Vulnerability-Lookup

CVE-2026-20171 (GCVE-0-2026-20171)

Vulnerability from cvelistv5 – Published: 2026-05-20 16:06 – Updated: 2026-05-20 18:31

Title

Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability

Summary

A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.

Severity ?

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE

CWE-670 - Always-Incorrect Control Flow Implementation

Assigner

cisco

References

1 reference

URL	Tags
https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

1 product

Vendor	Product	Version
Cisco	Cisco NX-OS Software	Affected: 10.2(1) Affected: 10.2(1q) Affected: 10.2(2) Affected: 10.2(3) Affected: 10.2(3t) Affected: 10.2(2a) Affected: 10.3(1) Affected: 10.2(4) Affected: 10.3(2) Affected: 10.3(3) Affected: 10.2(5) Affected: 10.2(3v) Affected: 10.4(1) Affected: 10.3(99w) Affected: 10.2(6) Affected: 10.3(3w) Affected: 10.3(99x) Affected: 10.3(3o) Affected: 10.3(4) Affected: 10.3(3p) Affected: 10.3(4a) Affected: 10.4(2) Affected: 10.3(3q) Affected: 10.3(5) Affected: 10.2(7) Affected: 10.4(3) Affected: 10.3(3x) Affected: 10.3(4g) Affected: 10.5(1) Affected: 10.2(8) Affected: 10.3(3r) Affected: 10.3(6) Affected: 10.4(4) Affected: 10.3(4h) Affected: 10.5(2) Affected: 10.3(7) Affected: 10.4(5) Affected: 10.5(3) Affected: 10.2(9) Affected: 10.4(4g) Affected: 10.6(1) Affected: 10.5(3t) Affected: 10.3(8) Affected: 10.4(6) Affected: 10.5(3s) Affected: 10.5(3e) Affected: 10.5(3o) Affected: 10.6(1s) Affected: 10.5(3p)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-20171",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-20T18:31:37.215391Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-20T18:31:44.204Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Cisco NX-OS Software",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "10.2(1)"
            },
            {
              "status": "affected",
              "version": "10.2(1q)"
            },
            {
              "status": "affected",
              "version": "10.2(2)"
            },
            {
              "status": "affected",
              "version": "10.2(3)"
            },
            {
              "status": "affected",
              "version": "10.2(3t)"
            },
            {
              "status": "affected",
              "version": "10.2(2a)"
            },
            {
              "status": "affected",
              "version": "10.3(1)"
            },
            {
              "status": "affected",
              "version": "10.2(4)"
            },
            {
              "status": "affected",
              "version": "10.3(2)"
            },
            {
              "status": "affected",
              "version": "10.3(3)"
            },
            {
              "status": "affected",
              "version": "10.2(5)"
            },
            {
              "status": "affected",
              "version": "10.2(3v)"
            },
            {
              "status": "affected",
              "version": "10.4(1)"
            },
            {
              "status": "affected",
              "version": "10.3(99w)"
            },
            {
              "status": "affected",
              "version": "10.2(6)"
            },
            {
              "status": "affected",
              "version": "10.3(3w)"
            },
            {
              "status": "affected",
              "version": "10.3(99x)"
            },
            {
              "status": "affected",
              "version": "10.3(3o)"
            },
            {
              "status": "affected",
              "version": "10.3(4)"
            },
            {
              "status": "affected",
              "version": "10.3(3p)"
            },
            {
              "status": "affected",
              "version": "10.3(4a)"
            },
            {
              "status": "affected",
              "version": "10.4(2)"
            },
            {
              "status": "affected",
              "version": "10.3(3q)"
            },
            {
              "status": "affected",
              "version": "10.3(5)"
            },
            {
              "status": "affected",
              "version": "10.2(7)"
            },
            {
              "status": "affected",
              "version": "10.4(3)"
            },
            {
              "status": "affected",
              "version": "10.3(3x)"
            },
            {
              "status": "affected",
              "version": "10.3(4g)"
            },
            {
              "status": "affected",
              "version": "10.5(1)"
            },
            {
              "status": "affected",
              "version": "10.2(8)"
            },
            {
              "status": "affected",
              "version": "10.3(3r)"
            },
            {
              "status": "affected",
              "version": "10.3(6)"
            },
            {
              "status": "affected",
              "version": "10.4(4)"
            },
            {
              "status": "affected",
              "version": "10.3(4h)"
            },
            {
              "status": "affected",
              "version": "10.5(2)"
            },
            {
              "status": "affected",
              "version": "10.3(7)"
            },
            {
              "status": "affected",
              "version": "10.4(5)"
            },
            {
              "status": "affected",
              "version": "10.5(3)"
            },
            {
              "status": "affected",
              "version": "10.2(9)"
            },
            {
              "status": "affected",
              "version": "10.4(4g)"
            },
            {
              "status": "affected",
              "version": "10.6(1)"
            },
            {
              "status": "affected",
              "version": "10.5(3t)"
            },
            {
              "status": "affected",
              "version": "10.3(8)"
            },
            {
              "status": "affected",
              "version": "10.4(6)"
            },
            {
              "status": "affected",
              "version": "10.5(3s)"
            },
            {
              "status": "affected",
              "version": "10.5(3e)"
            },
            {
              "status": "affected",
              "version": "10.5(3o)"
            },
            {
              "status": "affected",
              "version": "10.6(1s)"
            },
            {
              "status": "affected",
              "version": "10.5(3p)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the Border Gateway Protocol (BGP)\u0026nbsp;enforce-first-as feature of\u0026nbsp;Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-670",
              "description": "Always-Incorrect Control Flow Implementation",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-20T16:06:38.711Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-bgp-iefab-3hb2pwtx",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx"
        }
      ],
      "source": {
        "advisory": "cisco-sa-bgp-iefab-3hb2pwtx",
        "defects": [
          "CSCwr23951"
        ],
        "discovery": "INTERNAL"
      },
      "title": "Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2026-20171",
    "datePublished": "2026-05-20T16:06:38.711Z",
    "dateReserved": "2025-10-08T11:59:15.391Z",
    "dateUpdated": "2026-05-20T18:31:44.204Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-20171",
      "date": "2026-05-25",
      "epss": "0.0003",
      "percentile": "0.0894"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-20171\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2026-05-20T17:16:19.813\",\"lastModified\":\"2026-05-20T17:30:40.450\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the Border Gateway Protocol (BGP)\u0026nbsp;enforce-first-as feature of\u0026nbsp;Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\\r\\n\\r\\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":6.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":4.0}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-670\"}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx\",\"source\":\"psirt@cisco.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-20171\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-20T18:31:37.215391Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-20T18:31:40.918Z\"}}], \"cna\": {\"title\": \"Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability\", \"source\": {\"defects\": [\"CSCwr23951\"], \"advisory\": \"cisco-sa-bgp-iefab-3hb2pwtx\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco NX-OS Software\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.2(1)\"}, {\"status\": \"affected\", \"version\": \"10.2(1q)\"}, {\"status\": \"affected\", \"version\": \"10.2(2)\"}, {\"status\": \"affected\", \"version\": \"10.2(3)\"}, {\"status\": \"affected\", \"version\": \"10.2(3t)\"}, {\"status\": \"affected\", \"version\": \"10.2(2a)\"}, {\"status\": \"affected\", \"version\": \"10.3(1)\"}, {\"status\": \"affected\", \"version\": \"10.2(4)\"}, {\"status\": \"affected\", \"version\": \"10.3(2)\"}, {\"status\": \"affected\", \"version\": \"10.3(3)\"}, {\"status\": \"affected\", \"version\": \"10.2(5)\"}, {\"status\": \"affected\", \"version\": \"10.2(3v)\"}, {\"status\": \"affected\", \"version\": \"10.4(1)\"}, {\"status\": \"affected\", \"version\": \"10.3(99w)\"}, {\"status\": \"affected\", \"version\": \"10.2(6)\"}, {\"status\": \"affected\", \"version\": \"10.3(3w)\"}, {\"status\": \"affected\", \"version\": \"10.3(99x)\"}, {\"status\": \"affected\", \"version\": \"10.3(3o)\"}, {\"status\": \"affected\", \"version\": \"10.3(4)\"}, {\"status\": \"affected\", \"version\": \"10.3(3p)\"}, {\"status\": \"affected\", \"version\": \"10.3(4a)\"}, {\"status\": \"affected\", \"version\": \"10.4(2)\"}, {\"status\": \"affected\", \"version\": \"10.3(3q)\"}, {\"status\": \"affected\", \"version\": \"10.3(5)\"}, {\"status\": \"affected\", \"version\": \"10.2(7)\"}, {\"status\": \"affected\", \"version\": \"10.4(3)\"}, {\"status\": \"affected\", \"version\": \"10.3(3x)\"}, {\"status\": \"affected\", \"version\": \"10.3(4g)\"}, {\"status\": \"affected\", \"version\": \"10.5(1)\"}, {\"status\": \"affected\", \"version\": \"10.2(8)\"}, {\"status\": \"affected\", \"version\": \"10.3(3r)\"}, {\"status\": \"affected\", \"version\": \"10.3(6)\"}, {\"status\": \"affected\", \"version\": \"10.4(4)\"}, {\"status\": \"affected\", \"version\": \"10.3(4h)\"}, {\"status\": \"affected\", \"version\": \"10.5(2)\"}, {\"status\": \"affected\", \"version\": \"10.3(7)\"}, {\"status\": \"affected\", \"version\": \"10.4(5)\"}, {\"status\": \"affected\", \"version\": \"10.5(3)\"}, {\"status\": \"affected\", \"version\": \"10.2(9)\"}, {\"status\": \"affected\", \"version\": \"10.4(4g)\"}, {\"status\": \"affected\", \"version\": \"10.6(1)\"}, {\"status\": \"affected\", \"version\": \"10.5(3t)\"}, {\"status\": \"affected\", \"version\": \"10.3(8)\"}, {\"status\": \"affected\", \"version\": \"10.4(6)\"}, {\"status\": \"affected\", \"version\": \"10.5(3s)\"}, {\"status\": \"affected\", \"version\": \"10.5(3e)\"}, {\"status\": \"affected\", \"version\": \"10.5(3o)\"}, {\"status\": \"affected\", \"version\": \"10.6(1s)\"}, {\"status\": \"affected\", \"version\": \"10.5(3p)\"}], \"defaultStatus\": \"unknown\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx\", \"name\": \"cisco-sa-bgp-iefab-3hb2pwtx\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in the Border Gateway Protocol (BGP)\u0026nbsp;enforce-first-as feature of\u0026nbsp;Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\\r\\n\\r\\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"cwe\", \"cweId\": \"CWE-670\", \"description\": \"Always-Incorrect Control Flow Implementation\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2026-05-20T16:06:38.711Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-20171\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-20T18:31:44.204Z\", \"dateReserved\": \"2025-10-08T11:59:15.391Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2026-05-20T16:06:38.711Z\", \"assignerShortName\": \"cisco\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

CISCO-SA-BGP-IEFAB-3HB2PWTX

Vulnerability from csaf_cisco - Published: 2026-05-20 16:00 - Updated: 2026-05-20 16:00

Summary

Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability

Notes

Summary: A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

Vulnerable Products: At the time of publication, this vulnerability affected Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode if they had the BGP routing protocol configured. Note: The affected enforce-first-as feature is enabled by default when BGP is configured and will not be visible in the running configuration of the device. For information about disabling this feature, see the Workarounds ["#workarounds"] section of this advisory. For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory. Determine the Device Configuration To determine whether the device has established BGP peering sessions, use the show bgp sessions command. If the router is configured for BGP, this command will return output that shows total and established peers, as shown in the following example: n9k# show bgp sessions Total peers 1, established peers 1 ASN 64550 VRF default, local ASN 64550 peers 1, established peers 1, local router-id 172.16.240.122 State: I-Idle, A-Active, O-Open, E-Established, C-Closing, S-Shutdown Neighbor ASN Flaps LastUpDn|LastRead|LastWrit St Port(L/R) Notif(S/R) 10.0.0.2 64512 0 4d03h |00:00:36|00:00:32 E 24058/179 0/0

Products Confirmed Not Vulnerable: Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities. Cisco has confirmed that these vulnerabilities do not affect the following Cisco products: Firepower 1000 Series Firepower 2100 Series Firepower 4100 Series Firepower 9300 Security Appliances MDS 9000 Series Multilayer Switches Nexus 5500 Platform Switches Nexus 5600 Platform Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Fabric Switches in ACI mode Secure Firewall 200 Series Secure Firewall 1200 Series Secure Firewall 3100 Series Secure Firewall 4200 Series Secure Firewall 6100 Series UCS 6300 Series Fabric Interconnects UCS 6400 Series Fabric Interconnects UCS 6500 Series Fabric Interconnects UCS 6600 Series Fabric Interconnects UCS X-Series Direct Fabric Interconnect 9108 100G

Indicators of Compromise: The indicator of compromise for this vulnerability is BGP neighbor flapping and malformed as path error messages in the log. Make sure that BGP neighbor changes are logged through the log-neighbor-changes configuration command, as shown in the following example: router bgp 64550 log-neighbor-changes Use the show logging last 10 command to display the last 10 log messages, as shown in the following example: n9k# show logging last 10 2026 May 15 13:29:29 PE2 %BGP-5-ADJCHANGE: bgp-2 [64512] (default) neighbor 10.0.0.2 Up 2026 May 15 13:29:30 PE2 %BGP-5-ADJCHANGE: bgp-2 [64512] (default) neighbor 10.0.0.2 Down - sent: malformed as path error

Workarounds: There are two workarounds that address this vulnerability. If an affected device does not need to use the ATTR_SET attribute to carry customer edge (CE) attributes across the ISP network, RFC 6368 states that it is an optional attribute that can be discarded. To discard the attribute and add or update the prefixes that are contained in the update to the routing table, add the path-attribute discard 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example: router bgp 64550 neighbor 10.0.0.2 path-attribute discard 128 in Alternatively, to discard the attribute and remove the prefixes that are contained in the update from the routing table, add the path-attribute treat-as-withdraw 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example: router bgp 64550 neighbor 10.0.0.2 path-attribute treat-as-withdraw 128 in There is also a mitigation. To disable the enforce-first-as global BGP feature on the provider edge (PE) that is receiving the ATTR_SET attribute, configure the no enforce-first-as command, as shown in the following example. This will disable first Autonomous System Number (ASN) checking. router bgp 64550 no enforce-first-as Note: Changing default BGP behavior on Cisco NX-OS Software by disabling this feature will prevent BGP from bringing down a peer adjacency if it receives an unexpected first Autonomous System (AS) in AS_PATH, weakening a security mechanism. To apply this policy change, BGP peers will need to be reset. While these workarounds and this mitigation have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.

Fixed Software: Cisco considers any workarounds and mitigations (if applicable) to be temporary solutions until an upgrade to a fixed software release is available. To fully remediate this vulnerability and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory. Cisco NX-OS Software To help customers determine their exposure to vulnerabilities in Cisco NX-OS Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories that the Software Checker identifies (“Combined First Fixed”). To use the tool, go to the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps: Choose which advisories the tool will search—only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"], or all advisories. Choose the appropriate software. Choose the appropriate platform. Enter a release number—for example, 10.4(4) for Cisco Nexus 3000 Series Switches or 16.0(8e) for Cisco NX-OS Software in ACI mode. Click Check. Only this advisory All Critical and High advisories All advisories Cisco NX-OS Software Cisco NX-OS Software in ACI Mode Any Platform MDS 9000 Series Multilayer Switches Nexus 3000 Series Switches Nexus 5000 Series Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches Additional Resources For help determining the best Cisco NX-OS Software release for a Cisco Nexus Switch, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance. Cisco MDS Series Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html"] Cisco Nexus 3000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html"] Cisco Nexus 5500 Platform Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html"] Cisco Nexus 5600 Platform Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html"] Cisco Nexus 6000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html"] Cisco Nexus 7000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html"] Cisco Nexus 9000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html"] Cisco Nexus 9000 Series ACI-Mode Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html"] To determine the best release for Cisco UCS Software, see the Recommended Releases documents in the release notes for the device.

Vulnerability Policy: To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Exploitation and Public Announcements: The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

Source: This vulnerability was found during the resolution of a Cisco Technical Assistance Center (TAC) support case.

Legal Disclaimer: SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT The Cisco Support and Downloads ["https://www.cisco.com/c/en/us/support/index.html"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid. Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade. When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories ["https://www.cisco.com/go/psirt"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"] or their contracted maintenance providers. LEGAL DISCLAIMER DETAILS CISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. Copies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories ["https://www.cisco.com/go/psirt"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"] for more information.

CVE-2026-20171

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Affected products

Known affected 77 products

Product	Version	Remediation
Unresolved product id: CSAFPID-284574:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-284574:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-284892:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-286098:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-286098:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-286833:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-286833:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-287105:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-289309:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-289309:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-290556:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-290620:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-290620:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-292658:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-292658:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-294841:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-294841:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-295511:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-295511:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-299969:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300117:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300515:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300515:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300516:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300517:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300741:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300748:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300748:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300941:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300941:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-300942:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301024:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301024:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301106:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301115:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301115:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301277:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301277:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301289:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301568:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301568:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301718:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301718:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-301720:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302635:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302635:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302643:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302754:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302754:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302817:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302817:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-302884:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303016:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303016:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303064:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303064:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303309:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303309:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303349:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303349:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303360:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303360:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-303719:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-304106:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-304106:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-305294:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306452:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306452:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306458:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306581:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306581:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306584:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306596:265091	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306596:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306630:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306631:265096	—	Vendor Fix fix Workaround
Unresolved product id: CSAFPID-306796:265096	—	Vendor Fix fix Workaround

References

17 references

URL	Category
https://sec.cloudapps.cisco.com/security/center/c…	self
https://sec.cloudapps.cisco.com/security/center/r…	external
https://sec.cloudapps.cisco.com/security/center/s…	external
https://sec.cloudapps.cisco.com/security/center/r…	external
https://www.cisco.com/c/en/us/td/docs/switches/da…	external
http://www.cisco.com/c/en/us/td/docs/switches/dat…	external
http://www.cisco.com/c/en/us/td/docs/switches/dat…	external
https://www.cisco.com/c/en/us/td/docs/switches/da…	external
http://www.cisco.com/c/en/us/td/docs/switches/dat…	external
http://www.cisco.com/c/en/us/td/docs/switches/dat…	external
http://www.cisco.com/c/en/us/td/docs/switches/dat…	external
https://www.cisco.com/c/en/us/td/docs/switches/da…	external
http://www.cisco.com/web/about/security/psirt/sec…	external
https://www.cisco.com/c/en/us/support/index.html	external
https://www.cisco.com/c/en/us/support/web/tsd-cis…	external
https://sec.cloudapps.cisco.com/security/center/r…	external
https://www.cisco.com/go/psirt	external

Acknowledgments

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "summary": "This vulnerability was found during the resolution of a Cisco Technical Assistance Center (TAC) support case."
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "notes": [
      {
        "category": "summary",
        "text": "A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.\r\n\r\nCisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.\r\n\r\n",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "At the time of publication, this vulnerability affected Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode if they had the BGP routing protocol configured.\r\n\r\nNote: The affected enforce-first-as feature is enabled by default when BGP is configured and will not be visible in the running configuration of the device. For information about disabling this feature, see the Workarounds [\"#workarounds\"] section of this advisory.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n\r\nDetermine the Device Configuration\r\n\r\nTo determine whether the device has established BGP peering sessions, use the show bgp sessions command. If the router is configured for BGP, this command will return output that shows total and established peers, as shown in the following example:\r\n\r\n\r\nn9k# show bgp sessions\r\nTotal peers 1, established peers 1\r\nASN 64550\r\nVRF default, local ASN 64550\r\npeers 1, established peers 1, local router-id 172.16.240.122\r\nState: I-Idle, A-Active, O-Open, E-Established, C-Closing, S-Shutdown\r\n\r\nNeighbor        ASN    Flaps LastUpDn|LastRead|LastWrit St Port(L/R)  Notif(S/R)\r\n10.0.0.2      64512 0     4d03h   |00:00:36|00:00:32 E   24058/179        0/0",
        "title": "Vulnerable Products"
      },
      {
        "category": "general",
        "text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by these vulnerabilities.\r\n\r\nCisco has confirmed that these vulnerabilities do not affect the following Cisco products:\r\n\r\nFirepower 1000 Series\r\nFirepower 2100 Series\r\nFirepower 4100 Series\r\nFirepower 9300 Security Appliances\r\nMDS 9000 Series Multilayer Switches\r\nNexus 5500 Platform Switches\r\nNexus 5600 Platform Switches\r\nNexus 6000 Series Switches\r\nNexus 7000 Series Switches\r\nNexus 9000 Series Fabric Switches in ACI mode\r\nSecure Firewall 200 Series\r\nSecure Firewall 1200 Series\r\nSecure Firewall 3100 Series\r\nSecure Firewall 4200 Series\r\nSecure Firewall 6100 Series\r\nUCS 6300 Series Fabric Interconnects\r\nUCS 6400 Series Fabric Interconnects\r\nUCS 6500 Series Fabric Interconnects\r\nUCS 6600 Series Fabric Interconnects\r\nUCS X-Series Direct Fabric Interconnect 9108 100G",
        "title": "Products Confirmed Not Vulnerable"
      },
      {
        "category": "general",
        "text": "The indicator of compromise for this vulnerability is BGP neighbor flapping and malformed as path error messages in the log. Make sure that BGP neighbor changes are logged through the log-neighbor-changes configuration command, as shown in the following example:\r\n\r\n\r\nrouter bgp 64550\r\n  log-neighbor-changes\r\n\r\nUse the show logging last 10 command to display the last 10 log messages, as shown in the following example:\r\n\r\n\r\nn9k# show logging last 10\r\n2026 May 15 13:29:29 PE2 %BGP-5-ADJCHANGE:  bgp-2 [64512] (default) neighbor 10.0.0.2 Up\r\n2026 May 15 13:29:30 PE2 %BGP-5-ADJCHANGE:  bgp-2 [64512] (default) neighbor 10.0.0.2 Down - sent:  malformed as path error",
        "title": "Indicators of Compromise"
      },
      {
        "category": "general",
        "text": "There are two workarounds that address this vulnerability. If an affected device does not need to use the ATTR_SET attribute to carry customer edge (CE) attributes across the ISP network, RFC 6368 states that it is an optional attribute that can be discarded.\r\n\r\nTo discard the attribute and add or update the prefixes that are contained in the update to the routing table, add the path-attribute discard 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example:\r\n\r\n\r\nrouter bgp 64550\r\nneighbor 10.0.0.2\r\npath-attribute discard 128 in\r\n\r\nAlternatively, to discard the attribute and remove the prefixes that are contained in the update from the routing table, add the path-attribute treat-as-withdraw 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example:\r\n\r\n\r\nrouter bgp 64550\r\nneighbor 10.0.0.2\r\n   path-attribute treat-as-withdraw 128 in\r\n\r\nThere is also a mitigation. To disable the enforce-first-as global BGP feature on the provider edge (PE) that is receiving the ATTR_SET attribute, configure the no enforce-first-as command, as shown in the following example. This will disable first Autonomous System Number (ASN) checking.\r\n\r\n\r\nrouter bgp 64550\r\nno enforce-first-as\r\n\r\nNote: Changing default BGP behavior on Cisco NX-OS Software by disabling this feature will prevent BGP from bringing down a peer adjacency if it receives an unexpected first Autonomous System (AS) in AS_PATH, weakening a security mechanism. To apply this policy change, BGP peers will need to be reset.\r\n\r\nWhile these workarounds and this mitigation have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
        "title": "Workarounds"
      },
      {
        "category": "general",
        "text": "Cisco considers any workarounds and mitigations (if applicable) to be temporary solutions until an upgrade to a fixed software release is available. To fully remediate this vulnerability and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory.\r\n        Cisco NX-OS Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco NX-OS Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories that the Software Checker identifies (\u201cCombined First Fixed\u201d).\r\n\r\nTo use the tool, go to the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps:\r\n\r\nChoose which advisories the tool will search\u2014only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr\"], or all advisories.\r\nChoose the appropriate software.\r\nChoose the appropriate platform.\r\nEnter a release number\u2014for example, 10.4(4) for Cisco Nexus 3000 Series Switches or 16.0(8e) for Cisco NX-OS Software in ACI mode.\r\nClick Check.\r\n\r\n       Only this advisory  All Critical and High advisories  All advisories    Cisco NX-OS Software  Cisco NX-OS Software in ACI Mode    Any Platform  MDS 9000 Series Multilayer Switches  Nexus 3000 Series Switches  Nexus 5000 Series Switches  Nexus 6000 Series Switches  Nexus 7000 Series Switches  Nexus 9000 Series Switches\r\n\r\n\r\n\r\n\r\n     Additional Resources\r\nFor help determining the best Cisco NX-OS Software release for a Cisco Nexus Switch, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance.\r\n\r\nCisco MDS Series Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html\"]\r\nCisco Nexus 3000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html\"]\r\nCisco Nexus 5500 Platform Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html\"]\r\nCisco Nexus 5600 Platform Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html\"]\r\nCisco Nexus 6000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html\"]\r\nCisco Nexus 7000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html\"]\r\nCisco Nexus 9000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html\"]\r\nCisco Nexus 9000 Series ACI-Mode Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html\"]\r\n\r\nTo determine the best release for Cisco UCS Software, see the Recommended Releases documents in the release notes for the device.",
        "title": "Fixed Software"
      },
      {
        "category": "general",
        "text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
        "title": "Vulnerability Policy"
      },
      {
        "category": "general",
        "text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
        "title": "Exploitation and Public Announcements"
      },
      {
        "category": "general",
        "text": "This vulnerability was found during the resolution of a Cisco Technical Assistance Center (TAC) support case.",
        "title": "Source"
      },
      {
        "category": "legal_disclaimer",
        "text": "SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT\r\n\r\nThe Cisco Support and Downloads [\"https://www.cisco.com/c/en/us/support/index.html\"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid.\r\n\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories [\"https://www.cisco.com/go/psirt\"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"] or their contracted maintenance providers.\r\nLEGAL DISCLAIMER DETAILS\r\n\r\nCISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nCopies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories [\"https://www.cisco.com/go/psirt\"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"] for more information.",
        "title": "Legal Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@cisco.com",
      "issuing_authority": "Cisco PSIRT",
      "name": "Cisco",
      "namespace": "https://wwww.cisco.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx"
      },
      {
        "category": "external",
        "summary": "Cisco Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Cisco Software Checker",
        "url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
      },
      {
        "category": "external",
        "summary": "Security Impact Rating (SIR)",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"
      },
      {
        "category": "external",
        "summary": "Cisco MDS Series Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 3000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 5500 Platform Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 5600 Platform Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 6000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 7000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 9000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 9000 Series ACI-Mode Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html"
      },
      {
        "category": "external",
        "summary": "Security Vulnerability Policy",
        "url": "http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Cisco Support and Downloads",
        "url": "https://www.cisco.com/c/en/us/support/index.html"
      },
      {
        "category": "external",
        "summary": "Cisco Technical Assistance Center (TAC)",
        "url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
      },
      {
        "category": "external",
        "summary": "considering software upgrades",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
      },
      {
        "category": "external",
        "summary": "the advisories",
        "url": "https://www.cisco.com/go/psirt"
      }
    ],
    "title": "Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability",
    "tracking": {
      "current_release_date": "2026-05-20T16:00:00+00:00",
      "generator": {
        "date": "2026-05-20T15:56:36+00:00",
        "engine": {
          "name": "TVCE"
        }
      },
      "id": "cisco-sa-bgp-iefab-3hb2pwtx",
      "initial_release_date": "2026-05-20T16:00:00+00:00",
      "revision_history": [
        {
          "date": "2026-05-20T15:56:26+00:00",
          "number": "1.0.0",
          "summary": "Initial public release."
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "10.2(1)",
                    "product": {
                      "name": "10.2(1)",
                      "product_id": "CSAFPID-284574"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(1q)",
                    "product": {
                      "name": "10.2(1q)",
                      "product_id": "CSAFPID-284892"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(2)",
                    "product": {
                      "name": "10.2(2)",
                      "product_id": "CSAFPID-286098"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(3)",
                    "product": {
                      "name": "10.2(3)",
                      "product_id": "CSAFPID-286833"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(2a)",
                    "product": {
                      "name": "10.2(2a)",
                      "product_id": "CSAFPID-287105"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(3t)",
                    "product": {
                      "name": "10.2(3t)",
                      "product_id": "CSAFPID-290556"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(4)",
                    "product": {
                      "name": "10.2(4)",
                      "product_id": "CSAFPID-290620"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(5)",
                    "product": {
                      "name": "10.2(5)",
                      "product_id": "CSAFPID-294841"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(3v)",
                    "product": {
                      "name": "10.2(3v)",
                      "product_id": "CSAFPID-300117"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(6)",
                    "product": {
                      "name": "10.2(6)",
                      "product_id": "CSAFPID-300748"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(7)",
                    "product": {
                      "name": "10.2(7)",
                      "product_id": "CSAFPID-301277"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(8)",
                    "product": {
                      "name": "10.2(8)",
                      "product_id": "CSAFPID-302635"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.2(9)",
                    "product": {
                      "name": "10.2(9)",
                      "product_id": "CSAFPID-303349"
                    }
                  }
                ],
                "category": "product_version",
                "name": "10.2"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "10.3(1)",
                    "product": {
                      "name": "10.3(1)",
                      "product_id": "CSAFPID-289309"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(2)",
                    "product": {
                      "name": "10.3(2)",
                      "product_id": "CSAFPID-292658"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3)",
                    "product": {
                      "name": "10.3(3)",
                      "product_id": "CSAFPID-295511"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(99w)",
                    "product": {
                      "name": "10.3(99w)",
                      "product_id": "CSAFPID-299969"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3w)",
                    "product": {
                      "name": "10.3(3w)",
                      "product_id": "CSAFPID-300516"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(99x)",
                    "product": {
                      "name": "10.3(99x)",
                      "product_id": "CSAFPID-300517"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3o)",
                    "product": {
                      "name": "10.3(3o)",
                      "product_id": "CSAFPID-300741"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(4a)",
                    "product": {
                      "name": "10.3(4a)",
                      "product_id": "CSAFPID-300941"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3p)",
                    "product": {
                      "name": "10.3(3p)",
                      "product_id": "CSAFPID-300942"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(4)",
                    "product": {
                      "name": "10.3(4)",
                      "product_id": "CSAFPID-301024"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3q)",
                    "product": {
                      "name": "10.3(3q)",
                      "product_id": "CSAFPID-301106"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3x)",
                    "product": {
                      "name": "10.3(3x)",
                      "product_id": "CSAFPID-301289"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(5)",
                    "product": {
                      "name": "10.3(5)",
                      "product_id": "CSAFPID-301718"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(4g)",
                    "product": {
                      "name": "10.3(4g)",
                      "product_id": "CSAFPID-301720"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(3r)",
                    "product": {
                      "name": "10.3(3r)",
                      "product_id": "CSAFPID-302643"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(6)",
                    "product": {
                      "name": "10.3(6)",
                      "product_id": "CSAFPID-302817"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(4h)",
                    "product": {
                      "name": "10.3(4h)",
                      "product_id": "CSAFPID-302884"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(7)",
                    "product": {
                      "name": "10.3(7)",
                      "product_id": "CSAFPID-303309"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.3(8)",
                    "product": {
                      "name": "10.3(8)",
                      "product_id": "CSAFPID-306452"
                    }
                  }
                ],
                "category": "product_version",
                "name": "10.3"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "10.4(1)",
                    "product": {
                      "name": "10.4(1)",
                      "product_id": "CSAFPID-300515"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(2)",
                    "product": {
                      "name": "10.4(2)",
                      "product_id": "CSAFPID-301115"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(3)",
                    "product": {
                      "name": "10.4(3)",
                      "product_id": "CSAFPID-301568"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(4)",
                    "product": {
                      "name": "10.4(4)",
                      "product_id": "CSAFPID-303016"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(5)",
                    "product": {
                      "name": "10.4(5)",
                      "product_id": "CSAFPID-303360"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(4g)",
                    "product": {
                      "name": "10.4(4g)",
                      "product_id": "CSAFPID-303719"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.4(6)",
                    "product": {
                      "name": "10.4(6)",
                      "product_id": "CSAFPID-306596"
                    }
                  }
                ],
                "category": "product_version",
                "name": "10.4"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "10.5(1)",
                    "product": {
                      "name": "10.5(1)",
                      "product_id": "CSAFPID-302754"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(2)",
                    "product": {
                      "name": "10.5(2)",
                      "product_id": "CSAFPID-303064"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3)",
                    "product": {
                      "name": "10.5(3)",
                      "product_id": "CSAFPID-304106"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3t)",
                    "product": {
                      "name": "10.5(3t)",
                      "product_id": "CSAFPID-305294"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3e)",
                    "product": {
                      "name": "10.5(3e)",
                      "product_id": "CSAFPID-306458"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3o)",
                    "product": {
                      "name": "10.5(3o)",
                      "product_id": "CSAFPID-306584"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3s)",
                    "product": {
                      "name": "10.5(3s)",
                      "product_id": "CSAFPID-306630"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.5(3p)",
                    "product": {
                      "name": "10.5(3p)",
                      "product_id": "CSAFPID-306796"
                    }
                  }
                ],
                "category": "product_version",
                "name": "10.5"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "10.6(1)",
                    "product": {
                      "name": "10.6(1)",
                      "product_id": "CSAFPID-306581"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "10.6(1s)",
                    "product": {
                      "name": "10.6(1s)",
                      "product_id": "CSAFPID-306631"
                    }
                  }
                ],
                "category": "product_version",
                "name": "10.6"
              }
            ],
            "category": "product_family",
            "name": "Cisco NX-OS Software"
          },
          {
            "category": "product_name",
            "name": "Cisco Nexus 3000 Series Switches",
            "product": {
              "name": "Cisco Nexus 3000 Series Switches",
              "product_id": "CSAFPID-265091"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Nexus 9000 Series Switches",
            "product": {
              "name": "Cisco Nexus 9000 Series Switches",
              "product_id": "CSAFPID-265096"
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(1) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-284574:265091"
        },
        "product_reference": "CSAFPID-284574",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(1) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284574:265096"
        },
        "product_reference": "CSAFPID-284574",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(1q) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284892:265096"
        },
        "product_reference": "CSAFPID-284892",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(2) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-286098:265091"
        },
        "product_reference": "CSAFPID-286098",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(2) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286098:265096"
        },
        "product_reference": "CSAFPID-286098",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(3) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-286833:265091"
        },
        "product_reference": "CSAFPID-286833",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(3) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286833:265096"
        },
        "product_reference": "CSAFPID-286833",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(2a) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-287105:265096"
        },
        "product_reference": "CSAFPID-287105",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(3t) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-290556:265091"
        },
        "product_reference": "CSAFPID-290556",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(4) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-290620:265091"
        },
        "product_reference": "CSAFPID-290620",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(4) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-290620:265096"
        },
        "product_reference": "CSAFPID-290620",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(5) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-294841:265091"
        },
        "product_reference": "CSAFPID-294841",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(5) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-294841:265096"
        },
        "product_reference": "CSAFPID-294841",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(3v) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-300117:265091"
        },
        "product_reference": "CSAFPID-300117",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(6) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-300748:265091"
        },
        "product_reference": "CSAFPID-300748",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(6) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300748:265096"
        },
        "product_reference": "CSAFPID-300748",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(7) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-301277:265091"
        },
        "product_reference": "CSAFPID-301277",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(7) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301277:265096"
        },
        "product_reference": "CSAFPID-301277",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(8) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-302635:265091"
        },
        "product_reference": "CSAFPID-302635",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(8) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302635:265096"
        },
        "product_reference": "CSAFPID-302635",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(9) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-303349:265091"
        },
        "product_reference": "CSAFPID-303349",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.2(9) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303349:265096"
        },
        "product_reference": "CSAFPID-303349",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(1) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-289309:265091"
        },
        "product_reference": "CSAFPID-289309",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(1) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-289309:265096"
        },
        "product_reference": "CSAFPID-289309",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(2) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-292658:265091"
        },
        "product_reference": "CSAFPID-292658",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(2) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-292658:265096"
        },
        "product_reference": "CSAFPID-292658",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-295511:265091"
        },
        "product_reference": "CSAFPID-295511",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-295511:265096"
        },
        "product_reference": "CSAFPID-295511",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(99w) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-299969:265096"
        },
        "product_reference": "CSAFPID-299969",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3w) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300516:265096"
        },
        "product_reference": "CSAFPID-300516",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(99x) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300517:265096"
        },
        "product_reference": "CSAFPID-300517",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3o) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300741:265096"
        },
        "product_reference": "CSAFPID-300741",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4a) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-300941:265091"
        },
        "product_reference": "CSAFPID-300941",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4a) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300941:265096"
        },
        "product_reference": "CSAFPID-300941",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3p) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300942:265096"
        },
        "product_reference": "CSAFPID-300942",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-301024:265091"
        },
        "product_reference": "CSAFPID-301024",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301024:265096"
        },
        "product_reference": "CSAFPID-301024",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3q) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301106:265096"
        },
        "product_reference": "CSAFPID-301106",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3x) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301289:265096"
        },
        "product_reference": "CSAFPID-301289",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(5) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-301718:265091"
        },
        "product_reference": "CSAFPID-301718",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(5) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301718:265096"
        },
        "product_reference": "CSAFPID-301718",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301720:265096"
        },
        "product_reference": "CSAFPID-301720",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(3r) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302643:265096"
        },
        "product_reference": "CSAFPID-302643",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(6) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-302817:265091"
        },
        "product_reference": "CSAFPID-302817",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(6) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302817:265096"
        },
        "product_reference": "CSAFPID-302817",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(4h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302884:265096"
        },
        "product_reference": "CSAFPID-302884",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(7) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-303309:265091"
        },
        "product_reference": "CSAFPID-303309",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(7) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303309:265096"
        },
        "product_reference": "CSAFPID-303309",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(8) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-306452:265091"
        },
        "product_reference": "CSAFPID-306452",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.3(8) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306452:265096"
        },
        "product_reference": "CSAFPID-306452",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(1) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-300515:265091"
        },
        "product_reference": "CSAFPID-300515",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(1) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300515:265096"
        },
        "product_reference": "CSAFPID-300515",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(2) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-301115:265091"
        },
        "product_reference": "CSAFPID-301115",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(2) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301115:265096"
        },
        "product_reference": "CSAFPID-301115",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(3) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-301568:265091"
        },
        "product_reference": "CSAFPID-301568",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(3) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301568:265096"
        },
        "product_reference": "CSAFPID-301568",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(4) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-303016:265091"
        },
        "product_reference": "CSAFPID-303016",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(4) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303016:265096"
        },
        "product_reference": "CSAFPID-303016",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(5) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-303360:265091"
        },
        "product_reference": "CSAFPID-303360",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(5) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303360:265096"
        },
        "product_reference": "CSAFPID-303360",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(4g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303719:265096"
        },
        "product_reference": "CSAFPID-303719",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(6) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-306596:265091"
        },
        "product_reference": "CSAFPID-306596",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.4(6) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306596:265096"
        },
        "product_reference": "CSAFPID-306596",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(1) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-302754:265091"
        },
        "product_reference": "CSAFPID-302754",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(1) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302754:265096"
        },
        "product_reference": "CSAFPID-302754",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(2) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-303064:265091"
        },
        "product_reference": "CSAFPID-303064",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(2) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303064:265096"
        },
        "product_reference": "CSAFPID-303064",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-304106:265091"
        },
        "product_reference": "CSAFPID-304106",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-304106:265096"
        },
        "product_reference": "CSAFPID-304106",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3t) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-305294:265096"
        },
        "product_reference": "CSAFPID-305294",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306458:265096"
        },
        "product_reference": "CSAFPID-306458",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3o) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306584:265096"
        },
        "product_reference": "CSAFPID-306584",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3s) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306630:265096"
        },
        "product_reference": "CSAFPID-306630",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.5(3p) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306796:265096"
        },
        "product_reference": "CSAFPID-306796",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.6(1) when installed on Cisco Nexus 3000 Series Switches",
          "product_id": "CSAFPID-306581:265091"
        },
        "product_reference": "CSAFPID-306581",
        "relates_to_product_reference": "CSAFPID-265091"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.6(1) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306581:265096"
        },
        "product_reference": "CSAFPID-306581",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS Software 10.6(1s) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306631:265096"
        },
        "product_reference": "CSAFPID-306631",
        "relates_to_product_reference": "CSAFPID-265096"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-20171",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwr23951"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-284574:265091",
          "CSAFPID-284574:265096",
          "CSAFPID-284892:265096",
          "CSAFPID-286098:265091",
          "CSAFPID-286098:265096",
          "CSAFPID-286833:265091",
          "CSAFPID-286833:265096",
          "CSAFPID-287105:265096",
          "CSAFPID-289309:265091",
          "CSAFPID-289309:265096",
          "CSAFPID-290556:265091",
          "CSAFPID-290620:265091",
          "CSAFPID-290620:265096",
          "CSAFPID-292658:265091",
          "CSAFPID-292658:265096",
          "CSAFPID-294841:265091",
          "CSAFPID-294841:265096",
          "CSAFPID-295511:265091",
          "CSAFPID-295511:265096",
          "CSAFPID-299969:265096",
          "CSAFPID-300117:265091",
          "CSAFPID-300515:265091",
          "CSAFPID-300515:265096",
          "CSAFPID-300516:265096",
          "CSAFPID-300517:265096",
          "CSAFPID-300741:265096",
          "CSAFPID-300748:265091",
          "CSAFPID-300748:265096",
          "CSAFPID-300941:265091",
          "CSAFPID-300941:265096",
          "CSAFPID-300942:265096",
          "CSAFPID-301024:265091",
          "CSAFPID-301024:265096",
          "CSAFPID-301106:265096",
          "CSAFPID-301115:265091",
          "CSAFPID-301115:265096",
          "CSAFPID-301277:265091",
          "CSAFPID-301277:265096",
          "CSAFPID-301289:265096",
          "CSAFPID-301568:265091",
          "CSAFPID-301568:265096",
          "CSAFPID-301718:265091",
          "CSAFPID-301718:265096",
          "CSAFPID-301720:265096",
          "CSAFPID-302635:265091",
          "CSAFPID-302635:265096",
          "CSAFPID-302643:265096",
          "CSAFPID-302754:265091",
          "CSAFPID-302754:265096",
          "CSAFPID-302817:265091",
          "CSAFPID-302817:265096",
          "CSAFPID-302884:265096",
          "CSAFPID-303016:265091",
          "CSAFPID-303016:265096",
          "CSAFPID-303064:265091",
          "CSAFPID-303064:265096",
          "CSAFPID-303309:265091",
          "CSAFPID-303309:265096",
          "CSAFPID-303349:265091",
          "CSAFPID-303349:265096",
          "CSAFPID-303360:265091",
          "CSAFPID-303360:265096",
          "CSAFPID-303719:265096",
          "CSAFPID-304106:265091",
          "CSAFPID-304106:265096",
          "CSAFPID-305294:265096",
          "CSAFPID-306452:265091",
          "CSAFPID-306452:265096",
          "CSAFPID-306458:265096",
          "CSAFPID-306581:265091",
          "CSAFPID-306581:265096",
          "CSAFPID-306584:265096",
          "CSAFPID-306596:265091",
          "CSAFPID-306596:265096",
          "CSAFPID-306630:265096",
          "CSAFPID-306631:265096",
          "CSAFPID-306796:265096"
        ]
      },
      "release_date": "2026-05-20T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-284574:265091",
            "CSAFPID-284574:265096",
            "CSAFPID-284892:265096",
            "CSAFPID-286098:265091",
            "CSAFPID-286098:265096",
            "CSAFPID-286833:265091",
            "CSAFPID-286833:265096",
            "CSAFPID-287105:265096",
            "CSAFPID-289309:265091",
            "CSAFPID-289309:265096",
            "CSAFPID-290556:265091",
            "CSAFPID-290620:265091",
            "CSAFPID-290620:265096",
            "CSAFPID-292658:265091",
            "CSAFPID-292658:265096",
            "CSAFPID-294841:265091",
            "CSAFPID-294841:265096",
            "CSAFPID-295511:265091",
            "CSAFPID-295511:265096",
            "CSAFPID-299969:265096",
            "CSAFPID-300117:265091",
            "CSAFPID-300515:265091",
            "CSAFPID-300515:265096",
            "CSAFPID-300516:265096",
            "CSAFPID-300517:265096",
            "CSAFPID-300741:265096",
            "CSAFPID-300748:265091",
            "CSAFPID-300748:265096",
            "CSAFPID-300941:265091",
            "CSAFPID-300941:265096",
            "CSAFPID-300942:265096",
            "CSAFPID-301024:265091",
            "CSAFPID-301024:265096",
            "CSAFPID-301106:265096",
            "CSAFPID-301115:265091",
            "CSAFPID-301115:265096",
            "CSAFPID-301277:265091",
            "CSAFPID-301277:265096",
            "CSAFPID-301289:265096",
            "CSAFPID-301568:265091",
            "CSAFPID-301568:265096",
            "CSAFPID-301718:265091",
            "CSAFPID-301718:265096",
            "CSAFPID-301720:265096",
            "CSAFPID-302635:265091",
            "CSAFPID-302635:265096",
            "CSAFPID-302643:265096",
            "CSAFPID-302754:265091",
            "CSAFPID-302754:265096",
            "CSAFPID-302817:265091",
            "CSAFPID-302817:265096",
            "CSAFPID-302884:265096",
            "CSAFPID-303016:265091",
            "CSAFPID-303016:265096",
            "CSAFPID-303064:265091",
            "CSAFPID-303064:265096",
            "CSAFPID-303309:265091",
            "CSAFPID-303309:265096",
            "CSAFPID-303349:265091",
            "CSAFPID-303349:265096",
            "CSAFPID-303360:265091",
            "CSAFPID-303360:265096",
            "CSAFPID-303719:265096",
            "CSAFPID-304106:265091",
            "CSAFPID-304106:265096",
            "CSAFPID-305294:265096",
            "CSAFPID-306452:265091",
            "CSAFPID-306452:265096",
            "CSAFPID-306458:265096",
            "CSAFPID-306581:265091",
            "CSAFPID-306581:265096",
            "CSAFPID-306584:265096",
            "CSAFPID-306596:265091",
            "CSAFPID-306596:265096",
            "CSAFPID-306630:265096",
            "CSAFPID-306631:265096",
            "CSAFPID-306796:265096"
          ],
          "url": "https://software.cisco.com"
        },
        {
          "category": "workaround",
          "details": "There are two workarounds that address this vulnerability. If an affected device does not need to use the ATTR_SET attribute to carry customer edge (CE) attributes across the ISP network, RFC 6368 states that it is an optional attribute that can be discarded.\r\n\r\nTo discard the attribute and add or update the prefixes that are contained in the update to the routing table, add the path-attribute discard 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example:\r\n\r\n\r\nrouter bgp 64550\r\nneighbor 10.0.0.2\r\npath-attribute discard 128 in\r\n\r\nAlternatively, to discard the attribute and remove the prefixes that are contained in the update from the routing table, add the path-attribute treat-as-withdraw 128 in configuration command under the neighbor configuration that is sending it, as shown in the following example:\r\n\r\n\r\nrouter bgp 64550\r\nneighbor 10.0.0.2\r\n   path-attribute treat-as-withdraw 128 in\r\n\r\nThere is also a mitigation. To disable the enforce-first-as global BGP feature on the provider edge (PE) that is receiving the ATTR_SET attribute, configure the no enforce-first-as command, as shown in the following example. This will disable first Autonomous System Number (ASN) checking.\r\n\r\n\r\nrouter bgp 64550\r\nno enforce-first-as\r\n\r\nNote: Changing default BGP behavior on Cisco NX-OS Software by disabling this feature will prevent BGP from bringing down a peer adjacency if it receives an unexpected first Autonomous System (AS) in AS_PATH, weakening a security mechanism. To apply this policy change, BGP peers will need to be reset.\r\n\r\nWhile these workarounds and this mitigation have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
          "product_ids": [
            "CSAFPID-284574:265091",
            "CSAFPID-284574:265096",
            "CSAFPID-284892:265096",
            "CSAFPID-286098:265091",
            "CSAFPID-286098:265096",
            "CSAFPID-286833:265091",
            "CSAFPID-286833:265096",
            "CSAFPID-287105:265096",
            "CSAFPID-289309:265091",
            "CSAFPID-289309:265096",
            "CSAFPID-290556:265091",
            "CSAFPID-290620:265091",
            "CSAFPID-290620:265096",
            "CSAFPID-292658:265091",
            "CSAFPID-292658:265096",
            "CSAFPID-294841:265091",
            "CSAFPID-294841:265096",
            "CSAFPID-295511:265091",
            "CSAFPID-295511:265096",
            "CSAFPID-299969:265096",
            "CSAFPID-300117:265091",
            "CSAFPID-300515:265091",
            "CSAFPID-300515:265096",
            "CSAFPID-300516:265096",
            "CSAFPID-300517:265096",
            "CSAFPID-300741:265096",
            "CSAFPID-300748:265091",
            "CSAFPID-300748:265096",
            "CSAFPID-300941:265091",
            "CSAFPID-300941:265096",
            "CSAFPID-300942:265096",
            "CSAFPID-301024:265091",
            "CSAFPID-301024:265096",
            "CSAFPID-301106:265096",
            "CSAFPID-301115:265091",
            "CSAFPID-301115:265096",
            "CSAFPID-301277:265091",
            "CSAFPID-301277:265096",
            "CSAFPID-301289:265096",
            "CSAFPID-301568:265091",
            "CSAFPID-301568:265096",
            "CSAFPID-301718:265091",
            "CSAFPID-301718:265096",
            "CSAFPID-301720:265096",
            "CSAFPID-302635:265091",
            "CSAFPID-302635:265096",
            "CSAFPID-302643:265096",
            "CSAFPID-302754:265091",
            "CSAFPID-302754:265096",
            "CSAFPID-302817:265091",
            "CSAFPID-302817:265096",
            "CSAFPID-302884:265096",
            "CSAFPID-303016:265091",
            "CSAFPID-303016:265096",
            "CSAFPID-303064:265091",
            "CSAFPID-303064:265096",
            "CSAFPID-303309:265091",
            "CSAFPID-303309:265096",
            "CSAFPID-303349:265091",
            "CSAFPID-303349:265096",
            "CSAFPID-303360:265091",
            "CSAFPID-303360:265096",
            "CSAFPID-303719:265096",
            "CSAFPID-304106:265091",
            "CSAFPID-304106:265096",
            "CSAFPID-305294:265096",
            "CSAFPID-306452:265091",
            "CSAFPID-306452:265096",
            "CSAFPID-306458:265096",
            "CSAFPID-306581:265091",
            "CSAFPID-306581:265096",
            "CSAFPID-306584:265096",
            "CSAFPID-306596:265091",
            "CSAFPID-306596:265096",
            "CSAFPID-306630:265096",
            "CSAFPID-306631:265096",
            "CSAFPID-306796:265096"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-284574:265091",
            "CSAFPID-284574:265096",
            "CSAFPID-284892:265096",
            "CSAFPID-286098:265091",
            "CSAFPID-286098:265096",
            "CSAFPID-286833:265091",
            "CSAFPID-286833:265096",
            "CSAFPID-287105:265096",
            "CSAFPID-289309:265091",
            "CSAFPID-289309:265096",
            "CSAFPID-290556:265091",
            "CSAFPID-290620:265091",
            "CSAFPID-290620:265096",
            "CSAFPID-292658:265091",
            "CSAFPID-292658:265096",
            "CSAFPID-294841:265091",
            "CSAFPID-294841:265096",
            "CSAFPID-295511:265091",
            "CSAFPID-295511:265096",
            "CSAFPID-299969:265096",
            "CSAFPID-300117:265091",
            "CSAFPID-300515:265091",
            "CSAFPID-300515:265096",
            "CSAFPID-300516:265096",
            "CSAFPID-300517:265096",
            "CSAFPID-300741:265096",
            "CSAFPID-300748:265091",
            "CSAFPID-300748:265096",
            "CSAFPID-300941:265091",
            "CSAFPID-300941:265096",
            "CSAFPID-300942:265096",
            "CSAFPID-301024:265091",
            "CSAFPID-301024:265096",
            "CSAFPID-301106:265096",
            "CSAFPID-301115:265091",
            "CSAFPID-301115:265096",
            "CSAFPID-301277:265091",
            "CSAFPID-301277:265096",
            "CSAFPID-301289:265096",
            "CSAFPID-301568:265091",
            "CSAFPID-301568:265096",
            "CSAFPID-301718:265091",
            "CSAFPID-301718:265096",
            "CSAFPID-301720:265096",
            "CSAFPID-302635:265091",
            "CSAFPID-302635:265096",
            "CSAFPID-302643:265096",
            "CSAFPID-302754:265091",
            "CSAFPID-302754:265096",
            "CSAFPID-302817:265091",
            "CSAFPID-302817:265096",
            "CSAFPID-302884:265096",
            "CSAFPID-303016:265091",
            "CSAFPID-303016:265096",
            "CSAFPID-303064:265091",
            "CSAFPID-303064:265096",
            "CSAFPID-303309:265091",
            "CSAFPID-303309:265096",
            "CSAFPID-303349:265091",
            "CSAFPID-303349:265096",
            "CSAFPID-303360:265091",
            "CSAFPID-303360:265096",
            "CSAFPID-303719:265096",
            "CSAFPID-304106:265091",
            "CSAFPID-304106:265096",
            "CSAFPID-305294:265096",
            "CSAFPID-306452:265091",
            "CSAFPID-306452:265096",
            "CSAFPID-306458:265096",
            "CSAFPID-306581:265091",
            "CSAFPID-306581:265096",
            "CSAFPID-306584:265096",
            "CSAFPID-306596:265091",
            "CSAFPID-306596:265096",
            "CSAFPID-306630:265096",
            "CSAFPID-306631:265096",
            "CSAFPID-306796:265096"
          ]
        }
      ],
      "title": "Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability"
    }
  ]
}

FKIE_CVE-2026-20171

Vulnerability from fkie_nvd - Published: 2026-05-20 17:16 - Updated: 2026-05-20 17:30

Severity ?

6.8 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Summary

References

	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Border Gateway Protocol (BGP)\u0026nbsp;enforce-first-as feature of\u0026nbsp;Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition."
    }
  ],
  "id": "CVE-2026-20171",
  "lastModified": "2026-05-20T17:30:40.450",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 6.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 4.0,
        "source": "psirt@cisco.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-05-20T17:16:19.813",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-670"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Primary"
    }
  ]
}

GHSA-H75F-8F3X-9M8C

Vulnerability from github – Published: 2026-05-20 18:31 – Updated: 2026-05-20 18:31

Details

This vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.

Severity ?

6.8 (Medium)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-20171"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-670"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-05-20T17:16:19Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability in the Border Gateway Protocol (BGP)\u0026nbsp;enforce-first-as feature of\u0026nbsp;Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service (DoS) condition.\n\nThis vulnerability is due to incorrect parsing of a transitive BGP attribute. An attacker could exploit this vulnerability by sending a crafted BGP update through an established BGP peer session. If the update propagates to an affected device, it could cause the device to drop the BGP session and flap with the BGP peer that is forwarding this update, resulting in a DoS condition.",
  "id": "GHSA-h75f-8f3x-9m8c",
  "modified": "2026-05-20T18:31:35Z",
  "published": "2026-05-20T18:31:35Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-20171"
    },
    {
      "type": "WEB",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-iefab-3hb2pwtx"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-20171 (GCVE-0-2026-20171)

CISCO-SA-BGP-IEFAB-3HB2PWTX

FKIE_CVE-2026-20171

GHSA-H75F-8F3X-9M8C

Tags

Sightings

Nomenclature