Affected: 7.3(9)D1(1)
    Affected: 7.3(11)N1(1)
    Affected: 10.2(3)
    Affected: 8.4(6)
    Affected: 10.2(3t)
    Affected: 8.4(2e)
    Affected: 9.3(10)
    Affected: 7.3(11)N1(1a)
    Affected: 10.2(2a)
    Affected: 7.3(12)N1(1)
    Affected: 9.2(1a)
    Affected: 8.2(9)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 7.3(13)N1(1)
    Affected: 8.4(7)
    Affected: 10.3(2)
    Affected: 8.4(6a)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.4(1)
    Affected: 9.3(2a)
    Affected: 8.4(2f)
    Affected: 8.2(10)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 8.4(8)
    Affected: 10.3(99w)
    Affected: 7.3(14)N1(1)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 8.4(9)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 9.4(1a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 9.3(13)
    Affected: 8.2(11)
    Affected: 9.4(2)
    Affected: 10.3(5)
    Affected: 10.2(7)
    Affected: 10.4(3)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.5(1)
    Affected: 7.3(15)N1(1)
    Affected: 8.4(10)
    Affected: 9.4(2a)
    Affected: 10.2(8)
    Affected: 10.3(3r)
    Affected: 10.3(6)
    Affected: 9.3(14)
    Affected: 10.4(4)
    Affected: 10.3(4h)
    Affected: 10.5(2)
    Affected: 9.4(3)
    Affected: 9.4(3a)
    Affected: 10.4(4g)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.1(1j)
    Affected: 14.0(3d)
    Affected: 14.1(1k)
    Affected: 13.2(1m)
    Affected: 14.0(3c)
    Affected: 13.2(2l)
    Affected: 13.2(7k)
    Affected: 14.1(1l)
    Affected: 14.2(2f)
    Affected: 13.2(3s)
    Affected: 13.2(2o)
    Affected: 14.0(2c)
    Affected: 14.1(2m)
    Affected: 13.2(5e)
    Affected: 14.1(2o)
    Affected: 13.2(7f)
    Affected: 13.2(41d)
    Affected: 13.2(4d)
    Affected: 13.2(3o)
    Affected: 13.2(1l)
    Affected: 14.0(1h)
    Affected: 13.2(3n)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 13.2(4e)
    Affected: 14.2(1i)
    Affected: 13.2(9b)
    Affected: 14.1(2s)
    Affected: 14.1(1i)
    Affected: 14.1(2g)
    Affected: 13.2(3j)
    Affected: 13.2(5d)
    Affected: 13.2(6i)
    Affected: 14.1(2u)
    Affected: 13.2(3i)
    Affected: 13.2(3r)
    Affected: 13.2(5f)
    Affected: 14.2(1j)
    Affected: 14.1(2w)
    Affected: 14.2(3n)
    Affected: 14.2(3l)
    Affected: 14.2(3j)
    Affected: 14.2(2g)
    Affected: 13.2(8d)
    Affected: 14.1(2x)
    Affected: 13.2(9f)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 13.2(9h)
    Affected: 15.0(1k)
    Affected: 14.2(4k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 15.0(2h)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 15.1(1h)
    Affected: 14.2(6d)
    Affected: 15.1(2e)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 15.1(3e)
    Affected: 13.2(10e)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 15.1(4c)
    Affected: 14.2(6o)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 14.2(7l)
    Affected: 13.2(10f)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 14.2(7q)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 14.2(7t)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 13.2(10g)
    Affected: 16.0(1g)
    Affected: 14.2(7u)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 14.2(7v)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 14.2(7w)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.0(4c)
    Affected: 4.0(2b)
    Affected: 4.1(2a)
    Affected: 4.0(1a)
    Affected: 4.0(2a)
    Affected: 4.0(1b)
    Affected: 4.1(1c)
    Affected: 4.0(4a)
    Affected: 4.0(4b)
    Affected: 4.0(2e)
    Affected: 4.1(1a)
    Affected: 4.0(4d)
    Affected: 4.0(4h)
    Affected: 4.0(4g)
    Affected: 4.0(1d)
    Affected: 4.1(1e)
    Affected: 4.0(4f)
    Affected: 4.0(4e)
    Affected: 4.0(4i)
    Affected: 4.1(1d)
    Affected: 4.0(2d)
    Affected: 4.1(1b)
    Affected: 4.0(1c)
    Affected: 4.1(2b)
    Affected: 4.0(4k)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.0(4l)
    Affected: 4.1(4a)
    Affected: 4.1(3c)
    Affected: 4.1(3d)
    Affected: 4.2(1c)
    Affected: 4.2(1d)
    Affected: 4.0(4m)
    Affected: 4.1(3e)
    Affected: 4.2(1f)
    Affected: 4.1(3f)
    Affected: 4.2(1i)
    Affected: 4.1(3h)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.0(4n)
    Affected: 4.2(1m)
    Affected: 4.1(3i)
    Affected: 4.2(2a)
    Affected: 4.2(1n)
    Affected: 4.1(3j)
    Affected: 4.2(2c)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.1(3k)
    Affected: 4.0(4o)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.1(3l)
    Affected: 4.3(2b)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Affected: 4.3(2c)
    Affected: 4.1(3m)
    Affected: 4.3(2e)
    Affected: 4.3(3a)
    Affected: 4.2(3j)
    Affected: 4.3(3c)
    Affected: 4.3(4a)
    Affected: 4.2(3k)
    Affected: 4.3(4b)
    Affected: 4.3(4c)
    Affected: 4.2(3l)
    Affected: 4.3(4d)
    Affected: 4.3(2f)
    Affected: 4.2(3m)
    Affected: 4.3(5a)
    Affected: 4.3(4e)
    Affected: 4.1(3n)
    Affected: 4.3(4f)
    Affected: 4.2(3n)
    Affected: 4.3(5c)
    Affected: 4.2(3o)
    Affected: 4.3(5d)
    Affected: 4.3(5e)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20292",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-27T18:24:42.891013Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-27T18:25:03.052Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3y)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6z)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IM7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3b)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IC4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1z)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1d)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3a)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3b)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "7.3(10)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(12)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(13)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "7.3(14)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "8.4(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "9.3(13)"
                },
                {
                  "status": "affected",
                  "version": "8.2(11)"
                },
                {
                  "status": "affected",
                  "version": "9.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(7)"
                },
                {
                  "status": "affected",
                  "version": "10.4(3)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(15)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(10)"
                },
                {
                  "status": "affected",
                  "version": "9.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "10.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(14)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "9.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.4(3a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(41d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5a)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3n)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5e)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by entering crafted input as the argument of an affected CLI command. A successful exploit could allow the attacker to read and write files on the underlying operating system with the privileges of a non-root user account. File system access is limited to the permissions that are granted to that non-root user account."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-08-27T16:23:35.656Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cmdinj-qhNze5Ss",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cmdinj-qhNze5Ss"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cmdinj-qhNze5Ss",
            "defects": [
              "CSCwn39953"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco NXOS Software Command Injection Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20292",
        "datePublished": "2025-08-27T16:23:35.656Z",
        "dateReserved": "2024-10-10T19:15:13.251Z",
        "dateUpdated": "2025-08-27T18:25:03.052Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20397 (GCVE-0-2024-20397)

    Vulnerability from nvd – Published: 2024-12-04 16:13 – Updated: 2025-04-08 14:29
    VLAI
    Title
    Cisco NX-OS Software Image Verification Bypass Vulnerability
    Summary
    A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-284 - Improper Access Control
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 8.2(5)
    Affected: 7.3(5)D1(1)
    Affected: 8.4(2)
    Affected: 8.4(3)
    Affected: 9.2(3)
    Affected: 7.0(3)I5(2)
    Affected: 8.2(1)
    Affected: 6.0(2)A8(7a)
    Affected: 7.0(3)I4(5)
    Affected: 7.3(1)D1(1)
    Affected: 7.0(3)I4(6)
    Affected: 7.0(3)I4(3)
    Affected: 9.2(2v)
    Affected: 7.3(0)D1(1)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(2)
    Affected: 6.0(2)A8(11)
    Affected: 7.3(4)D1(1)
    Affected: 9.2(1)
    Affected: 9.2(2t)
    Affected: 9.2(3y)
    Affected: 7.0(3)I4(1t)
    Affected: 7.0(3)I7(6z)
    Affected: 9.3(2)
    Affected: 7.3(1)DY(1)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)I7(3z)
    Affected: 7.0(3)IM7(2)
    Affected: 6.0(2)A8(11b)
    Affected: 7.0(3)I7(5a)
    Affected: 8.1(1)
    Affected: 7.0(3)I6(1)
    Affected: 8.2(2)
    Affected: 7.0(3)I5(3b)
    Affected: 8.3(2)
    Affected: 7.3(2)D1(3a)
    Affected: 9.2(4)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(2)
    Affected: 7.0(3)IC4(4)
    Affected: 8.1(2)
    Affected: 7.0(3)F3(3c)
    Affected: 7.3(3)D1(1)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(5)
    Affected: 8.2(3)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I5(3)
    Affected: 7.0(3)I7(3)
    Affected: 6.0(2)A8(6)
    Affected: 7.0(3)I6(2)
    Affected: 8.3(1)
    Affected: 8.4(1)
    Affected: 8.1(1b)
    Affected: 6.0(2)A8(5)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(2)D1(1)
    Affected: 9.3(1)
    Affected: 6.0(2)A8(7)
    Affected: 7.0(3)I7(6)
    Affected: 7.3(2)D1(2)
    Affected: 6.0(2)A8(11a)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 8.2(4)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(7)
    Affected: 7.3(0)DY(1)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(10a)
    Affected: 7.0(3)I5(1)
    Affected: 9.3(1z)
    Affected: 9.2(2)
    Affected: 7.0(3)F3(4)
    Affected: 7.0(3)I4(8b)
    Affected: 8.1(2a)
    Affected: 7.3(2)D1(3)
    Affected: 6.0(2)A8(3)
    Affected: 7.0(3)I4(6t)
    Affected: 7.0(3)I5(3a)
    Affected: 8.1(1a)
    Affected: 6.0(2)A8(8)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)F3(3a)
    Affected: 6.0(2)A8(4)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)IA7(2)
    Affected: 7.0(3)IA7(1)
    Affected: 6.0(2)A8(7b)
    Affected: 6.0(2)A8(4a)
    Affected: 8.4(1a)
    Affected: 9.3(3)
    Affected: 7.3(2)D1(1d)
    Affected: 7.0(3)I7(8)
    Affected: 9.3(4)
    Affected: 7.3(6)D1(1)
    Affected: 8.2(6)
    Affected: 9.3(5)
    Affected: 8.4(2a)
    Affected: 8.4(2b)
    Affected: 7.0(3)I7(9)
    Affected: 8.5(1)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 8.4(4)
    Affected: 7.3(7)D1(1)
    Affected: 8.4(2c)
    Affected: 9.3(5w)
    Affected: 8.2(7)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 7.0(3)I7(9w)
    Affected: 10.2(1)
    Affected: 7.3(8)D1(1)
    Affected: 9.3(7a)
    Affected: 8.2(7a)
    Affected: 9.3(8)
    Affected: 8.4(4a)
    Affected: 8.4(2d)
    Affected: 8.4(5)
    Affected: 7.0(3)I7(10)
    Affected: 8.2(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 7.3(9)D1(1)
    Affected: 10.2(3)
    Affected: 8.4(6)
    Affected: 10.2(3t)
    Affected: 8.4(2e)
    Affected: 9.3(10)
    Affected: 10.2(2a)
    Affected: 9.2(1a)
    Affected: 8.2(9)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 8.4(7)
    Affected: 10.3(2)
    Affected: 8.4(6a)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.4(1)
    Affected: 9.3(2a)
    Affected: 8.4(2f)
    Affected: 8.2(10)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 8.4(8)
    Affected: 10.3(99w)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 8.4(9)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 9.4(1a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 9.3(13)
    Affected: 8.2(11)
    Affected: 10.3(5)
    Affected: 10.2(7)
    Affected: 10.4(3)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.5(1)
    Affected: 10.2(8)
    Affected: 10.3(3r)
    Affected: 10.3(6)
    Affected: 9.3(14)
    Affected: 10.4(4)
    Affected: 10.3(4h)
    Affected: 10.4(4g)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.1(1j)
    Affected: 14.0(3d)
    Affected: 14.1(1k)
    Affected: 13.2(1m)
    Affected: 14.0(3c)
    Affected: 13.2(2l)
    Affected: 13.2(7k)
    Affected: 14.1(1l)
    Affected: 14.2(2f)
    Affected: 13.2(3s)
    Affected: 13.2(2o)
    Affected: 14.0(2c)
    Affected: 14.1(2m)
    Affected: 13.2(5e)
    Affected: 14.1(2o)
    Affected: 13.2(7f)
    Affected: 13.2(41d)
    Affected: 13.2(4d)
    Affected: 13.2(3o)
    Affected: 13.2(1l)
    Affected: 14.0(1h)
    Affected: 13.2(3n)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 13.2(4e)
    Affected: 14.2(1i)
    Affected: 13.2(9b)
    Affected: 14.1(2s)
    Affected: 14.1(1i)
    Affected: 14.1(2g)
    Affected: 13.2(3j)
    Affected: 13.2(5d)
    Affected: 13.2(6i)
    Affected: 14.1(2u)
    Affected: 13.2(3i)
    Affected: 13.2(3r)
    Affected: 13.2(5f)
    Affected: 14.2(1j)
    Affected: 14.1(2w)
    Affected: 14.2(3n)
    Affected: 14.2(3l)
    Affected: 14.2(3j)
    Affected: 14.2(2g)
    Affected: 13.2(8d)
    Affected: 14.1(2x)
    Affected: 13.2(9f)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 13.2(9h)
    Affected: 15.0(1k)
    Affected: 14.2(4k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 15.0(2h)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 15.1(1h)
    Affected: 14.2(6d)
    Affected: 15.1(2e)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 15.1(3e)
    Affected: 13.2(10e)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 15.1(4c)
    Affected: 14.2(6o)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 14.2(7l)
    Affected: 13.2(10f)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 14.2(7q)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 14.2(7t)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 13.2(10g)
    Affected: 16.0(1g)
    Affected: 14.2(7u)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 14.2(7v)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 14.2(7w)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.0(4c)
    Affected: 4.0(2b)
    Affected: 4.1(2a)
    Affected: 4.0(1a)
    Affected: 4.0(2a)
    Affected: 4.0(1b)
    Affected: 4.1(1c)
    Affected: 4.0(4a)
    Affected: 4.0(4b)
    Affected: 4.0(2e)
    Affected: 4.1(1a)
    Affected: 4.0(4d)
    Affected: 4.0(4h)
    Affected: 4.0(4g)
    Affected: 4.0(1d)
    Affected: 4.1(1e)
    Affected: 4.0(4f)
    Affected: 4.0(4e)
    Affected: 4.0(4i)
    Affected: 4.1(1d)
    Affected: 4.0(2d)
    Affected: 4.1(1b)
    Affected: 4.0(1c)
    Affected: 4.1(2b)
    Affected: 4.0(4k)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.0(4l)
    Affected: 4.1(4a)
    Affected: 4.1(3c)
    Affected: 4.1(3d)
    Affected: 4.2(1c)
    Affected: 4.2(1d)
    Affected: 4.0(4m)
    Affected: 4.1(3e)
    Affected: 4.2(1f)
    Affected: 4.1(3f)
    Affected: 4.2(1i)
    Affected: 4.1(3h)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.0(4n)
    Affected: 4.2(1m)
    Affected: 4.1(3i)
    Affected: 4.2(2a)
    Affected: 4.2(1n)
    Affected: 4.1(3j)
    Affected: 4.2(2c)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.1(3k)
    Affected: 4.0(4o)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.1(3l)
    Affected: 4.3(2b)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Affected: 4.3(2c)
    Affected: 4.1(3m)
    Affected: 4.3(2e)
    Affected: 4.3(3a)
    Affected: 4.2(3j)
    Affected: 4.3(3c)
    Affected: 4.2(3k)
    Affected: 4.2(3l)
    Affected: 4.3(2f)
    Affected: 4.2(3m)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20397",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T19:27:41.534598Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:39:35.478Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3y)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6z)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IM7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3b)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IC4(4)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1z)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1d)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "8.4(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "9.3(13)"
                },
                {
                  "status": "affected",
                  "version": "8.2(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(7)"
                },
                {
                  "status": "affected",
                  "version": "10.4(3)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(14)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(41d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3m)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.\u0026nbsp;\r\n\r\nThis vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "PHYSICAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "Improper Access Control",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-04-08T14:29:18.430Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
            "defects": [
              "CSCwm47438"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software Image Verification Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20397",
        "datePublished": "2024-12-04T16:13:13.890Z",
        "dateReserved": "2023-11-08T15:08:07.660Z",
        "dateUpdated": "2025-04-08T14:29:18.430Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20289 (GCVE-0-2024-20289)

    Vulnerability from nvd – Published: 2024-08-28 16:31 – Updated: 2024-08-28 17:24
    VLAI
    Title
    Cisco NX-OS Software Command Injection Vulnerability
    Summary
    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to execute arbitrary commands on the underlying operating system of an affected device.  This vulnerability is due to insufficient validation of arguments for a specific CLI command. An attacker could exploit this vulnerability by including crafted input as the argument of the affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 9.3(3)
    Affected: 9.3(4)
    Affected: 9.3(5)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 9.3(5w)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 10.2(1)
    Affected: 9.3(7a)
    Affected: 9.3(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 10.2(3)
    Affected: 10.2(3t)
    Affected: 9.3(10)
    Affected: 10.2(2a)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 10.3(2)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 10.3(99w)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.3(3r)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 16.0(4c)
    Affected: 16.0(5h)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20289",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-28T17:24:09.815266Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T17:24:18.101Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to execute arbitrary commands on the underlying operating system of an affected device.\u0026nbsp;\r\n\r\nThis vulnerability is due to insufficient validation of arguments for a specific CLI command. An attacker could exploit this vulnerability by including crafted input as the argument of the affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-28T16:31:23.856Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cmdinj-Lq6jsZhH",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cmdinj-Lq6jsZhH"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cmdinj-Lq6jsZhH",
            "defects": [
              "CSCwh77786"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco NX-OS Software Command Injection Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20289",
        "datePublished": "2024-08-28T16:31:23.856Z",
        "dateReserved": "2023-11-08T15:08:07.627Z",
        "dateUpdated": "2024-08-28T17:24:18.101Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20294 (GCVE-0-2024-20294)

    Vulnerability from nvd – Published: 2024-02-28 16:16 – Updated: 2024-08-01 21:59
    VLAI
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device and having an authenticated user retrieve LLDP statistics from the affected device through CLI show commands or Simple Network Management Protocol (SNMP) requests. A successful exploit could allow the attacker to cause the LLDP service to crash and stop running on the affected device. In certain situations, the LLDP crash may result in a reload of the affected device. Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 6.0(2)A3(1)
    Affected: 6.0(2)A3(2)
    Affected: 6.0(2)A3(4)
    Affected: 6.0(2)A4(1)
    Affected: 6.0(2)A4(2)
    Affected: 6.0(2)A4(3)
    Affected: 6.0(2)A4(4)
    Affected: 6.0(2)A4(5)
    Affected: 6.0(2)A4(6)
    Affected: 6.0(2)A6(1)
    Affected: 6.0(2)A6(1a)
    Affected: 6.0(2)A6(2)
    Affected: 6.0(2)A6(2a)
    Affected: 6.0(2)A6(3)
    Affected: 6.0(2)A6(3a)
    Affected: 6.0(2)A6(4)
    Affected: 6.0(2)A6(4a)
    Affected: 6.0(2)A6(5)
    Affected: 6.0(2)A6(5a)
    Affected: 6.0(2)A6(5b)
    Affected: 6.0(2)A6(6)
    Affected: 6.0(2)A6(7)
    Affected: 6.0(2)A6(8)
    Affected: 6.0(2)A7(1)
    Affected: 6.0(2)A7(1a)
    Affected: 6.0(2)A7(2)
    Affected: 6.0(2)A7(2a)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(2)
    Affected: 6.0(2)A8(3)
    Affected: 6.0(2)A8(4)
    Affected: 6.0(2)A8(4a)
    Affected: 6.0(2)A8(5)
    Affected: 6.0(2)A8(6)
    Affected: 6.0(2)A8(7)
    Affected: 6.0(2)A8(7a)
    Affected: 6.0(2)A8(7b)
    Affected: 6.0(2)A8(8)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(10a)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(11)
    Affected: 6.0(2)A8(11a)
    Affected: 6.0(2)A8(11b)
    Affected: 6.0(2)U2(1)
    Affected: 6.0(2)U2(2)
    Affected: 6.0(2)U2(3)
    Affected: 6.0(2)U2(4)
    Affected: 6.0(2)U2(5)
    Affected: 6.0(2)U2(6)
    Affected: 6.0(2)U3(1)
    Affected: 6.0(2)U3(2)
    Affected: 6.0(2)U3(3)
    Affected: 6.0(2)U3(4)
    Affected: 6.0(2)U3(5)
    Affected: 6.0(2)U3(6)
    Affected: 6.0(2)U3(7)
    Affected: 6.0(2)U3(8)
    Affected: 6.0(2)U3(9)
    Affected: 6.0(2)U4(1)
    Affected: 6.0(2)U4(2)
    Affected: 6.0(2)U4(3)
    Affected: 6.0(2)U4(4)
    Affected: 6.0(2)U5(1)
    Affected: 6.0(2)U5(2)
    Affected: 6.0(2)U5(3)
    Affected: 6.0(2)U5(4)
    Affected: 6.0(2)U6(1)
    Affected: 6.0(2)U6(2)
    Affected: 6.0(2)U6(3)
    Affected: 6.0(2)U6(4)
    Affected: 6.0(2)U6(5)
    Affected: 6.0(2)U6(6)
    Affected: 6.0(2)U6(7)
    Affected: 6.0(2)U6(8)
    Affected: 6.0(2)U6(1a)
    Affected: 6.0(2)U6(2a)
    Affected: 6.0(2)U6(3a)
    Affected: 6.0(2)U6(4a)
    Affected: 6.0(2)U6(5a)
    Affected: 6.0(2)U6(5b)
    Affected: 6.0(2)U6(5c)
    Affected: 6.0(2)U6(9)
    Affected: 6.0(2)U6(10)
    Affected: 6.2(2)
    Affected: 6.2(2a)
    Affected: 6.2(6)
    Affected: 6.2(6b)
    Affected: 6.2(8)
    Affected: 6.2(8a)
    Affected: 6.2(8b)
    Affected: 6.2(10)
    Affected: 6.2(12)
    Affected: 6.2(18)
    Affected: 6.2(16)
    Affected: 6.2(14)
    Affected: 6.2(6a)
    Affected: 6.2(20)
    Affected: 6.2(1)
    Affected: 6.2(3)
    Affected: 6.2(5)
    Affected: 6.2(5a)
    Affected: 6.2(5b)
    Affected: 6.2(7)
    Affected: 6.2(9)
    Affected: 6.2(9a)
    Affected: 6.2(9b)
    Affected: 6.2(9c)
    Affected: 6.2(11)
    Affected: 6.2(11b)
    Affected: 6.2(11c)
    Affected: 6.2(11d)
    Affected: 6.2(11e)
    Affected: 6.2(13)
    Affected: 6.2(13a)
    Affected: 6.2(13b)
    Affected: 6.2(15)
    Affected: 6.2(17)
    Affected: 6.2(19)
    Affected: 6.2(21)
    Affected: 6.2(23)
    Affected: 6.2(20a)
    Affected: 6.2(25)
    Affected: 6.2(22)
    Affected: 6.2(27)
    Affected: 6.2(29)
    Affected: 6.2(24)
    Affected: 6.2(31)
    Affected: 6.2(24a)
    Affected: 6.2(33)
    Affected: 7.0(3)F1(1)
    Affected: 7.0(3)F2(1)
    Affected: 7.0(3)F2(2)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)F3(3a)
    Affected: 7.0(3)F3(4)
    Affected: 7.0(3)F3(3c)
    Affected: 7.0(3)F3(5)
    Affected: 7.0(3)I2(2a)
    Affected: 7.0(3)I2(2b)
    Affected: 7.0(3)I2(2c)
    Affected: 7.0(3)I2(2d)
    Affected: 7.0(3)I2(2e)
    Affected: 7.0(3)I2(3)
    Affected: 7.0(3)I2(4)
    Affected: 7.0(3)I2(5)
    Affected: 7.0(3)I2(1)
    Affected: 7.0(3)I2(1a)
    Affected: 7.0(3)I2(2)
    Affected: 7.0(3)I3(1)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(2)
    Affected: 7.0(3)I4(3)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I4(5)
    Affected: 7.0(3)I4(6)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)I4(8b)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 7.0(3)I5(1)
    Affected: 7.0(3)I5(2)
    Affected: 7.0(3)I6(1)
    Affected: 7.0(3)I6(2)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I7(3)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)I7(5a)
    Affected: 7.0(3)I7(6)
    Affected: 7.0(3)I7(7)
    Affected: 7.0(3)I7(8)
    Affected: 7.0(3)I7(9)
    Affected: 7.0(3)I7(10)
    Affected: 7.1(0)N1(1a)
    Affected: 7.1(0)N1(1b)
    Affected: 7.1(0)N1(1)
    Affected: 7.1(1)N1(1)
    Affected: 7.1(2)N1(1)
    Affected: 7.1(3)N1(1)
    Affected: 7.1(3)N1(2)
    Affected: 7.1(4)N1(1)
    Affected: 7.1(5)N1(1)
    Affected: 7.1(5)N1(1b)
    Affected: 7.2(0)D1(1)
    Affected: 7.2(1)D1(1)
    Affected: 7.2(2)D1(2)
    Affected: 7.2(2)D1(1)
    Affected: 7.3(0)D1(1)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(0)DY(1)
    Affected: 7.3(0)N1(1)
    Affected: 7.3(1)D1(1)
    Affected: 7.3(1)DY(1)
    Affected: 7.3(1)N1(1)
    Affected: 7.3(2)D1(1)
    Affected: 7.3(2)D1(2)
    Affected: 7.3(2)D1(3)
    Affected: 7.3(2)D1(3a)
    Affected: 7.3(2)N1(1)
    Affected: 7.3(3)N1(1)
    Affected: 8.0(1)
    Affected: 8.1(1)
    Affected: 8.1(2)
    Affected: 8.1(2a)
    Affected: 8.1(1a)
    Affected: 8.1(1b)
    Affected: 8.2(1)
    Affected: 8.2(2)
    Affected: 8.2(3)
    Affected: 8.2(4)
    Affected: 8.2(5)
    Affected: 8.2(6)
    Affected: 8.2(7)
    Affected: 8.2(7a)
    Affected: 8.2(8)
    Affected: 8.2(9)
    Affected: 8.2(10)
    Affected: 8.3(1)
    Affected: 8.3(2)
    Affected: 9.2(1)
    Affected: 9.2(2)
    Affected: 9.2(2t)
    Affected: 9.2(3)
    Affected: 9.2(4)
    Affected: 9.2(2v)
    Affected: 9.2(1a)
    Affected: 7.3(4)N1(1)
    Affected: 7.3(3)D1(1)
    Affected: 7.3(4)D1(1)
    Affected: 7.3(5)N1(1)
    Affected: 8.4(1)
    Affected: 8.4(1a)
    Affected: 8.4(2)
    Affected: 8.4(2a)
    Affected: 8.4(3)
    Affected: 8.4(2b)
    Affected: 8.4(4)
    Affected: 8.4(2c)
    Affected: 8.4(4a)
    Affected: 8.4(5)
    Affected: 8.4(2d)
    Affected: 8.4(6)
    Affected: 8.4(2e)
    Affected: 8.4(6a)
    Affected: 8.4(7)
    Affected: 8.4(2f)
    Affected: 9.3(1)
    Affected: 9.3(2)
    Affected: 9.3(3)
    Affected: 9.3(4)
    Affected: 9.3(5)
    Affected: 9.3(6)
    Affected: 9.3(7)
    Affected: 9.3(7a)
    Affected: 9.3(8)
    Affected: 9.3(9)
    Affected: 9.3(10)
    Affected: 9.3(11)
    Affected: 9.3(2a)
    Affected: 7.3(6)N1(1)
    Affected: 7.3(5)D1(1)
    Affected: 7.3(7)N1(1)
    Affected: 7.3(7)N1(1a)
    Affected: 7.3(7)N1(1b)
    Affected: 7.3(6)D1(1)
    Affected: 7.3(8)N1(1)
    Affected: 7.3(7)D1(1)
    Affected: 7.3(9)N1(1)
    Affected: 10.1(1)
    Affected: 10.1(2)
    Affected: 10.1(2t)
    Affected: 8.5(1)
    Affected: 7.3(10)N1(1)
    Affected: 7.3(8)D1(1)
    Affected: 10.2(1)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 10.2(3)
    Affected: 10.2(3t)
    Affected: 10.2(4)
    Affected: 10.2(5)
    Affected: 10.2(3v)
    Affected: 7.3(9)D1(1)
    Affected: 7.3(11)N1(1)
    Affected: 7.3(12)N1(1)
    Affected: 10.3(1)
    Affected: 10.3(2)
    Affected: 7.3(13)N1(1)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 3.1(1e)
    Affected: 3.1(1g)
    Affected: 3.1(1h)
    Affected: 3.1(1k)
    Affected: 3.1(1l)
    Affected: 3.1(2b)
    Affected: 3.1(2c)
    Affected: 3.1(2e)
    Affected: 3.1(2f)
    Affected: 3.1(2g)
    Affected: 3.1(2h)
    Affected: 3.1(3a)
    Affected: 3.1(3b)
    Affected: 3.1(3c)
    Affected: 3.1(3d)
    Affected: 3.1(3e)
    Affected: 3.1(3f)
    Affected: 3.1(3h)
    Affected: 3.1(3j)
    Affected: 3.1(3k)
    Affected: 3.1(2d)
    Affected: 3.1(3l)
    Affected: 3.2(1d)
    Affected: 3.2(2b)
    Affected: 3.2(2c)
    Affected: 3.2(2d)
    Affected: 3.2(2e)
    Affected: 3.2(2f)
    Affected: 3.2(3a)
    Affected: 3.2(3b)
    Affected: 3.2(3d)
    Affected: 3.2(3e)
    Affected: 3.2(3g)
    Affected: 3.2(3h)
    Affected: 3.2(3i)
    Affected: 3.2(3j)
    Affected: 3.2(3k)
    Affected: 3.2(3l)
    Affected: 3.2(3n)
    Affected: 3.2(3o)
    Affected: 3.2(3p)
    Affected: 4.0(1a)
    Affected: 4.0(1b)
    Affected: 4.0(1c)
    Affected: 4.0(1d)
    Affected: 4.0(2a)
    Affected: 4.0(2b)
    Affected: 4.0(2d)
    Affected: 4.0(2e)
    Affected: 4.0(4b)
    Affected: 4.0(4c)
    Affected: 4.0(4d)
    Affected: 4.0(4e)
    Affected: 4.0(4f)
    Affected: 4.0(4g)
    Affected: 4.0(4h)
    Affected: 4.0(4a)
    Affected: 4.0(4i)
    Affected: 4.0(4k)
    Affected: 4.0(4l)
    Affected: 4.0(4m)
    Affected: 4.0(4n)
    Affected: 4.0(4o)
    Affected: 4.1(1a)
    Affected: 4.1(1b)
    Affected: 4.1(1c)
    Affected: 4.1(2a)
    Affected: 4.1(1d)
    Affected: 4.1(1e)
    Affected: 4.1(2b)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.1(3d)
    Affected: 4.1(3c)
    Affected: 4.1(3e)
    Affected: 4.1(3f)
    Affected: 4.1(3h)
    Affected: 4.1(3i)
    Affected: 4.1(3j)
    Affected: 4.1(3k)
    Affected: 4.1(3l)
    Affected: 4.2(1d)
    Affected: 4.2(1c)
    Affected: 4.2(1f)
    Affected: 4.2(1i)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.2(1m)
    Affected: 4.2(2a)
    Affected: 4.2(2c)
    Affected: 4.2(1n)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Create a notification for this product.
    Cisco Cisco Firepower Extensible Operating System (FXOS) Affected: 2.2.1.63
    Affected: 2.2.1.66
    Affected: 2.2.1.70
    Affected: 2.2.2.17
    Affected: 2.2.2.19
    Affected: 2.2.2.24
    Affected: 2.2.2.26
    Affected: 2.2.2.28
    Affected: 2.2.2.54
    Affected: 2.2.2.60
    Affected: 2.2.2.71
    Affected: 2.2.2.83
    Affected: 2.2.2.86
    Affected: 2.2.2.91
    Affected: 2.2.2.97
    Affected: 2.2.2.101
    Affected: 2.2.2.137
    Affected: 2.2.2.148
    Affected: 2.2.2.149
    Affected: 2.3.1.99
    Affected: 2.3.1.93
    Affected: 2.3.1.91
    Affected: 2.3.1.88
    Affected: 2.3.1.75
    Affected: 2.3.1.73
    Affected: 2.3.1.66
    Affected: 2.3.1.58
    Affected: 2.3.1.130
    Affected: 2.3.1.111
    Affected: 2.3.1.110
    Affected: 2.3.1.144
    Affected: 2.3.1.145
    Affected: 2.3.1.155
    Affected: 2.3.1.166
    Affected: 2.3.1.173
    Affected: 2.3.1.179
    Affected: 2.3.1.180
    Affected: 2.3.1.56
    Affected: 2.3.1.190
    Affected: 2.3.1.215
    Affected: 2.3.1.216
    Affected: 2.3.1.219
    Affected: 2.3.1.230
    Affected: 2.6.1.131
    Affected: 2.6.1.157
    Affected: 2.6.1.166
    Affected: 2.6.1.169
    Affected: 2.6.1.174
    Affected: 2.6.1.187
    Affected: 2.6.1.192
    Affected: 2.6.1.204
    Affected: 2.6.1.214
    Affected: 2.6.1.224
    Affected: 2.6.1.229
    Affected: 2.6.1.230
    Affected: 2.6.1.238
    Affected: 2.6.1.239
    Affected: 2.6.1.254
    Affected: 2.6.1.259
    Affected: 2.6.1.264
    Affected: 2.6.1.265
    Affected: 2.8.1.105
    Affected: 2.8.1.125
    Affected: 2.8.1.139
    Affected: 2.8.1.143
    Affected: 2.8.1.152
    Affected: 2.8.1.162
    Affected: 2.8.1.164
    Affected: 2.8.1.172
    Affected: 2.8.1.186
    Affected: 2.8.1.190
    Affected: 2.8.1.198
    Affected: 2.9.1.131
    Affected: 2.9.1.135
    Affected: 2.9.1.143
    Affected: 2.9.1.150
    Affected: 2.9.1.158
    Affected: 2.10.1.159
    Affected: 2.10.1.166
    Affected: 2.10.1.179
    Affected: 2.10.1.207
    Affected: 2.10.1.234
    Affected: 2.10.1.245
    Affected: 2.10.1.271
    Affected: 2.11.1.154
    Affected: 2.11.1.182
    Affected: 2.11.1.200
    Affected: 2.11.1.205
    Affected: 2.12.0.31
    Affected: 2.12.0.432
    Affected: 2.12.0.450
    Affected: 2.12.0.467
    Affected: 2.12.0.498
    Affected: 2.12.1.29
    Affected: 2.12.1.48
    Affected: 2.13.0.198
    Affected: 2.13.0.212
    Affected: 2.13.0.243
    Affected: 2.14.1.131
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 12.0(1m)
    Affected: 12.0(2g)
    Affected: 12.0(1n)
    Affected: 12.0(1o)
    Affected: 12.0(1p)
    Affected: 12.0(1q)
    Affected: 12.0(2h)
    Affected: 12.0(2l)
    Affected: 12.0(2m)
    Affected: 12.0(2n)
    Affected: 12.0(2o)
    Affected: 12.0(2f)
    Affected: 12.0(1r)
    Affected: 12.1(1h)
    Affected: 12.1(2e)
    Affected: 12.1(3g)
    Affected: 12.1(4a)
    Affected: 12.1(1i)
    Affected: 12.1(2g)
    Affected: 12.1(2k)
    Affected: 12.1(3h)
    Affected: 12.1(3j)
    Affected: 12.2(1n)
    Affected: 12.2(2e)
    Affected: 12.2(3j)
    Affected: 12.2(4f)
    Affected: 12.2(4p)
    Affected: 12.2(3p)
    Affected: 12.2(3r)
    Affected: 12.2(3s)
    Affected: 12.2(3t)
    Affected: 12.2(2f)
    Affected: 12.2(2i)
    Affected: 12.2(2j)
    Affected: 12.2(2k)
    Affected: 12.2(2q)
    Affected: 12.2(1o)
    Affected: 12.2(4q)
    Affected: 12.2(4r)
    Affected: 12.3(1e)
    Affected: 12.3(1f)
    Affected: 12.3(1i)
    Affected: 12.3(1l)
    Affected: 12.3(1o)
    Affected: 12.3(1p)
    Affected: 13.0(1k)
    Affected: 13.0(2h)
    Affected: 13.0(2k)
    Affected: 13.0(2n)
    Affected: 13.1(1i)
    Affected: 13.1(2m)
    Affected: 13.1(2o)
    Affected: 13.1(2p)
    Affected: 13.1(2q)
    Affected: 13.1(2s)
    Affected: 13.1(2t)
    Affected: 13.1(2u)
    Affected: 13.1(2v)
    Affected: 13.2(1l)
    Affected: 13.2(1m)
    Affected: 13.2(2l)
    Affected: 13.2(2o)
    Affected: 13.2(3i)
    Affected: 13.2(3n)
    Affected: 13.2(3o)
    Affected: 13.2(3r)
    Affected: 13.2(4d)
    Affected: 13.2(4e)
    Affected: 13.2(3s)
    Affected: 13.2(5d)
    Affected: 13.2(5e)
    Affected: 13.2(5f)
    Affected: 13.2(6i)
    Affected: 13.2(7f)
    Affected: 13.2(7k)
    Affected: 13.2(9b)
    Affected: 13.2(9f)
    Affected: 13.2(9h)
    Affected: 13.2(10e)
    Affected: 13.2(10f)
    Affected: 13.2(10g)
    Affected: 14.0(1h)
    Affected: 14.0(2c)
    Affected: 14.0(3d)
    Affected: 14.0(3c)
    Affected: 14.1(1i)
    Affected: 14.1(1j)
    Affected: 14.1(1k)
    Affected: 14.1(1l)
    Affected: 14.1(2g)
    Affected: 14.1(2m)
    Affected: 14.1(2o)
    Affected: 14.1(2s)
    Affected: 14.1(2u)
    Affected: 14.1(2w)
    Affected: 14.1(2x)
    Affected: 14.2(1i)
    Affected: 14.2(1j)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 14.2(2f)
    Affected: 14.2(2g)
    Affected: 14.2(3j)
    Affected: 14.2(3l)
    Affected: 14.2(3n)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 14.2(4k)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 14.2(6d)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 14.2(7l)
    Affected: 14.2(6o)
    Affected: 14.2(7q)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 14.2(7t)
    Affected: 14.2(7u)
    Affected: 14.2(7v)
    Affected: 14.2(7w)
    Affected: 15.0(1k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 15.0(2h)
    Affected: 15.1(1h)
    Affected: 15.1(2e)
    Affected: 15.1(3e)
    Affected: 15.1(4c)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3e)
    Affected: 15.2(3f)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 15.2(8d)
    Affected: 15.2(8e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 16.0(1g)
    Affected: 16.0(1j)
    Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.3(1d)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20294",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-02-29T18:49:22.444391Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:40:18.434Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:59:41.160Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-nxos-lldp-dos-z7PncTgt",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-lldp-dos-z7PncTgt"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0(2)A3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A3(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A3(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5c)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(10)"
                },
                {
                  "status": "affected",
                  "version": "6.2(2)"
                },
                {
                  "status": "affected",
                  "version": "6.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(10)"
                },
                {
                  "status": "affected",
                  "version": "6.2(12)"
                },
                {
                  "status": "affected",
                  "version": "6.2(18)"
                },
                {
                  "status": "affected",
                  "version": "6.2(16)"
                },
                {
                  "status": "affected",
                  "version": "6.2(14)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(20)"
                },
                {
                  "status": "affected",
                  "version": "6.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.2(3)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(7)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9c)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11c)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11d)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11e)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(15)"
                },
                {
                  "status": "affected",
                  "version": "6.2(17)"
                },
                {
                  "status": "affected",
                  "version": "6.2(19)"
                },
                {
                  "status": "affected",
                  "version": "6.2(21)"
                },
                {
                  "status": "affected",
                  "version": "6.2(23)"
                },
                {
                  "status": "affected",
                  "version": "6.2(20a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(25)"
                },
                {
                  "status": "affected",
                  "version": "6.2(22)"
                },
                {
                  "status": "affected",
                  "version": "6.2(27)"
                },
                {
                  "status": "affected",
                  "version": "6.2(29)"
                },
                {
                  "status": "affected",
                  "version": "6.2(24)"
                },
                {
                  "status": "affected",
                  "version": "6.2(31)"
                },
                {
                  "status": "affected",
                  "version": "6.2(24a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(33)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2d)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2e)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(3)N1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.1(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(5)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.2(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.2(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.2(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.2(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.0(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(10)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(12)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(13)N1(1)"
                }
              ]
            },
            {
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1g)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2d)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "3.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2b)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3a)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3p)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                }
              ]
            },
            {
              "product": "Cisco Firepower Extensible Operating System (FXOS)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.2.1.63"
                },
                {
                  "status": "affected",
                  "version": "2.2.1.66"
                },
                {
                  "status": "affected",
                  "version": "2.2.1.70"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.17"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.19"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.24"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.26"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.28"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.54"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.60"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.71"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.83"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.86"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.91"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.97"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.101"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.137"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.148"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.149"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.99"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.93"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.91"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.88"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.75"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.73"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.66"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.58"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.130"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.111"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.110"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.144"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.145"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.155"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.173"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.179"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.180"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.56"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.190"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.215"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.216"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.219"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.230"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.131"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.157"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.169"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.174"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.187"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.192"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.204"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.214"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.224"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.229"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.230"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.238"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.239"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.254"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.259"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.264"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.265"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.105"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.125"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.139"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.143"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.152"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.162"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.164"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.172"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.186"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.190"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.198"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.131"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.135"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.143"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.150"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.158"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.159"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.179"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.207"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.234"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.245"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.271"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.154"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.182"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.200"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.205"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.432"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.450"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.467"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.498"
                },
                {
                  "status": "affected",
                  "version": "2.12.1.29"
                },
                {
                  "status": "affected",
                  "version": "2.12.1.48"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.198"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.212"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.243"
                },
                {
                  "status": "affected",
                  "version": "2.14.1.131"
                }
              ]
            },
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.0(1m)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2g)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1n)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1p)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1q)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2l)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2m)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2n)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2o)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2f)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1r)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "12.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2k)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3p)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2i)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2k)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2q)"
                },
                {
                  "status": "affected",
                  "version": "12.2(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4q)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4r)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1e)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1f)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1i)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1l)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1p)"
                },
                {
                  "status": "affected",
                  "version": "13.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2k)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2n)"
                },
                {
                  "status": "affected",
                  "version": "13.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2p)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2q)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2v)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device and having an authenticated user retrieve LLDP statistics from the affected device through CLI show commands or Simple Network Management Protocol (SNMP) requests. A successful exploit could allow the attacker to cause the LLDP service to crash and stop running on the affected device. In certain situations, the LLDP crash may result in a reload of the affected device.\r\n\r Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol)."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-28T16:16:56.717Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-lldp-dos-z7PncTgt",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-lldp-dos-z7PncTgt"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-lldp-dos-z7PncTgt",
            "defects": [
              "CSCwf67412",
              "CSCwf67468",
              "CSCwi31871",
              "CSCwe86457",
              "CSCwf67408",
              "CSCwf67409",
              "CSCwf67411",
              "CSCwi29934"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20294",
        "datePublished": "2024-02-28T16:16:56.717Z",
        "dateReserved": "2023-11-08T15:08:07.629Z",
        "dateUpdated": "2024-08-01T21:59:41.160Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20185 (GCVE-0-2023-20185)

    Vulnerability from nvd – Published: 2023-07-12 13:50 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption. A successful exploit could allow the attacker to read or modify the traffic that is transmitted between the sites. Cisco has not released and will not release software updates that address this vulnerability.
    CWE
    • CWE-330 - Use of Insufficiently Random Values
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.0(1h)
    Affected: 14.0(2c)
    Affected: 14.0(3d)
    Affected: 14.0(3c)
    Affected: 14.1(1i)
    Affected: 14.1(1j)
    Affected: 14.1(1k)
    Affected: 14.1(1l)
    Affected: 14.1(2g)
    Affected: 14.1(2m)
    Affected: 14.1(2o)
    Affected: 14.1(2s)
    Affected: 14.1(2u)
    Affected: 14.1(2w)
    Affected: 14.1(2x)
    Affected: 14.2(1i)
    Affected: 14.2(1j)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 14.2(2f)
    Affected: 14.2(2g)
    Affected: 14.2(3j)
    Affected: 14.2(3l)
    Affected: 14.2(3n)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 14.2(4k)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 14.2(6d)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 14.2(7l)
    Affected: 14.2(6o)
    Affected: 14.2(7q)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 14.2(7t)
    Affected: 14.2(7u)
    Affected: 14.2(7v)
    Affected: 14.2(7w)
    Affected: 15.0(1k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 15.0(2h)
    Affected: 15.1(1h)
    Affected: 15.1(2e)
    Affected: 15.1(3e)
    Affected: 15.1(4c)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3e)
    Affected: 15.2(3f)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 15.2(8d)
    Affected: 15.2(8e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.2(8h)
    Affected: 16.0(1g)
    Affected: 16.0(1j)
    Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.3(1d)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.245Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic.\r\n\r This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption. A successful exploit could allow the attacker to read or modify the traffic that is transmitted between the sites.\r\n\r Cisco has not released and will not release software updates that address this vulnerability."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-330",
                  "description": "Use of Insufficiently Random Values",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:51.916Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX"
            }
          ],
          "source": {
            "advisory": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
            "defects": [
              "CSCwf02544"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20185",
        "datePublished": "2023-07-12T13:50:35.866Z",
        "dateReserved": "2022-10-27T18:47:50.364Z",
        "dateUpdated": "2024-08-02T09:05:36.245Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20089 (GCVE-0-2023-20089)

    Vulnerability from nvd – Published: 2023-02-23 00:00 – Updated: 2024-10-25 16:03
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to cause a memory leak, which could result in an unexpected reload of the device. This vulnerability is due to incorrect error checking when parsing ingress LLDP packets. An attacker could exploit this vulnerability by sending a steady stream of crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause a memory leak, which could result in a denial of service (DoS) condition when the device unexpectedly reloads. Note: This vulnerability cannot be exploited by transit traffic through the device. The crafted LLDP packet must be targeted to a directly connected interface, and the attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). In addition, the attack surface for this vulnerability can be reduced by disabling LLDP on interfaces where it is not required.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Date Public
    2023-02-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T08:57:35.883Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20230222 Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-lldp-dos-ySCNZOpX"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20089",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-25T14:36:32.500030Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-25T16:03:47.738Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2023-02-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to cause a memory leak, which could result in an unexpected reload of the device. This vulnerability is due to incorrect error checking when parsing ingress LLDP packets. An attacker could exploit this vulnerability by sending a steady stream of crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause a memory leak, which could result in a denial of service (DoS) condition when the device unexpectedly reloads. Note: This vulnerability cannot be exploited by transit traffic through the device. The crafted LLDP packet must be targeted to a directly connected interface, and the attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). In addition, the attack surface for this vulnerability can be reduced by disabling LLDP on interfaces where it is not required."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-789",
                  "description": "CWE-789",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-23T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20230222 Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-lldp-dos-ySCNZOpX"
            }
          ],
          "source": {
            "advisory": "cisco-sa-aci-lldp-dos-ySCNZOpX",
            "defect": [
              [
                "CSCwc23246"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20089",
        "datePublished": "2023-02-23T00:00:00.000Z",
        "dateReserved": "2022-10-27T00:00:00.000Z",
        "dateUpdated": "2024-10-25T16:03:47.738Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1586 (GCVE-0-2021-1586)

    Vulnerability from nvd – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability
    Summary
    A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.396Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1586",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:54:28.309256Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:32.217Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-345",
                  "description": "CWE-345",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:59.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-tcp-dos-YXukt6gM",
            "defect": [
              [
                "CSCvw87983"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1586",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-345"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-tcp-dos-YXukt6gM",
              "defect": [
                [
                  "CSCvw87983"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1586",
        "datePublished": "2021-08-25T19:10:59.639Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:32.217Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1584 (GCVE-0-2021-1584)

    Vulnerability from nvd – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.142Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1584",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:43:19.684331Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:38.495Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:53.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
            }
          ],
          "source": {
            "advisory": "cisco-sa-naci-mdvul-vrKVgNU",
            "defect": [
              [
                "CSCvy05012"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1584",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "6.0",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-naci-mdvul-vrKVgNU",
              "defect": [
                [
                  "CSCvy05012"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1584",
        "datePublished": "2021-08-25T19:10:53.827Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:38.495Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1583 (GCVE-0-2021-1583)

    Vulnerability from nvd – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability
    Summary
    A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.371Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1583",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:40:54.721873Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:44.390Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "CWE-284",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:48.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
            }
          ],
          "source": {
            "advisory": "cisco-sa-naci-afr-UtjfO2D7",
            "defect": [
              [
                "CSCvy05010"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1583",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "4.4",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-284"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-naci-afr-UtjfO2D7",
              "defect": [
                [
                  "CSCvy05010"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1583",
        "datePublished": "2021-08-25T19:10:48.311Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:44.390Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1523 (GCVE-0-2021-1523)

    Vulnerability from nvd – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:03
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:11:17.669Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1523",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:54:29.770788Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:03:29.112Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-772",
                  "description": "CWE-772",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:10.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-queue-wedge-cLDDEfKF",
            "defect": [
              [
                "CSCvx14142"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1523",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-772"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-queue-wedge-cLDDEfKF",
              "defect": [
                [
                  "CSCvx14142"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1523",
        "datePublished": "2021-08-25T19:10:10.198Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:03:29.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1231 (GCVE-0-2021-1231)

    Vulnerability from nvd – Published: 2021-02-24 19:30 – Updated: 2024-11-08 23:38
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-02-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.339Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1231",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:48:27.423914Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:38:56.652Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-02-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 4.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "CWE-284",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-24T19:30:36.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
            }
          ],
          "source": {
            "advisory": "cisco-sa-apic-lldap-dos-WerV9CFj",
            "defect": [
              [
                "CSCvu84570"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-02-24T16:00:00",
              "ID": "CVE-2021-1231",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "4.7",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-284"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-apic-lldap-dos-WerV9CFj",
              "defect": [
                [
                  "CSCvu84570"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1231",
        "datePublished": "2021-02-24T19:30:36.992Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:38:56.652Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1230 (GCVE-0-2021-1230)

    Vulnerability from nvd – Published: 2021-02-24 19:30 – Updated: 2024-11-08 23:39
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability
    Summary
    A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-02-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.062Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1230",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:03:51.718735Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:39:28.825Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-02-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-233",
                  "description": "CWE-233",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-24T19:30:30.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
            "defect": [
              [
                "CSCvr59494"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-02-24T16:00:00",
              "ID": "CVE-2021-1230",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-233"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
              "defect": [
                [
                  "CSCvr59494"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1230",
        "datePublished": "2021-02-24T19:30:30.975Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:39:28.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-20033 (GCVE-0-2026-20033)

    Vulnerability from cvelistv5 – Published: 2026-02-25 16:26 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco NX-OS Software Denial of Service Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation when processing specific Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to the management interface of an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. Note: Only the out-of-band (OOB) management interface is affected.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 16.0(1g)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Affected: 16.0(9e)
    Affected: 16.1(4h)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20033",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:01.739135Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:48.146Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9e)"
                },
                {
                  "status": "affected",
                  "version": "16.1(4h)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to insufficient validation when processing specific Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to the\u0026nbsp;management interface of an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition.\r\nNote: Only the out-of-band (OOB) management interface is affected."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:26:29.215Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cpdos-qLsv6pFD",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cpdos-qLsv6pFD"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cpdos-qLsv6pFD",
            "defects": [
              "CSCwq96001"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20033",
        "datePublished": "2026-02-25T16:26:29.215Z",
        "dateReserved": "2025-10-08T11:59:15.353Z",
        "dateUpdated": "2026-02-25T19:05:48.146Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20048 (GCVE-0-2026-20048)

    Vulnerability from cvelistv5 – Published: 2026-02-25 16:26 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco NX-OS Software SNMP Denial of Service Vulnerability
    Summary
    A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a DoS condition. Note: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv1 or SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-789 - Uncontrolled Memory Allocation
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 16.0(1g)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Affected: 16.0(9e)
    Affected: 16.1(4h)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20048",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:11.351419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:48.366Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9e)"
                },
                {
                  "status": "affected",
                  "version": "16.1(4h)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries\u0026nbsp;to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a\u0026nbsp;DoS condition.\r\nNote: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit\u0026nbsp;this vulnerability through SNMPv1 or\u0026nbsp;SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-789",
                  "description": "Uncontrolled Memory Allocation",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:26:28.329Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-dsnmp-cNN39Uh",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-dsnmp-cNN39Uh",
            "defects": [
              "CSCwq57598"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software SNMP Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20048",
        "datePublished": "2026-02-25T16:26:28.329Z",
        "dateReserved": "2025-10-08T11:59:15.355Z",
        "dateUpdated": "2026-02-25T19:05:48.366Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20010 (GCVE-0-2026-20010)

    Vulnerability from cvelistv5 – Published: 2026-02-25 16:18 – Updated: 2026-02-25 19:05
    VLAI
    Title
    Cisco Nexus 3000 and 9000 Series Switches Link Layer Discovery Protocol Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause an affected device to reload unexpectedly. This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 10.3(1)
    Affected: 10.3(2)
    Affected: 10.3(3)
    Affected: 10.4(1)
    Affected: 10.3(99w)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.3(3r)
    Affected: 10.3(4h)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 16.0(4c)
    Affected: 16.0(5h)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 16.0(6c)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.3(4e)
    Affected: 4.3(6b)
    Affected: 4.3(4c)
    Affected: 4.3(4f)
    Affected: 4.3(6d)
    Affected: 4.3(5e)
    Affected: 4.3(4d)
    Affected: 4.3(4b)
    Affected: 4.3(5a)
    Affected: 4.3(5c)
    Affected: 4.3(5d)
    Affected: 4.3(6c)
    Affected: 4.3(6a)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20010",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-25T18:18:44.628066Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-25T19:05:49.108Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.3(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5a)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(6a)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause an affected device to reload unexpectedly.\r\n\r\nThis vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.\r\nNote:\u0026nbsp;LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be\u0026nbsp;directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol)."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-25T16:18:14.561Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3",
            "defects": [
              "CSCwq33193"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Nexus 3000 and 9000 Series Switches Link Layer Discovery Protocol Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20010",
        "datePublished": "2026-02-25T16:18:14.561Z",
        "dateReserved": "2025-10-08T11:59:15.350Z",
        "dateUpdated": "2026-02-25T19:05:49.108Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20292 (GCVE-0-2025-20292)

    Vulnerability from cvelistv5 – Published: 2025-08-27 16:23 – Updated: 2025-08-27 18:25
    VLAI
    Title
    Cisco NXOS Software Command Injection Vulnerability
    Summary
    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by entering crafted input as the argument of an affected CLI command. A successful exploit could allow the attacker to read and write files on the underlying operating system with the privileges of a non-root user account. File system access is limited to the permissions that are granted to that non-root user account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 8.2(5)
    Affected: 7.3(6)N1(1a)
    Affected: 7.3(5)D1(1)
    Affected: 8.4(2)
    Affected: 7.3(6)N1(1)
    Affected: 8.4(3)
    Affected: 9.2(3)
    Affected: 7.0(3)I5(2)
    Affected: 8.2(1)
    Affected: 6.0(2)A8(7a)
    Affected: 7.0(3)I4(5)
    Affected: 7.0(3)I4(6)
    Affected: 7.3(4)N1(1)
    Affected: 7.0(3)I4(3)
    Affected: 9.2(2v)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(2)
    Affected: 6.0(2)A8(11)
    Affected: 7.3(4)D1(1)
    Affected: 9.2(1)
    Affected: 9.2(2t)
    Affected: 9.2(3y)
    Affected: 7.0(3)I4(1t)
    Affected: 7.0(3)I7(6z)
    Affected: 9.3(2)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)I7(3z)
    Affected: 7.0(3)IM7(2)
    Affected: 6.0(2)A8(11b)
    Affected: 7.3(0)N1(1)
    Affected: 7.0(3)I7(5a)
    Affected: 8.1(1)
    Affected: 7.0(3)I6(1)
    Affected: 8.2(2)
    Affected: 7.3(2)N1(1c)
    Affected: 7.0(3)I5(3b)
    Affected: 8.3(2)
    Affected: 7.3(5)N1(1)
    Affected: 7.3(2)N1(1b)
    Affected: 7.3(2)D1(3a)
    Affected: 7.3(1)N1(1)
    Affected: 9.2(4)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(2)
    Affected: 7.0(3)IC4(4)
    Affected: 7.3(4)N1(1a)
    Affected: 8.1(2)
    Affected: 7.0(3)F3(3c)
    Affected: 7.3(3)D1(1)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(5)
    Affected: 8.2(3)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I5(3)
    Affected: 7.0(3)I7(3)
    Affected: 6.0(2)A8(6)
    Affected: 7.0(3)I6(2)
    Affected: 8.3(1)
    Affected: 8.4(1)
    Affected: 8.1(1b)
    Affected: 7.3(0)N1(1b)
    Affected: 6.0(2)A8(5)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(2)D1(1)
    Affected: 7.3(2)N1(1)
    Affected: 9.3(1)
    Affected: 7.3(0)N1(1a)
    Affected: 6.0(2)A8(7)
    Affected: 7.0(3)I7(6)
    Affected: 7.3(2)D1(2)
    Affected: 6.0(2)A8(11a)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 8.2(4)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(7)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(10a)
    Affected: 7.0(3)I5(1)
    Affected: 9.3(1z)
    Affected: 9.2(2)
    Affected: 5.2(1)SV5(1.2)
    Affected: 7.0(3)F3(4)
    Affected: 7.3(3)N1(1)
    Affected: 7.0(3)I4(8b)
    Affected: 8.1(2a)
    Affected: 7.3(2)D1(3)
    Affected: 6.0(2)A8(3)
    Affected: 7.0(3)I4(6t)
    Affected: 7.0(3)I5(3a)
    Affected: 8.1(1a)
    Affected: 6.0(2)A8(8)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)F3(3a)
    Affected: 6.0(2)A8(4)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)IA7(2)
    Affected: 7.0(3)IA7(1)
    Affected: 6.0(2)A8(7b)
    Affected: 7.3(1)D1(1)
    Affected: 5.2(1)SV5(1.1)
    Affected: 6.0(2)A8(4a)
    Affected: 7.3(0)D1(1)
    Affected: 5.2(1)SV5(1.3)
    Affected: 8.4(1a)
    Affected: 9.3(3)
    Affected: 7.3(2)D1(1d)
    Affected: 7.3(7)N1(1)
    Affected: 7.0(3)I7(8)
    Affected: 7.3(7)N1(1a)
    Affected: 9.3(4)
    Affected: 7.3(6)D1(1)
    Affected: 8.2(6)
    Affected: 9.3(5)
    Affected: 8.4(2a)
    Affected: 8.4(2b)
    Affected: 7.3(8)N1(1)
    Affected: 7.0(3)I7(9)
    Affected: 7.3(7)N1(1b)
    Affected: 5.2(1)SV5(1.3a)
    Affected: 8.5(1)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 8.4(4)
    Affected: 7.3(7)D1(1)
    Affected: 8.4(2c)
    Affected: 5.2(1)SV5(1.3b)
    Affected: 9.3(5w)
    Affected: 8.2(7)
    Affected: 7.3(9)N1(1)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 7.0(3)I7(9w)
    Affected: 10.2(1)
    Affected: 7.3(8)N1(1a)
    Affected: 7.3(8)D1(1)
    Affected: 9.3(7a)
    Affected: 8.2(7a)
    Affected: 9.3(8)
    Affected: 8.4(4a)
    Affected: 8.4(2d)
    Affected: 7.3(10)N1(1)
    Affected: 8.4(5)
    Affected: 7.0(3)I7(10)
    Affected: 7.3(8)N1(1b)
    Affected: 8.2(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 5.2(1)SV5(1.3c)
    Affected: 7.3(9)D1(1)
    Affected: 7.3(11)N1(1)
    Affected: 10.2(3)
    Affected: 8.4(6)
    Affected: 10.2(3t)
    Affected: 8.4(2e)
    Affected: 9.3(10)
    Affected: 7.3(11)N1(1a)
    Affected: 10.2(2a)
    Affected: 7.3(12)N1(1)
    Affected: 9.2(1a)
    Affected: 8.2(9)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 7.3(13)N1(1)
    Affected: 8.4(7)
    Affected: 10.3(2)
    Affected: 8.4(6a)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.4(1)
    Affected: 9.3(2a)
    Affected: 8.4(2f)
    Affected: 8.2(10)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 8.4(8)
    Affected: 10.3(99w)
    Affected: 7.3(14)N1(1)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 8.4(9)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 9.4(1a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 9.3(13)
    Affected: 8.2(11)
    Affected: 9.4(2)
    Affected: 10.3(5)
    Affected: 10.2(7)
    Affected: 10.4(3)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.5(1)
    Affected: 7.3(15)N1(1)
    Affected: 8.4(10)
    Affected: 9.4(2a)
    Affected: 10.2(8)
    Affected: 10.3(3r)
    Affected: 10.3(6)
    Affected: 9.3(14)
    Affected: 10.4(4)
    Affected: 10.3(4h)
    Affected: 10.5(2)
    Affected: 9.4(3)
    Affected: 9.4(3a)
    Affected: 10.4(4g)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.1(1j)
    Affected: 14.0(3d)
    Affected: 14.1(1k)
    Affected: 13.2(1m)
    Affected: 14.0(3c)
    Affected: 13.2(2l)
    Affected: 13.2(7k)
    Affected: 14.1(1l)
    Affected: 14.2(2f)
    Affected: 13.2(3s)
    Affected: 13.2(2o)
    Affected: 14.0(2c)
    Affected: 14.1(2m)
    Affected: 13.2(5e)
    Affected: 14.1(2o)
    Affected: 13.2(7f)
    Affected: 13.2(41d)
    Affected: 13.2(4d)
    Affected: 13.2(3o)
    Affected: 13.2(1l)
    Affected: 14.0(1h)
    Affected: 13.2(3n)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 13.2(4e)
    Affected: 14.2(1i)
    Affected: 13.2(9b)
    Affected: 14.1(2s)
    Affected: 14.1(1i)
    Affected: 14.1(2g)
    Affected: 13.2(3j)
    Affected: 13.2(5d)
    Affected: 13.2(6i)
    Affected: 14.1(2u)
    Affected: 13.2(3i)
    Affected: 13.2(3r)
    Affected: 13.2(5f)
    Affected: 14.2(1j)
    Affected: 14.1(2w)
    Affected: 14.2(3n)
    Affected: 14.2(3l)
    Affected: 14.2(3j)
    Affected: 14.2(2g)
    Affected: 13.2(8d)
    Affected: 14.1(2x)
    Affected: 13.2(9f)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 13.2(9h)
    Affected: 15.0(1k)
    Affected: 14.2(4k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 15.0(2h)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 15.1(1h)
    Affected: 14.2(6d)
    Affected: 15.1(2e)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 15.1(3e)
    Affected: 13.2(10e)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 15.1(4c)
    Affected: 14.2(6o)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 14.2(7l)
    Affected: 13.2(10f)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 14.2(7q)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 14.2(7t)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 13.2(10g)
    Affected: 16.0(1g)
    Affected: 14.2(7u)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 14.2(7v)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 14.2(7w)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Affected: 16.0(8f)
    Affected: 16.1(2f)
    Affected: 16.1(2g)
    Affected: 15.3(2f)
    Affected: 16.0(9c)
    Affected: 16.1(3f)
    Affected: 16.0(9d)
    Affected: 16.0(6h)
    Affected: 16.0(8h)
    Affected: 16.1(3g)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.0(4c)
    Affected: 4.0(2b)
    Affected: 4.1(2a)
    Affected: 4.0(1a)
    Affected: 4.0(2a)
    Affected: 4.0(1b)
    Affected: 4.1(1c)
    Affected: 4.0(4a)
    Affected: 4.0(4b)
    Affected: 4.0(2e)
    Affected: 4.1(1a)
    Affected: 4.0(4d)
    Affected: 4.0(4h)
    Affected: 4.0(4g)
    Affected: 4.0(1d)
    Affected: 4.1(1e)
    Affected: 4.0(4f)
    Affected: 4.0(4e)
    Affected: 4.0(4i)
    Affected: 4.1(1d)
    Affected: 4.0(2d)
    Affected: 4.1(1b)
    Affected: 4.0(1c)
    Affected: 4.1(2b)
    Affected: 4.0(4k)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.0(4l)
    Affected: 4.1(4a)
    Affected: 4.1(3c)
    Affected: 4.1(3d)
    Affected: 4.2(1c)
    Affected: 4.2(1d)
    Affected: 4.0(4m)
    Affected: 4.1(3e)
    Affected: 4.2(1f)
    Affected: 4.1(3f)
    Affected: 4.2(1i)
    Affected: 4.1(3h)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.0(4n)
    Affected: 4.2(1m)
    Affected: 4.1(3i)
    Affected: 4.2(2a)
    Affected: 4.2(1n)
    Affected: 4.1(3j)
    Affected: 4.2(2c)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.1(3k)
    Affected: 4.0(4o)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.1(3l)
    Affected: 4.3(2b)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Affected: 4.3(2c)
    Affected: 4.1(3m)
    Affected: 4.3(2e)
    Affected: 4.3(3a)
    Affected: 4.2(3j)
    Affected: 4.3(3c)
    Affected: 4.3(4a)
    Affected: 4.2(3k)
    Affected: 4.3(4b)
    Affected: 4.3(4c)
    Affected: 4.2(3l)
    Affected: 4.3(4d)
    Affected: 4.3(2f)
    Affected: 4.2(3m)
    Affected: 4.3(5a)
    Affected: 4.3(4e)
    Affected: 4.1(3n)
    Affected: 4.3(4f)
    Affected: 4.2(3n)
    Affected: 4.3(5c)
    Affected: 4.2(3o)
    Affected: 4.3(5d)
    Affected: 4.3(5e)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20292",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-27T18:24:42.891013Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-27T18:25:03.052Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3y)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6z)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IM7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3b)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IC4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1z)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1d)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3a)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3b)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "7.3(10)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "5.2(1)SV5(1.3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(12)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(13)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "7.3(14)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "8.4(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "9.3(13)"
                },
                {
                  "status": "affected",
                  "version": "8.2(11)"
                },
                {
                  "status": "affected",
                  "version": "9.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(7)"
                },
                {
                  "status": "affected",
                  "version": "10.4(3)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(15)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(10)"
                },
                {
                  "status": "affected",
                  "version": "9.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "10.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(14)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "9.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.4(3a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(41d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9c)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(9d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.1(3g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5a)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3n)"
                },
                {
                  "status": "affected",
                  "version": "4.3(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5d)"
                },
                {
                  "status": "affected",
                  "version": "4.3(5e)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by entering crafted input as the argument of an affected CLI command. A successful exploit could allow the attacker to read and write files on the underlying operating system with the privileges of a non-root user account. File system access is limited to the permissions that are granted to that non-root user account."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-08-27T16:23:35.656Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cmdinj-qhNze5Ss",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cmdinj-qhNze5Ss"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cmdinj-qhNze5Ss",
            "defects": [
              "CSCwn39953"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco NXOS Software Command Injection Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20292",
        "datePublished": "2025-08-27T16:23:35.656Z",
        "dateReserved": "2024-10-10T19:15:13.251Z",
        "dateUpdated": "2025-08-27T18:25:03.052Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20397 (GCVE-0-2024-20397)

    Vulnerability from cvelistv5 – Published: 2024-12-04 16:13 – Updated: 2025-04-08 14:29
    VLAI
    Title
    Cisco NX-OS Software Image Verification Bypass Vulnerability
    Summary
    A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.  This vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-284 - Improper Access Control
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 8.2(5)
    Affected: 7.3(5)D1(1)
    Affected: 8.4(2)
    Affected: 8.4(3)
    Affected: 9.2(3)
    Affected: 7.0(3)I5(2)
    Affected: 8.2(1)
    Affected: 6.0(2)A8(7a)
    Affected: 7.0(3)I4(5)
    Affected: 7.3(1)D1(1)
    Affected: 7.0(3)I4(6)
    Affected: 7.0(3)I4(3)
    Affected: 9.2(2v)
    Affected: 7.3(0)D1(1)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(2)
    Affected: 6.0(2)A8(11)
    Affected: 7.3(4)D1(1)
    Affected: 9.2(1)
    Affected: 9.2(2t)
    Affected: 9.2(3y)
    Affected: 7.0(3)I4(1t)
    Affected: 7.0(3)I7(6z)
    Affected: 9.3(2)
    Affected: 7.3(1)DY(1)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)I7(3z)
    Affected: 7.0(3)IM7(2)
    Affected: 6.0(2)A8(11b)
    Affected: 7.0(3)I7(5a)
    Affected: 8.1(1)
    Affected: 7.0(3)I6(1)
    Affected: 8.2(2)
    Affected: 7.0(3)I5(3b)
    Affected: 8.3(2)
    Affected: 7.3(2)D1(3a)
    Affected: 9.2(4)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(2)
    Affected: 7.0(3)IC4(4)
    Affected: 8.1(2)
    Affected: 7.0(3)F3(3c)
    Affected: 7.3(3)D1(1)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(5)
    Affected: 8.2(3)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I5(3)
    Affected: 7.0(3)I7(3)
    Affected: 6.0(2)A8(6)
    Affected: 7.0(3)I6(2)
    Affected: 8.3(1)
    Affected: 8.4(1)
    Affected: 8.1(1b)
    Affected: 6.0(2)A8(5)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(2)D1(1)
    Affected: 9.3(1)
    Affected: 6.0(2)A8(7)
    Affected: 7.0(3)I7(6)
    Affected: 7.3(2)D1(2)
    Affected: 6.0(2)A8(11a)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 8.2(4)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(7)
    Affected: 7.3(0)DY(1)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(10a)
    Affected: 7.0(3)I5(1)
    Affected: 9.3(1z)
    Affected: 9.2(2)
    Affected: 7.0(3)F3(4)
    Affected: 7.0(3)I4(8b)
    Affected: 8.1(2a)
    Affected: 7.3(2)D1(3)
    Affected: 6.0(2)A8(3)
    Affected: 7.0(3)I4(6t)
    Affected: 7.0(3)I5(3a)
    Affected: 8.1(1a)
    Affected: 6.0(2)A8(8)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)F3(3a)
    Affected: 6.0(2)A8(4)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)IA7(2)
    Affected: 7.0(3)IA7(1)
    Affected: 6.0(2)A8(7b)
    Affected: 6.0(2)A8(4a)
    Affected: 8.4(1a)
    Affected: 9.3(3)
    Affected: 7.3(2)D1(1d)
    Affected: 7.0(3)I7(8)
    Affected: 9.3(4)
    Affected: 7.3(6)D1(1)
    Affected: 8.2(6)
    Affected: 9.3(5)
    Affected: 8.4(2a)
    Affected: 8.4(2b)
    Affected: 7.0(3)I7(9)
    Affected: 8.5(1)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 8.4(4)
    Affected: 7.3(7)D1(1)
    Affected: 8.4(2c)
    Affected: 9.3(5w)
    Affected: 8.2(7)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 7.0(3)I7(9w)
    Affected: 10.2(1)
    Affected: 7.3(8)D1(1)
    Affected: 9.3(7a)
    Affected: 8.2(7a)
    Affected: 9.3(8)
    Affected: 8.4(4a)
    Affected: 8.4(2d)
    Affected: 8.4(5)
    Affected: 7.0(3)I7(10)
    Affected: 8.2(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 7.3(9)D1(1)
    Affected: 10.2(3)
    Affected: 8.4(6)
    Affected: 10.2(3t)
    Affected: 8.4(2e)
    Affected: 9.3(10)
    Affected: 10.2(2a)
    Affected: 9.2(1a)
    Affected: 8.2(9)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 8.4(7)
    Affected: 10.3(2)
    Affected: 8.4(6a)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.4(1)
    Affected: 9.3(2a)
    Affected: 8.4(2f)
    Affected: 8.2(10)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 8.4(8)
    Affected: 10.3(99w)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 8.4(9)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 9.4(1a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 9.3(13)
    Affected: 8.2(11)
    Affected: 10.3(5)
    Affected: 10.2(7)
    Affected: 10.4(3)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.5(1)
    Affected: 10.2(8)
    Affected: 10.3(3r)
    Affected: 10.3(6)
    Affected: 9.3(14)
    Affected: 10.4(4)
    Affected: 10.3(4h)
    Affected: 10.4(4g)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.1(1j)
    Affected: 14.0(3d)
    Affected: 14.1(1k)
    Affected: 13.2(1m)
    Affected: 14.0(3c)
    Affected: 13.2(2l)
    Affected: 13.2(7k)
    Affected: 14.1(1l)
    Affected: 14.2(2f)
    Affected: 13.2(3s)
    Affected: 13.2(2o)
    Affected: 14.0(2c)
    Affected: 14.1(2m)
    Affected: 13.2(5e)
    Affected: 14.1(2o)
    Affected: 13.2(7f)
    Affected: 13.2(41d)
    Affected: 13.2(4d)
    Affected: 13.2(3o)
    Affected: 13.2(1l)
    Affected: 14.0(1h)
    Affected: 13.2(3n)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 13.2(4e)
    Affected: 14.2(1i)
    Affected: 13.2(9b)
    Affected: 14.1(2s)
    Affected: 14.1(1i)
    Affected: 14.1(2g)
    Affected: 13.2(3j)
    Affected: 13.2(5d)
    Affected: 13.2(6i)
    Affected: 14.1(2u)
    Affected: 13.2(3i)
    Affected: 13.2(3r)
    Affected: 13.2(5f)
    Affected: 14.2(1j)
    Affected: 14.1(2w)
    Affected: 14.2(3n)
    Affected: 14.2(3l)
    Affected: 14.2(3j)
    Affected: 14.2(2g)
    Affected: 13.2(8d)
    Affected: 14.1(2x)
    Affected: 13.2(9f)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 13.2(9h)
    Affected: 15.0(1k)
    Affected: 14.2(4k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 15.0(2h)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 15.1(1h)
    Affected: 14.2(6d)
    Affected: 15.1(2e)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 15.1(3e)
    Affected: 13.2(10e)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 15.1(4c)
    Affected: 14.2(6o)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 14.2(7l)
    Affected: 13.2(10f)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 14.2(7q)
    Affected: 15.2(2h)
    Affected: 15.2(3f)
    Affected: 15.2(3e)
    Affected: 15.2(3g)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 14.2(7t)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 13.2(10g)
    Affected: 16.0(1g)
    Affected: 14.2(7u)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6h)
    Affected: 16.0(1j)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 14.2(7v)
    Affected: 15.2(7g)
    Affected: 16.0(2h)
    Affected: 14.2(7w)
    Affected: 15.2(8d)
    Affected: 16.0(2j)
    Affected: 15.2(8e)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.3(1d)
    Affected: 15.2(8h)
    Affected: 16.0(4c)
    Affected: 15.3(2a)
    Affected: 15.2(8i)
    Affected: 16.0(5h)
    Affected: 15.3(2b)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Affected: 15.3(2c)
    Affected: 16.0(6c)
    Affected: 15.3(2d)
    Affected: 16.1(1f)
    Affected: 16.0(7e)
    Affected: 16.0(8e)
    Affected: 15.3(2e)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 4.0(4c)
    Affected: 4.0(2b)
    Affected: 4.1(2a)
    Affected: 4.0(1a)
    Affected: 4.0(2a)
    Affected: 4.0(1b)
    Affected: 4.1(1c)
    Affected: 4.0(4a)
    Affected: 4.0(4b)
    Affected: 4.0(2e)
    Affected: 4.1(1a)
    Affected: 4.0(4d)
    Affected: 4.0(4h)
    Affected: 4.0(4g)
    Affected: 4.0(1d)
    Affected: 4.1(1e)
    Affected: 4.0(4f)
    Affected: 4.0(4e)
    Affected: 4.0(4i)
    Affected: 4.1(1d)
    Affected: 4.0(2d)
    Affected: 4.1(1b)
    Affected: 4.0(1c)
    Affected: 4.1(2b)
    Affected: 4.0(4k)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.0(4l)
    Affected: 4.1(4a)
    Affected: 4.1(3c)
    Affected: 4.1(3d)
    Affected: 4.2(1c)
    Affected: 4.2(1d)
    Affected: 4.0(4m)
    Affected: 4.1(3e)
    Affected: 4.2(1f)
    Affected: 4.1(3f)
    Affected: 4.2(1i)
    Affected: 4.1(3h)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.0(4n)
    Affected: 4.2(1m)
    Affected: 4.1(3i)
    Affected: 4.2(2a)
    Affected: 4.2(1n)
    Affected: 4.1(3j)
    Affected: 4.2(2c)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.1(3k)
    Affected: 4.0(4o)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.1(3l)
    Affected: 4.3(2b)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Affected: 4.3(2c)
    Affected: 4.1(3m)
    Affected: 4.3(2e)
    Affected: 4.3(3a)
    Affected: 4.2(3j)
    Affected: 4.3(3c)
    Affected: 4.2(3k)
    Affected: 4.2(3l)
    Affected: 4.3(2f)
    Affected: 4.2(3m)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20397",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T19:27:41.534598Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T21:39:35.478Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3y)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6z)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IM7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3b)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IC4(4)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1z)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6t)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(3a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)IA7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1d)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "8.4(9)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "9.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "9.3(13)"
                },
                {
                  "status": "affected",
                  "version": "8.2(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(7)"
                },
                {
                  "status": "affected",
                  "version": "10.4(3)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(8)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                },
                {
                  "status": "affected",
                  "version": "10.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(14)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4h)"
                },
                {
                  "status": "affected",
                  "version": "10.4(4g)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(41d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "13.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8i)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(6c)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2d)"
                },
                {
                  "status": "affected",
                  "version": "16.1(1f)"
                },
                {
                  "status": "affected",
                  "version": "16.0(7e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(2e)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3m)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.3(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.3(2f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3m)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.\u0026nbsp;\r\n\r\nThis vulnerability is due to insecure bootloader settings. An attacker could exploit this vulnerability by executing a series of bootloader commands. A successful exploit could allow the attacker to bypass NX-OS image signature verification and load unverified software."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "PHYSICAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "Improper Access Control",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-04-08T14:29:18.430Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-image-sig-bypas-pQDRQvjL"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-image-sig-bypas-pQDRQvjL",
            "defects": [
              "CSCwm47438"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco NX-OS Software Image Verification Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20397",
        "datePublished": "2024-12-04T16:13:13.890Z",
        "dateReserved": "2023-11-08T15:08:07.660Z",
        "dateUpdated": "2025-04-08T14:29:18.430Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20289 (GCVE-0-2024-20289)

    Vulnerability from cvelistv5 – Published: 2024-08-28 16:31 – Updated: 2024-08-28 17:24
    VLAI
    Title
    Cisco NX-OS Software Command Injection Vulnerability
    Summary
    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to execute arbitrary commands on the underlying operating system of an affected device.  This vulnerability is due to insufficient validation of arguments for a specific CLI command. An attacker could exploit this vulnerability by including crafted input as the argument of the affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 9.3(3)
    Affected: 9.3(4)
    Affected: 9.3(5)
    Affected: 9.3(6)
    Affected: 10.1(2)
    Affected: 10.1(1)
    Affected: 9.3(5w)
    Affected: 9.3(7)
    Affected: 9.3(7k)
    Affected: 10.2(1)
    Affected: 9.3(7a)
    Affected: 9.3(8)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 9.3(9)
    Affected: 10.1(2t)
    Affected: 10.2(3)
    Affected: 10.2(3t)
    Affected: 9.3(10)
    Affected: 10.2(2a)
    Affected: 10.3(1)
    Affected: 10.2(4)
    Affected: 10.3(2)
    Affected: 9.3(11)
    Affected: 10.3(3)
    Affected: 10.2(5)
    Affected: 9.3(12)
    Affected: 10.2(3v)
    Affected: 10.4(1)
    Affected: 10.3(99w)
    Affected: 10.2(6)
    Affected: 10.3(3w)
    Affected: 10.3(99x)
    Affected: 10.3(3o)
    Affected: 10.3(4)
    Affected: 10.3(3p)
    Affected: 10.3(4a)
    Affected: 10.4(2)
    Affected: 10.3(3q)
    Affected: 10.3(3x)
    Affected: 10.3(4g)
    Affected: 10.3(3r)
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 16.0(4c)
    Affected: 16.0(5h)
    Affected: 16.0(3g)
    Affected: 16.0(5j)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20289",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-28T17:24:09.815266Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T17:24:18.101Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5w)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7k)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(12)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "10.4(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99w)"
                },
                {
                  "status": "affected",
                  "version": "10.2(6)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3w)"
                },
                {
                  "status": "affected",
                  "version": "10.3(99x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3o)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3p)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4a)"
                },
                {
                  "status": "affected",
                  "version": "10.4(2)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3q)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3x)"
                },
                {
                  "status": "affected",
                  "version": "10.3(4g)"
                },
                {
                  "status": "affected",
                  "version": "10.3(3r)"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "16.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(5j)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to execute arbitrary commands on the underlying operating system of an affected device.\u0026nbsp;\r\n\r\nThis vulnerability is due to insufficient validation of arguments for a specific CLI command. An attacker could exploit this vulnerability by including crafted input as the argument of the affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-28T16:31:23.856Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-cmdinj-Lq6jsZhH",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cmdinj-Lq6jsZhH"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-cmdinj-Lq6jsZhH",
            "defects": [
              "CSCwh77786"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco NX-OS Software Command Injection Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20289",
        "datePublished": "2024-08-28T16:31:23.856Z",
        "dateReserved": "2023-11-08T15:08:07.627Z",
        "dateUpdated": "2024-08-28T17:24:18.101Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20294 (GCVE-0-2024-20294)

    Vulnerability from cvelistv5 – Published: 2024-02-28 16:16 – Updated: 2024-08-01 21:59
    VLAI
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device and having an authenticated user retrieve LLDP statistics from the affected device through CLI show commands or Simple Network Management Protocol (SNMP) requests. A successful exploit could allow the attacker to cause the LLDP service to crash and stop running on the affected device. In certain situations, the LLDP crash may result in a reload of the affected device. Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-805 - Buffer Access with Incorrect Length Value
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS Software Affected: 6.0(2)A3(1)
    Affected: 6.0(2)A3(2)
    Affected: 6.0(2)A3(4)
    Affected: 6.0(2)A4(1)
    Affected: 6.0(2)A4(2)
    Affected: 6.0(2)A4(3)
    Affected: 6.0(2)A4(4)
    Affected: 6.0(2)A4(5)
    Affected: 6.0(2)A4(6)
    Affected: 6.0(2)A6(1)
    Affected: 6.0(2)A6(1a)
    Affected: 6.0(2)A6(2)
    Affected: 6.0(2)A6(2a)
    Affected: 6.0(2)A6(3)
    Affected: 6.0(2)A6(3a)
    Affected: 6.0(2)A6(4)
    Affected: 6.0(2)A6(4a)
    Affected: 6.0(2)A6(5)
    Affected: 6.0(2)A6(5a)
    Affected: 6.0(2)A6(5b)
    Affected: 6.0(2)A6(6)
    Affected: 6.0(2)A6(7)
    Affected: 6.0(2)A6(8)
    Affected: 6.0(2)A7(1)
    Affected: 6.0(2)A7(1a)
    Affected: 6.0(2)A7(2)
    Affected: 6.0(2)A7(2a)
    Affected: 6.0(2)A8(1)
    Affected: 6.0(2)A8(2)
    Affected: 6.0(2)A8(3)
    Affected: 6.0(2)A8(4)
    Affected: 6.0(2)A8(4a)
    Affected: 6.0(2)A8(5)
    Affected: 6.0(2)A8(6)
    Affected: 6.0(2)A8(7)
    Affected: 6.0(2)A8(7a)
    Affected: 6.0(2)A8(7b)
    Affected: 6.0(2)A8(8)
    Affected: 6.0(2)A8(9)
    Affected: 6.0(2)A8(10a)
    Affected: 6.0(2)A8(10)
    Affected: 6.0(2)A8(11)
    Affected: 6.0(2)A8(11a)
    Affected: 6.0(2)A8(11b)
    Affected: 6.0(2)U2(1)
    Affected: 6.0(2)U2(2)
    Affected: 6.0(2)U2(3)
    Affected: 6.0(2)U2(4)
    Affected: 6.0(2)U2(5)
    Affected: 6.0(2)U2(6)
    Affected: 6.0(2)U3(1)
    Affected: 6.0(2)U3(2)
    Affected: 6.0(2)U3(3)
    Affected: 6.0(2)U3(4)
    Affected: 6.0(2)U3(5)
    Affected: 6.0(2)U3(6)
    Affected: 6.0(2)U3(7)
    Affected: 6.0(2)U3(8)
    Affected: 6.0(2)U3(9)
    Affected: 6.0(2)U4(1)
    Affected: 6.0(2)U4(2)
    Affected: 6.0(2)U4(3)
    Affected: 6.0(2)U4(4)
    Affected: 6.0(2)U5(1)
    Affected: 6.0(2)U5(2)
    Affected: 6.0(2)U5(3)
    Affected: 6.0(2)U5(4)
    Affected: 6.0(2)U6(1)
    Affected: 6.0(2)U6(2)
    Affected: 6.0(2)U6(3)
    Affected: 6.0(2)U6(4)
    Affected: 6.0(2)U6(5)
    Affected: 6.0(2)U6(6)
    Affected: 6.0(2)U6(7)
    Affected: 6.0(2)U6(8)
    Affected: 6.0(2)U6(1a)
    Affected: 6.0(2)U6(2a)
    Affected: 6.0(2)U6(3a)
    Affected: 6.0(2)U6(4a)
    Affected: 6.0(2)U6(5a)
    Affected: 6.0(2)U6(5b)
    Affected: 6.0(2)U6(5c)
    Affected: 6.0(2)U6(9)
    Affected: 6.0(2)U6(10)
    Affected: 6.2(2)
    Affected: 6.2(2a)
    Affected: 6.2(6)
    Affected: 6.2(6b)
    Affected: 6.2(8)
    Affected: 6.2(8a)
    Affected: 6.2(8b)
    Affected: 6.2(10)
    Affected: 6.2(12)
    Affected: 6.2(18)
    Affected: 6.2(16)
    Affected: 6.2(14)
    Affected: 6.2(6a)
    Affected: 6.2(20)
    Affected: 6.2(1)
    Affected: 6.2(3)
    Affected: 6.2(5)
    Affected: 6.2(5a)
    Affected: 6.2(5b)
    Affected: 6.2(7)
    Affected: 6.2(9)
    Affected: 6.2(9a)
    Affected: 6.2(9b)
    Affected: 6.2(9c)
    Affected: 6.2(11)
    Affected: 6.2(11b)
    Affected: 6.2(11c)
    Affected: 6.2(11d)
    Affected: 6.2(11e)
    Affected: 6.2(13)
    Affected: 6.2(13a)
    Affected: 6.2(13b)
    Affected: 6.2(15)
    Affected: 6.2(17)
    Affected: 6.2(19)
    Affected: 6.2(21)
    Affected: 6.2(23)
    Affected: 6.2(20a)
    Affected: 6.2(25)
    Affected: 6.2(22)
    Affected: 6.2(27)
    Affected: 6.2(29)
    Affected: 6.2(24)
    Affected: 6.2(31)
    Affected: 6.2(24a)
    Affected: 6.2(33)
    Affected: 7.0(3)F1(1)
    Affected: 7.0(3)F2(1)
    Affected: 7.0(3)F2(2)
    Affected: 7.0(3)F3(1)
    Affected: 7.0(3)F3(2)
    Affected: 7.0(3)F3(3)
    Affected: 7.0(3)F3(3a)
    Affected: 7.0(3)F3(4)
    Affected: 7.0(3)F3(3c)
    Affected: 7.0(3)F3(5)
    Affected: 7.0(3)I2(2a)
    Affected: 7.0(3)I2(2b)
    Affected: 7.0(3)I2(2c)
    Affected: 7.0(3)I2(2d)
    Affected: 7.0(3)I2(2e)
    Affected: 7.0(3)I2(3)
    Affected: 7.0(3)I2(4)
    Affected: 7.0(3)I2(5)
    Affected: 7.0(3)I2(1)
    Affected: 7.0(3)I2(1a)
    Affected: 7.0(3)I2(2)
    Affected: 7.0(3)I3(1)
    Affected: 7.0(3)I4(1)
    Affected: 7.0(3)I4(2)
    Affected: 7.0(3)I4(3)
    Affected: 7.0(3)I4(4)
    Affected: 7.0(3)I4(5)
    Affected: 7.0(3)I4(6)
    Affected: 7.0(3)I4(7)
    Affected: 7.0(3)I4(8)
    Affected: 7.0(3)I4(8a)
    Affected: 7.0(3)I4(8b)
    Affected: 7.0(3)I4(8z)
    Affected: 7.0(3)I4(9)
    Affected: 7.0(3)I5(1)
    Affected: 7.0(3)I5(2)
    Affected: 7.0(3)I6(1)
    Affected: 7.0(3)I6(2)
    Affected: 7.0(3)I7(1)
    Affected: 7.0(3)I7(2)
    Affected: 7.0(3)I7(3)
    Affected: 7.0(3)I7(4)
    Affected: 7.0(3)I7(5)
    Affected: 7.0(3)I7(5a)
    Affected: 7.0(3)I7(6)
    Affected: 7.0(3)I7(7)
    Affected: 7.0(3)I7(8)
    Affected: 7.0(3)I7(9)
    Affected: 7.0(3)I7(10)
    Affected: 7.1(0)N1(1a)
    Affected: 7.1(0)N1(1b)
    Affected: 7.1(0)N1(1)
    Affected: 7.1(1)N1(1)
    Affected: 7.1(2)N1(1)
    Affected: 7.1(3)N1(1)
    Affected: 7.1(3)N1(2)
    Affected: 7.1(4)N1(1)
    Affected: 7.1(5)N1(1)
    Affected: 7.1(5)N1(1b)
    Affected: 7.2(0)D1(1)
    Affected: 7.2(1)D1(1)
    Affected: 7.2(2)D1(2)
    Affected: 7.2(2)D1(1)
    Affected: 7.3(0)D1(1)
    Affected: 7.3(0)DX(1)
    Affected: 7.3(0)DY(1)
    Affected: 7.3(0)N1(1)
    Affected: 7.3(1)D1(1)
    Affected: 7.3(1)DY(1)
    Affected: 7.3(1)N1(1)
    Affected: 7.3(2)D1(1)
    Affected: 7.3(2)D1(2)
    Affected: 7.3(2)D1(3)
    Affected: 7.3(2)D1(3a)
    Affected: 7.3(2)N1(1)
    Affected: 7.3(3)N1(1)
    Affected: 8.0(1)
    Affected: 8.1(1)
    Affected: 8.1(2)
    Affected: 8.1(2a)
    Affected: 8.1(1a)
    Affected: 8.1(1b)
    Affected: 8.2(1)
    Affected: 8.2(2)
    Affected: 8.2(3)
    Affected: 8.2(4)
    Affected: 8.2(5)
    Affected: 8.2(6)
    Affected: 8.2(7)
    Affected: 8.2(7a)
    Affected: 8.2(8)
    Affected: 8.2(9)
    Affected: 8.2(10)
    Affected: 8.3(1)
    Affected: 8.3(2)
    Affected: 9.2(1)
    Affected: 9.2(2)
    Affected: 9.2(2t)
    Affected: 9.2(3)
    Affected: 9.2(4)
    Affected: 9.2(2v)
    Affected: 9.2(1a)
    Affected: 7.3(4)N1(1)
    Affected: 7.3(3)D1(1)
    Affected: 7.3(4)D1(1)
    Affected: 7.3(5)N1(1)
    Affected: 8.4(1)
    Affected: 8.4(1a)
    Affected: 8.4(2)
    Affected: 8.4(2a)
    Affected: 8.4(3)
    Affected: 8.4(2b)
    Affected: 8.4(4)
    Affected: 8.4(2c)
    Affected: 8.4(4a)
    Affected: 8.4(5)
    Affected: 8.4(2d)
    Affected: 8.4(6)
    Affected: 8.4(2e)
    Affected: 8.4(6a)
    Affected: 8.4(7)
    Affected: 8.4(2f)
    Affected: 9.3(1)
    Affected: 9.3(2)
    Affected: 9.3(3)
    Affected: 9.3(4)
    Affected: 9.3(5)
    Affected: 9.3(6)
    Affected: 9.3(7)
    Affected: 9.3(7a)
    Affected: 9.3(8)
    Affected: 9.3(9)
    Affected: 9.3(10)
    Affected: 9.3(11)
    Affected: 9.3(2a)
    Affected: 7.3(6)N1(1)
    Affected: 7.3(5)D1(1)
    Affected: 7.3(7)N1(1)
    Affected: 7.3(7)N1(1a)
    Affected: 7.3(7)N1(1b)
    Affected: 7.3(6)D1(1)
    Affected: 7.3(8)N1(1)
    Affected: 7.3(7)D1(1)
    Affected: 7.3(9)N1(1)
    Affected: 10.1(1)
    Affected: 10.1(2)
    Affected: 10.1(2t)
    Affected: 8.5(1)
    Affected: 7.3(10)N1(1)
    Affected: 7.3(8)D1(1)
    Affected: 10.2(1)
    Affected: 10.2(1q)
    Affected: 10.2(2)
    Affected: 10.2(3)
    Affected: 10.2(3t)
    Affected: 10.2(4)
    Affected: 10.2(5)
    Affected: 10.2(3v)
    Affected: 7.3(9)D1(1)
    Affected: 7.3(11)N1(1)
    Affected: 7.3(12)N1(1)
    Affected: 10.3(1)
    Affected: 10.3(2)
    Affected: 7.3(13)N1(1)
    Create a notification for this product.
    Cisco Cisco Unified Computing System (Managed) Affected: 3.1(1e)
    Affected: 3.1(1g)
    Affected: 3.1(1h)
    Affected: 3.1(1k)
    Affected: 3.1(1l)
    Affected: 3.1(2b)
    Affected: 3.1(2c)
    Affected: 3.1(2e)
    Affected: 3.1(2f)
    Affected: 3.1(2g)
    Affected: 3.1(2h)
    Affected: 3.1(3a)
    Affected: 3.1(3b)
    Affected: 3.1(3c)
    Affected: 3.1(3d)
    Affected: 3.1(3e)
    Affected: 3.1(3f)
    Affected: 3.1(3h)
    Affected: 3.1(3j)
    Affected: 3.1(3k)
    Affected: 3.1(2d)
    Affected: 3.1(3l)
    Affected: 3.2(1d)
    Affected: 3.2(2b)
    Affected: 3.2(2c)
    Affected: 3.2(2d)
    Affected: 3.2(2e)
    Affected: 3.2(2f)
    Affected: 3.2(3a)
    Affected: 3.2(3b)
    Affected: 3.2(3d)
    Affected: 3.2(3e)
    Affected: 3.2(3g)
    Affected: 3.2(3h)
    Affected: 3.2(3i)
    Affected: 3.2(3j)
    Affected: 3.2(3k)
    Affected: 3.2(3l)
    Affected: 3.2(3n)
    Affected: 3.2(3o)
    Affected: 3.2(3p)
    Affected: 4.0(1a)
    Affected: 4.0(1b)
    Affected: 4.0(1c)
    Affected: 4.0(1d)
    Affected: 4.0(2a)
    Affected: 4.0(2b)
    Affected: 4.0(2d)
    Affected: 4.0(2e)
    Affected: 4.0(4b)
    Affected: 4.0(4c)
    Affected: 4.0(4d)
    Affected: 4.0(4e)
    Affected: 4.0(4f)
    Affected: 4.0(4g)
    Affected: 4.0(4h)
    Affected: 4.0(4a)
    Affected: 4.0(4i)
    Affected: 4.0(4k)
    Affected: 4.0(4l)
    Affected: 4.0(4m)
    Affected: 4.0(4n)
    Affected: 4.0(4o)
    Affected: 4.1(1a)
    Affected: 4.1(1b)
    Affected: 4.1(1c)
    Affected: 4.1(2a)
    Affected: 4.1(1d)
    Affected: 4.1(1e)
    Affected: 4.1(2b)
    Affected: 4.1(3a)
    Affected: 4.1(3b)
    Affected: 4.1(2c)
    Affected: 4.1(3d)
    Affected: 4.1(3c)
    Affected: 4.1(3e)
    Affected: 4.1(3f)
    Affected: 4.1(3h)
    Affected: 4.1(3i)
    Affected: 4.1(3j)
    Affected: 4.1(3k)
    Affected: 4.1(3l)
    Affected: 4.2(1d)
    Affected: 4.2(1c)
    Affected: 4.2(1f)
    Affected: 4.2(1i)
    Affected: 4.2(1k)
    Affected: 4.2(1l)
    Affected: 4.2(1m)
    Affected: 4.2(2a)
    Affected: 4.2(2c)
    Affected: 4.2(1n)
    Affected: 4.2(2d)
    Affected: 4.2(3b)
    Affected: 4.2(2e)
    Affected: 4.2(3d)
    Affected: 4.2(3e)
    Affected: 4.2(3g)
    Affected: 4.2(3h)
    Affected: 4.2(3i)
    Create a notification for this product.
    Cisco Cisco Firepower Extensible Operating System (FXOS) Affected: 2.2.1.63
    Affected: 2.2.1.66
    Affected: 2.2.1.70
    Affected: 2.2.2.17
    Affected: 2.2.2.19
    Affected: 2.2.2.24
    Affected: 2.2.2.26
    Affected: 2.2.2.28
    Affected: 2.2.2.54
    Affected: 2.2.2.60
    Affected: 2.2.2.71
    Affected: 2.2.2.83
    Affected: 2.2.2.86
    Affected: 2.2.2.91
    Affected: 2.2.2.97
    Affected: 2.2.2.101
    Affected: 2.2.2.137
    Affected: 2.2.2.148
    Affected: 2.2.2.149
    Affected: 2.3.1.99
    Affected: 2.3.1.93
    Affected: 2.3.1.91
    Affected: 2.3.1.88
    Affected: 2.3.1.75
    Affected: 2.3.1.73
    Affected: 2.3.1.66
    Affected: 2.3.1.58
    Affected: 2.3.1.130
    Affected: 2.3.1.111
    Affected: 2.3.1.110
    Affected: 2.3.1.144
    Affected: 2.3.1.145
    Affected: 2.3.1.155
    Affected: 2.3.1.166
    Affected: 2.3.1.173
    Affected: 2.3.1.179
    Affected: 2.3.1.180
    Affected: 2.3.1.56
    Affected: 2.3.1.190
    Affected: 2.3.1.215
    Affected: 2.3.1.216
    Affected: 2.3.1.219
    Affected: 2.3.1.230
    Affected: 2.6.1.131
    Affected: 2.6.1.157
    Affected: 2.6.1.166
    Affected: 2.6.1.169
    Affected: 2.6.1.174
    Affected: 2.6.1.187
    Affected: 2.6.1.192
    Affected: 2.6.1.204
    Affected: 2.6.1.214
    Affected: 2.6.1.224
    Affected: 2.6.1.229
    Affected: 2.6.1.230
    Affected: 2.6.1.238
    Affected: 2.6.1.239
    Affected: 2.6.1.254
    Affected: 2.6.1.259
    Affected: 2.6.1.264
    Affected: 2.6.1.265
    Affected: 2.8.1.105
    Affected: 2.8.1.125
    Affected: 2.8.1.139
    Affected: 2.8.1.143
    Affected: 2.8.1.152
    Affected: 2.8.1.162
    Affected: 2.8.1.164
    Affected: 2.8.1.172
    Affected: 2.8.1.186
    Affected: 2.8.1.190
    Affected: 2.8.1.198
    Affected: 2.9.1.131
    Affected: 2.9.1.135
    Affected: 2.9.1.143
    Affected: 2.9.1.150
    Affected: 2.9.1.158
    Affected: 2.10.1.159
    Affected: 2.10.1.166
    Affected: 2.10.1.179
    Affected: 2.10.1.207
    Affected: 2.10.1.234
    Affected: 2.10.1.245
    Affected: 2.10.1.271
    Affected: 2.11.1.154
    Affected: 2.11.1.182
    Affected: 2.11.1.200
    Affected: 2.11.1.205
    Affected: 2.12.0.31
    Affected: 2.12.0.432
    Affected: 2.12.0.450
    Affected: 2.12.0.467
    Affected: 2.12.0.498
    Affected: 2.12.1.29
    Affected: 2.12.1.48
    Affected: 2.13.0.198
    Affected: 2.13.0.212
    Affected: 2.13.0.243
    Affected: 2.14.1.131
    Create a notification for this product.
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 12.0(1m)
    Affected: 12.0(2g)
    Affected: 12.0(1n)
    Affected: 12.0(1o)
    Affected: 12.0(1p)
    Affected: 12.0(1q)
    Affected: 12.0(2h)
    Affected: 12.0(2l)
    Affected: 12.0(2m)
    Affected: 12.0(2n)
    Affected: 12.0(2o)
    Affected: 12.0(2f)
    Affected: 12.0(1r)
    Affected: 12.1(1h)
    Affected: 12.1(2e)
    Affected: 12.1(3g)
    Affected: 12.1(4a)
    Affected: 12.1(1i)
    Affected: 12.1(2g)
    Affected: 12.1(2k)
    Affected: 12.1(3h)
    Affected: 12.1(3j)
    Affected: 12.2(1n)
    Affected: 12.2(2e)
    Affected: 12.2(3j)
    Affected: 12.2(4f)
    Affected: 12.2(4p)
    Affected: 12.2(3p)
    Affected: 12.2(3r)
    Affected: 12.2(3s)
    Affected: 12.2(3t)
    Affected: 12.2(2f)
    Affected: 12.2(2i)
    Affected: 12.2(2j)
    Affected: 12.2(2k)
    Affected: 12.2(2q)
    Affected: 12.2(1o)
    Affected: 12.2(4q)
    Affected: 12.2(4r)
    Affected: 12.3(1e)
    Affected: 12.3(1f)
    Affected: 12.3(1i)
    Affected: 12.3(1l)
    Affected: 12.3(1o)
    Affected: 12.3(1p)
    Affected: 13.0(1k)
    Affected: 13.0(2h)
    Affected: 13.0(2k)
    Affected: 13.0(2n)
    Affected: 13.1(1i)
    Affected: 13.1(2m)
    Affected: 13.1(2o)
    Affected: 13.1(2p)
    Affected: 13.1(2q)
    Affected: 13.1(2s)
    Affected: 13.1(2t)
    Affected: 13.1(2u)
    Affected: 13.1(2v)
    Affected: 13.2(1l)
    Affected: 13.2(1m)
    Affected: 13.2(2l)
    Affected: 13.2(2o)
    Affected: 13.2(3i)
    Affected: 13.2(3n)
    Affected: 13.2(3o)
    Affected: 13.2(3r)
    Affected: 13.2(4d)
    Affected: 13.2(4e)
    Affected: 13.2(3s)
    Affected: 13.2(5d)
    Affected: 13.2(5e)
    Affected: 13.2(5f)
    Affected: 13.2(6i)
    Affected: 13.2(7f)
    Affected: 13.2(7k)
    Affected: 13.2(9b)
    Affected: 13.2(9f)
    Affected: 13.2(9h)
    Affected: 13.2(10e)
    Affected: 13.2(10f)
    Affected: 13.2(10g)
    Affected: 14.0(1h)
    Affected: 14.0(2c)
    Affected: 14.0(3d)
    Affected: 14.0(3c)
    Affected: 14.1(1i)
    Affected: 14.1(1j)
    Affected: 14.1(1k)
    Affected: 14.1(1l)
    Affected: 14.1(2g)
    Affected: 14.1(2m)
    Affected: 14.1(2o)
    Affected: 14.1(2s)
    Affected: 14.1(2u)
    Affected: 14.1(2w)
    Affected: 14.1(2x)
    Affected: 14.2(1i)
    Affected: 14.2(1j)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 14.2(2f)
    Affected: 14.2(2g)
    Affected: 14.2(3j)
    Affected: 14.2(3l)
    Affected: 14.2(3n)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 14.2(4k)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 14.2(6d)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 14.2(7l)
    Affected: 14.2(6o)
    Affected: 14.2(7q)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 14.2(7t)
    Affected: 14.2(7u)
    Affected: 14.2(7v)
    Affected: 14.2(7w)
    Affected: 15.0(1k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 15.0(2h)
    Affected: 15.1(1h)
    Affected: 15.1(2e)
    Affected: 15.1(3e)
    Affected: 15.1(4c)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3e)
    Affected: 15.2(3f)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 15.2(8d)
    Affected: 15.2(8e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 16.0(1g)
    Affected: 16.0(1j)
    Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.3(1d)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20294",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-02-29T18:49:22.444391Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:40:18.434Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:59:41.160Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-nxos-lldp-dos-z7PncTgt",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-lldp-dos-z7PncTgt"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0(2)A3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A3(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A3(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A4(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A6(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A7(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(7b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(10)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)A8(11b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U2(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U3(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U4(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U5(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(1)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(2)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(3)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(4)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(6)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(7)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(8)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(1a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(3a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(4a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(5c)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(9)"
                },
                {
                  "status": "affected",
                  "version": "6.0(2)U6(10)"
                },
                {
                  "status": "affected",
                  "version": "6.2(2)"
                },
                {
                  "status": "affected",
                  "version": "6.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(8b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(10)"
                },
                {
                  "status": "affected",
                  "version": "6.2(12)"
                },
                {
                  "status": "affected",
                  "version": "6.2(18)"
                },
                {
                  "status": "affected",
                  "version": "6.2(16)"
                },
                {
                  "status": "affected",
                  "version": "6.2(14)"
                },
                {
                  "status": "affected",
                  "version": "6.2(6a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(20)"
                },
                {
                  "status": "affected",
                  "version": "6.2(1)"
                },
                {
                  "status": "affected",
                  "version": "6.2(3)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(5b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(7)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(9c)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11c)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11d)"
                },
                {
                  "status": "affected",
                  "version": "6.2(11e)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(13b)"
                },
                {
                  "status": "affected",
                  "version": "6.2(15)"
                },
                {
                  "status": "affected",
                  "version": "6.2(17)"
                },
                {
                  "status": "affected",
                  "version": "6.2(19)"
                },
                {
                  "status": "affected",
                  "version": "6.2(21)"
                },
                {
                  "status": "affected",
                  "version": "6.2(23)"
                },
                {
                  "status": "affected",
                  "version": "6.2(20a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(25)"
                },
                {
                  "status": "affected",
                  "version": "6.2(22)"
                },
                {
                  "status": "affected",
                  "version": "6.2(27)"
                },
                {
                  "status": "affected",
                  "version": "6.2(29)"
                },
                {
                  "status": "affected",
                  "version": "6.2(24)"
                },
                {
                  "status": "affected",
                  "version": "6.2(31)"
                },
                {
                  "status": "affected",
                  "version": "6.2(24a)"
                },
                {
                  "status": "affected",
                  "version": "6.2(33)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(3c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)F3(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2c)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2d)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2e)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I2(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I3(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8b)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(8z)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I4(9)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I5(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I6(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(1)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(2)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(3)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(4)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(5a)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(6)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(7)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(8)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(9)"
                },
                {
                  "status": "affected",
                  "version": "7.0(3)I7(10)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.1(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(3)N1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.1(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.1(5)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.2(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.2(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.2(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.2(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DX(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(0)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)DY(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(1)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)D1(3a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(2)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.0(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2)"
                },
                {
                  "status": "affected",
                  "version": "8.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "8.2(1)"
                },
                {
                  "status": "affected",
                  "version": "8.2(2)"
                },
                {
                  "status": "affected",
                  "version": "8.2(3)"
                },
                {
                  "status": "affected",
                  "version": "8.2(4)"
                },
                {
                  "status": "affected",
                  "version": "8.2(5)"
                },
                {
                  "status": "affected",
                  "version": "8.2(6)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7)"
                },
                {
                  "status": "affected",
                  "version": "8.2(7a)"
                },
                {
                  "status": "affected",
                  "version": "8.2(8)"
                },
                {
                  "status": "affected",
                  "version": "8.2(9)"
                },
                {
                  "status": "affected",
                  "version": "8.2(10)"
                },
                {
                  "status": "affected",
                  "version": "8.3(1)"
                },
                {
                  "status": "affected",
                  "version": "8.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2t)"
                },
                {
                  "status": "affected",
                  "version": "9.2(3)"
                },
                {
                  "status": "affected",
                  "version": "9.2(4)"
                },
                {
                  "status": "affected",
                  "version": "9.2(2v)"
                },
                {
                  "status": "affected",
                  "version": "9.2(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(3)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(4)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1)"
                },
                {
                  "status": "affected",
                  "version": "8.4(1a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(3)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2b)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2c)"
                },
                {
                  "status": "affected",
                  "version": "8.4(4a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(5)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2d)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2e)"
                },
                {
                  "status": "affected",
                  "version": "8.4(6a)"
                },
                {
                  "status": "affected",
                  "version": "8.4(7)"
                },
                {
                  "status": "affected",
                  "version": "8.4(2f)"
                },
                {
                  "status": "affected",
                  "version": "9.3(1)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2)"
                },
                {
                  "status": "affected",
                  "version": "9.3(3)"
                },
                {
                  "status": "affected",
                  "version": "9.3(4)"
                },
                {
                  "status": "affected",
                  "version": "9.3(5)"
                },
                {
                  "status": "affected",
                  "version": "9.3(6)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7)"
                },
                {
                  "status": "affected",
                  "version": "9.3(7a)"
                },
                {
                  "status": "affected",
                  "version": "9.3(8)"
                },
                {
                  "status": "affected",
                  "version": "9.3(9)"
                },
                {
                  "status": "affected",
                  "version": "9.3(10)"
                },
                {
                  "status": "affected",
                  "version": "9.3(11)"
                },
                {
                  "status": "affected",
                  "version": "9.3(2a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(5)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1a)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)N1(1b)"
                },
                {
                  "status": "affected",
                  "version": "7.3(6)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(7)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2)"
                },
                {
                  "status": "affected",
                  "version": "10.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(10)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(8)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1)"
                },
                {
                  "status": "affected",
                  "version": "10.2(1q)"
                },
                {
                  "status": "affected",
                  "version": "10.2(2)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "10.2(4)"
                },
                {
                  "status": "affected",
                  "version": "10.2(5)"
                },
                {
                  "status": "affected",
                  "version": "10.2(3v)"
                },
                {
                  "status": "affected",
                  "version": "7.3(9)D1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(11)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "7.3(12)N1(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(1)"
                },
                {
                  "status": "affected",
                  "version": "10.3(2)"
                },
                {
                  "status": "affected",
                  "version": "7.3(13)N1(1)"
                }
              ]
            },
            {
              "product": "Cisco Unified Computing System (Managed)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1g)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "3.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2f)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "3.1(2d)"
                },
                {
                  "status": "affected",
                  "version": "3.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "3.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2b)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "3.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3a)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3k)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "3.2(3p)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4b)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4c)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4d)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4e)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4f)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4g)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4h)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4a)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4i)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4k)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4l)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4m)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4n)"
                },
                {
                  "status": "affected",
                  "version": "4.0(4o)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(1e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3a)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.1(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3c)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3f)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3i)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3k)"
                },
                {
                  "status": "affected",
                  "version": "4.1(3l)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1f)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1k)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2a)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2c)"
                },
                {
                  "status": "affected",
                  "version": "4.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3b)"
                },
                {
                  "status": "affected",
                  "version": "4.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3d)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3h)"
                },
                {
                  "status": "affected",
                  "version": "4.2(3i)"
                }
              ]
            },
            {
              "product": "Cisco Firepower Extensible Operating System (FXOS)",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.2.1.63"
                },
                {
                  "status": "affected",
                  "version": "2.2.1.66"
                },
                {
                  "status": "affected",
                  "version": "2.2.1.70"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.17"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.19"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.24"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.26"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.28"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.54"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.60"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.71"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.83"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.86"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.91"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.97"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.101"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.137"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.148"
                },
                {
                  "status": "affected",
                  "version": "2.2.2.149"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.99"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.93"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.91"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.88"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.75"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.73"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.66"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.58"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.130"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.111"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.110"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.144"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.145"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.155"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.173"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.179"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.180"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.56"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.190"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.215"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.216"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.219"
                },
                {
                  "status": "affected",
                  "version": "2.3.1.230"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.131"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.157"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.169"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.174"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.187"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.192"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.204"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.214"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.224"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.229"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.230"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.238"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.239"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.254"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.259"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.264"
                },
                {
                  "status": "affected",
                  "version": "2.6.1.265"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.105"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.125"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.139"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.143"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.152"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.162"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.164"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.172"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.186"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.190"
                },
                {
                  "status": "affected",
                  "version": "2.8.1.198"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.131"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.135"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.143"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.150"
                },
                {
                  "status": "affected",
                  "version": "2.9.1.158"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.159"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.166"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.179"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.207"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.234"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.245"
                },
                {
                  "status": "affected",
                  "version": "2.10.1.271"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.154"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.182"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.200"
                },
                {
                  "status": "affected",
                  "version": "2.11.1.205"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.432"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.450"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.467"
                },
                {
                  "status": "affected",
                  "version": "2.12.0.498"
                },
                {
                  "status": "affected",
                  "version": "2.12.1.29"
                },
                {
                  "status": "affected",
                  "version": "2.12.1.48"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.198"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.212"
                },
                {
                  "status": "affected",
                  "version": "2.13.0.243"
                },
                {
                  "status": "affected",
                  "version": "2.14.1.131"
                }
              ]
            },
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.0(1m)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2g)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1n)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1p)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1q)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2l)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2m)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2n)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2o)"
                },
                {
                  "status": "affected",
                  "version": "12.0(2f)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1r)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3g)"
                },
                {
                  "status": "affected",
                  "version": "12.1(4a)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "12.1(2k)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3h)"
                },
                {
                  "status": "affected",
                  "version": "12.1(3j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(1n)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3p)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "12.2(3t)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2i)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2j)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2k)"
                },
                {
                  "status": "affected",
                  "version": "12.2(2q)"
                },
                {
                  "status": "affected",
                  "version": "12.2(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4q)"
                },
                {
                  "status": "affected",
                  "version": "12.2(4r)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1e)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1f)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1i)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1l)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1o)"
                },
                {
                  "status": "affected",
                  "version": "12.3(1p)"
                },
                {
                  "status": "affected",
                  "version": "13.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2k)"
                },
                {
                  "status": "affected",
                  "version": "13.0(2n)"
                },
                {
                  "status": "affected",
                  "version": "13.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2p)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2q)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2t)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "13.1(2v)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(1m)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2l)"
                },
                {
                  "status": "affected",
                  "version": "13.2(2o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3o)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3r)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(3s)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(5f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(6i)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(7k)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9b)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(9h)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10e)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10f)"
                },
                {
                  "status": "affected",
                  "version": "13.2(10g)"
                },
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device and having an authenticated user retrieve LLDP statistics from the affected device through CLI show commands or Simple Network Management Protocol (SNMP) requests. A successful exploit could allow the attacker to cause the LLDP service to crash and stop running on the affected device. In certain situations, the LLDP crash may result in a reload of the affected device.\r\n\r Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol)."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-805",
                  "description": "Buffer Access with Incorrect Length Value",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-28T16:16:56.717Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-nxos-lldp-dos-z7PncTgt",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-lldp-dos-z7PncTgt"
            }
          ],
          "source": {
            "advisory": "cisco-sa-nxos-lldp-dos-z7PncTgt",
            "defects": [
              "CSCwf67412",
              "CSCwf67468",
              "CSCwi31871",
              "CSCwe86457",
              "CSCwf67408",
              "CSCwf67409",
              "CSCwf67411",
              "CSCwi29934"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20294",
        "datePublished": "2024-02-28T16:16:56.717Z",
        "dateReserved": "2023-11-08T15:08:07.629Z",
        "dateUpdated": "2024-08-01T21:59:41.160Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20185 (GCVE-0-2023-20185)

    Vulnerability from cvelistv5 – Published: 2023-07-12 13:50 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption. A successful exploit could allow the attacker to read or modify the traffic that is transmitted between the sites. Cisco has not released and will not release software updates that address this vulnerability.
    CWE
    • CWE-330 - Use of Insufficiently Random Values
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco NX-OS System Software in ACI Mode Affected: 14.0(1h)
    Affected: 14.0(2c)
    Affected: 14.0(3d)
    Affected: 14.0(3c)
    Affected: 14.1(1i)
    Affected: 14.1(1j)
    Affected: 14.1(1k)
    Affected: 14.1(1l)
    Affected: 14.1(2g)
    Affected: 14.1(2m)
    Affected: 14.1(2o)
    Affected: 14.1(2s)
    Affected: 14.1(2u)
    Affected: 14.1(2w)
    Affected: 14.1(2x)
    Affected: 14.2(1i)
    Affected: 14.2(1j)
    Affected: 14.2(1l)
    Affected: 14.2(2e)
    Affected: 14.2(2f)
    Affected: 14.2(2g)
    Affected: 14.2(3j)
    Affected: 14.2(3l)
    Affected: 14.2(3n)
    Affected: 14.2(3q)
    Affected: 14.2(4i)
    Affected: 14.2(4k)
    Affected: 14.2(4o)
    Affected: 14.2(4p)
    Affected: 14.2(5k)
    Affected: 14.2(5l)
    Affected: 14.2(5n)
    Affected: 14.2(6d)
    Affected: 14.2(6g)
    Affected: 14.2(6h)
    Affected: 14.2(6l)
    Affected: 14.2(7f)
    Affected: 14.2(7l)
    Affected: 14.2(6o)
    Affected: 14.2(7q)
    Affected: 14.2(7r)
    Affected: 14.2(7s)
    Affected: 14.2(7t)
    Affected: 14.2(7u)
    Affected: 14.2(7v)
    Affected: 14.2(7w)
    Affected: 15.0(1k)
    Affected: 15.0(1l)
    Affected: 15.0(2e)
    Affected: 15.0(2h)
    Affected: 15.1(1h)
    Affected: 15.1(2e)
    Affected: 15.1(3e)
    Affected: 15.1(4c)
    Affected: 15.2(1g)
    Affected: 15.2(2e)
    Affected: 15.2(2f)
    Affected: 15.2(2g)
    Affected: 15.2(2h)
    Affected: 15.2(3e)
    Affected: 15.2(3f)
    Affected: 15.2(3g)
    Affected: 15.2(4d)
    Affected: 15.2(4e)
    Affected: 15.2(5c)
    Affected: 15.2(5d)
    Affected: 15.2(5e)
    Affected: 15.2(4f)
    Affected: 15.2(6e)
    Affected: 15.2(6g)
    Affected: 15.2(7f)
    Affected: 15.2(7g)
    Affected: 15.2(8d)
    Affected: 15.2(8e)
    Affected: 15.2(8f)
    Affected: 15.2(8g)
    Affected: 15.2(8h)
    Affected: 16.0(1g)
    Affected: 16.0(1j)
    Affected: 16.0(2h)
    Affected: 16.0(2j)
    Affected: 16.0(3d)
    Affected: 16.0(3e)
    Affected: 15.3(1d)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.245Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14.0(1h)"
                },
                {
                  "status": "affected",
                  "version": "14.0(2c)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "14.0(3c)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1k)"
                },
                {
                  "status": "affected",
                  "version": "14.1(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2m)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2o)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2s)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2u)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2w)"
                },
                {
                  "status": "affected",
                  "version": "14.1(2x)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(1l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3j)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(3q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4i)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(4p)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5k)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(5n)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6d)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6h)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7l)"
                },
                {
                  "status": "affected",
                  "version": "14.2(6o)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7q)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7r)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7s)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7t)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7u)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7v)"
                },
                {
                  "status": "affected",
                  "version": "14.2(7w)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1k)"
                },
                {
                  "status": "affected",
                  "version": "15.0(1l)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(1h)"
                },
                {
                  "status": "affected",
                  "version": "15.1(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.1(4c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(1g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(2h)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(3g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5c)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(5e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(4f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(6g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(7g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8d)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8e)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8f)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8g)"
                },
                {
                  "status": "affected",
                  "version": "15.2(8h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1g)"
                },
                {
                  "status": "affected",
                  "version": "16.0(1j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2h)"
                },
                {
                  "status": "affected",
                  "version": "16.0(2j)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3d)"
                },
                {
                  "status": "affected",
                  "version": "16.0(3e)"
                },
                {
                  "status": "affected",
                  "version": "15.3(1d)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic.\r\n\r This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption. A successful exploit could allow the attacker to read or modify the traffic that is transmitted between the sites.\r\n\r Cisco has not released and will not release software updates that address this vulnerability."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-330",
                  "description": "Use of Insufficiently Random Values",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:51.916Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX"
            }
          ],
          "source": {
            "advisory": "cisco-sa-aci-cloudsec-enc-Vs5Wn2sX",
            "defects": [
              "CSCwf02544"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20185",
        "datePublished": "2023-07-12T13:50:35.866Z",
        "dateReserved": "2022-10-27T18:47:50.364Z",
        "dateUpdated": "2024-08-02T09:05:36.245Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20089 (GCVE-0-2023-20089)

    Vulnerability from cvelistv5 – Published: 2023-02-23 00:00 – Updated: 2024-10-25 16:03
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to cause a memory leak, which could result in an unexpected reload of the device. This vulnerability is due to incorrect error checking when parsing ingress LLDP packets. An attacker could exploit this vulnerability by sending a steady stream of crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause a memory leak, which could result in a denial of service (DoS) condition when the device unexpectedly reloads. Note: This vulnerability cannot be exploited by transit traffic through the device. The crafted LLDP packet must be targeted to a directly connected interface, and the attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). In addition, the attack surface for this vulnerability can be reduced by disabling LLDP on interfaces where it is not required.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Date Public
    2023-02-22 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T08:57:35.883Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20230222 Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-lldp-dos-ySCNZOpX"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20089",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-25T14:36:32.500030Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-25T16:03:47.738Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2023-02-22T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent attacker to cause a memory leak, which could result in an unexpected reload of the device. This vulnerability is due to incorrect error checking when parsing ingress LLDP packets. An attacker could exploit this vulnerability by sending a steady stream of crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause a memory leak, which could result in a denial of service (DoS) condition when the device unexpectedly reloads. Note: This vulnerability cannot be exploited by transit traffic through the device. The crafted LLDP packet must be targeted to a directly connected interface, and the attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). In addition, the attack surface for this vulnerability can be reduced by disabling LLDP on interfaces where it is not required."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-789",
                  "description": "CWE-789",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-23T00:00:00.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20230222 Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-lldp-dos-ySCNZOpX"
            }
          ],
          "source": {
            "advisory": "cisco-sa-aci-lldp-dos-ySCNZOpX",
            "defect": [
              [
                "CSCwc23246"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20089",
        "datePublished": "2023-02-23T00:00:00.000Z",
        "dateReserved": "2022-10-27T00:00:00.000Z",
        "dateUpdated": "2024-10-25T16:03:47.738Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1586 (GCVE-0-2021-1586)

    Vulnerability from cvelistv5 – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability
    Summary
    A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.396Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1586",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:54:28.309256Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:32.217Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-345",
                  "description": "CWE-345",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:59.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-tcp-dos-YXukt6gM",
            "defect": [
              [
                "CSCvw87983"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1586",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-345"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-tcp-dos-YXukt6gM",
              "defect": [
                [
                  "CSCvw87983"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1586",
        "datePublished": "2021-08-25T19:10:59.639Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:32.217Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1584 (GCVE-0-2021-1584)

    Vulnerability from cvelistv5 – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.142Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1584",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:43:19.684331Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:38.495Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:53.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
            }
          ],
          "source": {
            "advisory": "cisco-sa-naci-mdvul-vrKVgNU",
            "defect": [
              [
                "CSCvy05012"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1584",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "6.0",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-mdvul-vrKVgNU"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-naci-mdvul-vrKVgNU",
              "defect": [
                [
                  "CSCvy05012"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1584",
        "datePublished": "2021-08-25T19:10:53.827Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:38.495Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1583 (GCVE-0-2021-1583)

    Vulnerability from cvelistv5 – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:02
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability
    Summary
    A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.371Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1583",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:40:54.721873Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:02:44.390Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 4.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "CWE-284",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:48.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
            }
          ],
          "source": {
            "advisory": "cisco-sa-naci-afr-UtjfO2D7",
            "defect": [
              [
                "CSCvy05010"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1583",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper access control. An attacker with Administrator privileges could exploit this vulnerability by executing a specific vulnerable command on an affected device. A successful exploit could allow the attacker to read arbitrary files on the file system of the affected device."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "4.4",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-284"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-naci-afr-UtjfO2D7"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-naci-afr-UtjfO2D7",
              "defect": [
                [
                  "CSCvy05010"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1583",
        "datePublished": "2021-08-25T19:10:48.311Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:02:44.390Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1523 (GCVE-0-2021-1523)

    Vulnerability from cvelistv5 – Published: 2021-08-25 19:10 – Updated: 2024-11-07 22:03
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability
    Summary
    A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-08-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:11:17.669Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1523",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T21:54:29.770788Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T22:03:29.112Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-08-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-772",
                  "description": "CWE-772",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-25T19:10:10.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-queue-wedge-cLDDEfKF",
            "defect": [
              [
                "CSCvx14142"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-08-25T16:00:00",
              "ID": "CVE-2021-1523",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. This could result in one or more leaf switches being removed from the fabric. This vulnerability is due to mishandling of ingress TCP traffic to a specific port. An attacker could exploit this vulnerability by sending a stream of TCP packets to a specific port on a Switched Virtual Interface (SVI) configured on the device. A successful exploit could allow the attacker to cause a specific packet queue to queue network buffers but never process them, leading to an eventual queue wedge. This could cause control plane traffic to be dropped, resulting in a denial of service (DoS) condition where the leaf switches are unavailable. Note: This vulnerability requires a manual intervention to power-cycle the device to recover."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-772"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210825 Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-queue-wedge-cLDDEfKF"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-queue-wedge-cLDDEfKF",
              "defect": [
                [
                  "CSCvx14142"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1523",
        "datePublished": "2021-08-25T19:10:10.198Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-07T22:03:29.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1231 (GCVE-0-2021-1231)

    Vulnerability from cvelistv5 – Published: 2021-02-24 19:30 – Updated: 2024-11-08 23:38
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability
    Summary
    A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-02-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.339Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1231",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:48:27.423914Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:38:56.652Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-02-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 4.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "CWE-284",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-24T19:30:36.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
            }
          ],
          "source": {
            "advisory": "cisco-sa-apic-lldap-dos-WerV9CFj",
            "defect": [
              [
                "CSCvu84570"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-02-24T16:00:00",
              "ID": "CVE-2021-1231",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface. This vulnerability is due to incomplete validation of the source of a received LLDP packet. An attacker could exploit this vulnerability by sending a crafted LLDP packet on an SFP interface to an affected device. A successful exploit could allow the attacker to disable switching on the SFP interface, which could disrupt network traffic."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "4.7",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-284"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-lldap-dos-WerV9CFj"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-apic-lldap-dos-WerV9CFj",
              "defect": [
                [
                  "CSCvu84570"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1231",
        "datePublished": "2021-02-24T19:30:36.992Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:38:56.652Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-1230 (GCVE-0-2021-1230)

    Vulnerability from cvelistv5 – Published: 2021-02-24 19:30 – Updated: 2024-11-08 23:39
    VLAI
    Title
    Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability
    Summary
    A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2021-02-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:02:56.062Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1230",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-08T20:03:51.718735Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-08T23:39:28.825Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco NX-OS System Software in ACI Mode",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2021-02-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-233",
                  "description": "CWE-233",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-24T19:30:30.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
            }
          ],
          "source": {
            "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
            "defect": [
              [
                "CSCvr59494"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2021-02-24T16:00:00",
              "ID": "CVE-2021-1230",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco NX-OS System Software in ACI Mode",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "8.6",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-233"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
              "defect": [
                [
                  "CSCvr59494"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2021-1230",
        "datePublished": "2021-02-24T19:30:30.975Z",
        "dateReserved": "2020-11-13T00:00:00.000Z",
        "dateUpdated": "2024-11-08T23:39:28.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }