Vulnerability-Lookup

CVE-2026-20048 (GCVE-0-2026-20048)

Vulnerability from cvelistv5 – Published: 2026-02-25 16:26 – Updated: 2026-02-25 19:05

Title

Cisco NX-OS Software SNMP Denial of Service Vulnerability

Summary

Severity ?

7.7 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CWE

CWE-789 - Uncontrolled Memory Allocation

Assigner

cisco

References

URL

	Vendor	Product	Version
	Cisco	Cisco NX-OS System Software in ACI Mode	Affected: 15.2(1g) Affected: 15.2(2e) Affected: 15.2(2f) Affected: 15.2(2g) Affected: 15.2(2h) Affected: 15.2(3f) Affected: 15.2(3e) Affected: 15.2(3g) Affected: 15.2(4d) Affected: 15.2(4e) Affected: 15.2(5c) Affected: 15.2(5d) Affected: 16.0(1g) Affected: 15.2(5e) Affected: 15.2(4f) Affected: 15.2(6e) Affected: 15.2(6h) Affected: 16.0(1j) Affected: 15.2(6g) Affected: 15.2(7f) Affected: 15.2(7g) Affected: 16.0(2h) Affected: 15.2(8d) Affected: 16.0(2j) Affected: 15.2(8e) Affected: 16.0(3d) Affected: 16.0(3e) Affected: 15.2(8f) Affected: 15.2(8g) Affected: 15.3(1d) Affected: 15.2(8h) Affected: 16.0(4c) Affected: 15.3(2a) Affected: 15.2(8i) Affected: 16.0(5h) Affected: 15.3(2b) Affected: 16.0(3g) Affected: 16.0(5j) Affected: 15.3(2c) Affected: 16.0(6c) Affected: 15.3(2d) Affected: 16.1(1f) Affected: 16.0(7e) Affected: 16.0(8e) Affected: 15.3(2e) Affected: 16.0(8f) Affected: 16.1(2f) Affected: 16.1(2g) Affected: 15.3(2f) Affected: 16.0(9c) Affected: 16.1(3f) Affected: 16.0(9d) Affected: 16.0(6h) Affected: 16.0(8h) Affected: 16.1(3g) Affected: 16.0(9e) Affected: 16.1(4h)

FKIE_CVE-2026-20048

Vulnerability from fkie_nvd - Published: 2026-02-25 17:25 - Updated: 2026-02-25 17:25

Severity ?

7.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Summary

References

	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries\u0026nbsp;to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a\u0026nbsp;DoS condition.\r\nNote: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit\u0026nbsp;this vulnerability through SNMPv1 or\u0026nbsp;SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system."
    }
  ],
  "id": "CVE-2026-20048",
  "lastModified": "2026-02-25T17:25:25.620",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.7,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.1,
        "impactScore": 4.0,
        "source": "psirt@cisco.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-02-25T17:25:25.620",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Received",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-789"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Primary"
    }
  ]
}

CISCO-SA-NXOS-DSNMP-CNN39UH

Vulnerability from csaf_cisco - Published: 2026-02-25 16:00 - Updated: 2026-02-25 16:00

Summary

Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability

Notes

Summary

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a DoS condition. Note: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv1 or SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability. This advisory is part of the February 2026 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: February 2026 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75740"].

Vulnerable Products

This vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI mode when both of the following conditions are met: The SNMP feature is enabled. At least one authentication, authorization, and accounting (AAA) provider is configured with a DNS name (hostname or fully qualified domain name (FQDN)) or an IPv6 address instead of an IPv4 address. For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory. Determine the SNMP Configuration To determine whether a device has SNMPv1, SNMPv2c, or SNMPv3 enabled, use the show snmp summary CLI command from the switch CLI, as shown in the following example: leaf101# show snmp summary <Admin State : enabled, running (pid:26630) Local SNMP engineID: [Hex] 8000000903003A9C451079 [Dec] 128:000:000:009:003:000:058:156:069:016:121 ---------------------------------------------------------------------- Community Context Status ---------------------------------------------------------------------- snmp ok ---------------------------------------------------------------------- User Authentication Privacy Status ---------------------------------------------------------------------- snmpv3-user hmac-sha2-256 none ok If the Admin State is enabled and there is an entry under Community (SNMPv1 or SNMPv2c) or User (SNMPv3), SNMP is configured and running. For information regarding SNMP configuration from the Cisco Application Policy Infrastructure Controller (APIC) web UI, see the Configure SNMP in ACI ["https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/221836-configure-snmp-in-aci.html"] TechNote. Determine the AAA Configuration To determine the AAA configuration, use the APIC web UI and complete the following steps: Go to Admin > AAA. Click Authentication. Click Providers. If any AAA providers are configured with a DNS name (hostname or FQDN) or an IPv6 address instead of an IPv4 address and SNMP is enabled and active, the device is in a vulnerable configuration.

Products Confirmed Not Vulnerable

Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability. Cisco has confirmed that this vulnerability does not affect the following Cisco products: Firepower 1000 Series Firepower 2100 Series Firepower 4100 Series Firepower 9300 Security Appliances MDS 9000 Series Multilayer Switches Nexus 3000 Series Switches Nexus 5500 Platform Switches Nexus 5600 Platform Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches in standalone NX-OS mode Secure Firewall 200 Series Secure Firewall 1200 Series Secure Firewall 3100 Series Secure Firewall 4200 Series Secure Firewall 6100 Series UCS 6300 Series Fabric Interconnects UCS 6400 Series Fabric Interconnects UCS 6500 Series Fabric Interconnects UCS 6600 Series Fabric Interconnects UCS X-Series Direct Fabric Interconnects 9108 100G

Indicators of Compromise

This vulnerability causes SNMPd processes to consume memory until an out-of-memory (OOM) condition results in a kernel panic and a device reload. To check for this issue, use the following commands with administrative privileges from the switch CLI. To check the number of SNMPd processes, use ps -eaf | grep -i snmpd. Leaf101# ps -eaf | grep snmpd root 16944 18558 0 Aug08 ? 00:00:00 [snmpd] <defunct> root 17523 18558 0 Aug08 ? 00:00:00 [snmpd] <defunct> root 17859 18558 0 Aug08 ? 00:00:00 [snmpd] <defunct> root 18036 18558 0 Aug08 ? 00:00:00 [snmpd] <defunct> root 18558 12508 0 Aug08 ? 00:27:50 /isan/bin/snmpd -f -s -d udp:161 udp6:161 tcp:161 root 20075 18558 0 Aug08 ? 00:00:00 /isan/bin/snmpd -f -s -d udp:161 udp6:161 tcp:161 If the number of SNMPd processes is more than 10 and is increasing over time, the devices may be impacted by this vulnerability. Processes that show <defunct> do not consume memory but are also a possible indication of this vulnerability. To get the amount of memory that has been used and is not free, use free -k | awk 'NR==2 {printf "Memory-used: %.2f%%\n", ($2-$7)/$2*100}'. Leaf101# free -k | awk 'NR==2 {printf "Memory-used: %.2f%%\n", ($2-$7)/$2*100}' Memory-used: 45.03% If the amount of memory used is more than 85% and is increasing over time, the device is approaching an OOM condition and may reload. The Cisco Technical Assistance Center ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"] (TAC) can help to recover a device from the high memory condition.

Workarounds

A workaround for this vulnerability exists for AAA providers that are configured with IPv4 DNS names. Update all AAA providers from a DNS name (hostname or FQDN) to an IPv4 address configuration. For more information about AAA configuration, see Cisco Application Centric Infrastructure Fundamentals, Release 6.1(x) ["https://www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/aci-fundamentals/cisco-aci-fundamentals-61x/aaa-60x.html?bookSearch=true"]. There is no workaround for IPv6 configurations. While this workaround has been deployed and proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.

Fixed Software

Cisco considers any workarounds and mitigations (if applicable) to be temporary solutions until an upgrade to a fixed software release is available. To fully remediate this vulnerability and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory. Cisco NX-OS Software To help customers determine their exposure to vulnerabilities in Cisco NX-OS Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories that the Software Checker identifies (“Combined First Fixed”). To use the tool, go to the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps: Choose which advisories the tool will search—only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"], or all advisories. Choose the appropriate software. Choose the appropriate platform. Enter a release number—for example, 10.4(4) for Cisco Nexus 3000 Series Switches or 16.0(8e) for Cisco NX-OS Software in ACI mode. Click Check. Only this advisory All Critical and High advisories All advisories Cisco NX-OS Software Cisco NX-OS Software in ACI Mode Any Platform MDS 9000 Series Multilayer Switches Nexus 3000 Series Switches Nexus 5000 Series Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches Additional Resources For help determining the best Cisco NX-OS Software release for a Cisco Nexus Switch, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance. Cisco MDS Series Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html"] Cisco Nexus 3000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html"] Cisco Nexus 5500 Platform Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html"] Cisco Nexus 5600 Platform Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html"] Cisco Nexus 6000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html"] Cisco Nexus 7000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html"] Cisco Nexus 9000 Series Switches ["http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html"] Cisco Nexus 9000 Series ACI-Mode Switches ["https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html"] To determine the best release for Cisco UCS Software, see the Recommended Releases documents in the release notes for the device.

Vulnerability Policy

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Exploitation and Public Announcements

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

Source

This vulnerability was found during the resolution of a Cisco TAC support case.

Legal Disclaimer

SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT The Cisco Support and Downloads ["https://www.cisco.com/c/en/us/support/index.html"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid. Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade. When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories ["https://www.cisco.com/go/psirt"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"] or their contracted maintenance providers. LEGAL DISCLAIMER DETAILS CISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. Copies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories ["https://www.cisco.com/go/psirt"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"] for more information.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "summary": "This vulnerability was found during the resolution of a Cisco TAC support case."
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "notes": [
      {
        "category": "summary",
        "text": "A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThis vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a DoS condition.\r\n\r\nNote: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv1 or SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.\r\n\r\nCisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.\r\n\r\n\r\n\r\nThis advisory is part of the February 2026 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: February 2026 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75740\"].",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "This vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI mode when both of the following conditions are met:\r\n\r\nThe SNMP feature is enabled.\r\nAt least one authentication, authorization, and accounting (AAA) provider is configured with a DNS name (hostname or fully qualified domain name (FQDN)) or an IPv6 address instead of an IPv4 address.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n\r\nDetermine the SNMP Configuration\r\n\r\nTo determine whether a device has SNMPv1, SNMPv2c, or SNMPv3 enabled, use the show snmp summary CLI command from the switch CLI, as shown in the following example:\r\n\r\n\r\nleaf101# show snmp summary\r\n\u003cAdmin State : enabled, running (pid:26630)\r\nLocal SNMP engineID: [Hex] 8000000903003A9C451079                       [Dec] 128:000:000:009:003:000:058:156:069:016:121\r\n----------------------------------------------------------------------  Community                         Context                   Status  ----------------------------------------------------------------------  snmp                                                        ok\r\n\r\n----------------------------------------------------------------------  User                              Authentication  Privacy   Status  ----------------------------------------------------------------------  snmpv3-user                       hmac-sha2-256   none      ok\r\n\r\nIf the Admin State is enabled and there is an entry under Community (SNMPv1 or SNMPv2c) or User (SNMPv3), SNMP is configured and running. For information regarding SNMP configuration from the Cisco Application Policy Infrastructure Controller (APIC) web UI, see the Configure SNMP in ACI [\"https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/221836-configure-snmp-in-aci.html\"] TechNote.\r\n\r\nDetermine the AAA Configuration\r\n\r\nTo determine the AAA configuration, use the APIC web UI and complete the following steps:\r\n\r\nGo to Admin \u003e AAA.\r\nClick Authentication.\r\nClick Providers.\r\n\r\nIf any AAA providers are configured with a DNS name (hostname or FQDN) or an IPv6 address instead of an IPv4 address and SNMP is enabled and active, the device is in a vulnerable configuration.",
        "title": "Vulnerable Products"
      },
      {
        "category": "general",
        "text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following Cisco products:\r\n\r\nFirepower 1000 Series\r\nFirepower 2100 Series\r\nFirepower 4100 Series\r\nFirepower 9300 Security Appliances\r\nMDS 9000 Series Multilayer Switches\r\nNexus 3000 Series Switches\r\nNexus 5500 Platform Switches\r\nNexus 5600 Platform Switches\r\nNexus 6000 Series Switches\r\nNexus 7000 Series Switches\r\nNexus 9000 Series Switches in standalone NX-OS mode\r\nSecure Firewall 200 Series\r\nSecure Firewall 1200 Series\r\nSecure Firewall 3100 Series\r\nSecure Firewall 4200 Series\r\nSecure Firewall 6100 Series\r\nUCS 6300 Series Fabric Interconnects\r\nUCS 6400 Series Fabric Interconnects\r\nUCS 6500 Series Fabric Interconnects\r\nUCS 6600 Series Fabric Interconnects\r\nUCS X-Series Direct Fabric Interconnects 9108 100G",
        "title": "Products Confirmed Not Vulnerable"
      },
      {
        "category": "general",
        "text": "This vulnerability causes SNMPd processes to consume memory until an out-of-memory (OOM) condition results in a kernel panic and a device reload. To check for this issue, use the following commands with administrative privileges from the switch CLI.\r\n\r\nTo check the number of SNMPd processes, use ps -eaf | grep -i snmpd.\r\n\r\nLeaf101# ps -eaf | grep snmpd\r\nroot     16944 18558  0 Aug08 ?        00:00:00 [snmpd] \u003cdefunct\u003e\r\nroot     17523 18558  0 Aug08 ?        00:00:00 [snmpd] \u003cdefunct\u003e\r\nroot     17859 18558  0 Aug08 ?        00:00:00 [snmpd] \u003cdefunct\u003e\r\nroot     18036 18558  0 Aug08 ?        00:00:00 [snmpd] \u003cdefunct\u003e\r\nroot     18558 12508  0 Aug08 ?        00:27:50 /isan/bin/snmpd -f -s -d udp:161 udp6:161 tcp:161\r\nroot     20075 18558  0 Aug08 ?        00:00:00 /isan/bin/snmpd -f -s -d udp:161 udp6:161 tcp:161\r\nIf the number of SNMPd processes is more than 10 and is increasing over time, the devices may be impacted by this vulnerability. Processes that show \u003cdefunct\u003e do not consume memory but are also a possible indication of this vulnerability.\r\n\r\nTo get the amount of memory that has been used and is not free, use free -k | awk \u0027NR==2 {printf \"Memory-used: %.2f%%\\n\", ($2-$7)/$2*100}\u0027.\r\n\r\nLeaf101# free -k | awk \u0027NR==2 {printf \"Memory-used: %.2f%%\\n\", ($2-$7)/$2*100}\u0027\r\nMemory-used: 45.03%\r\nIf the amount of memory used is more than 85% and is increasing over time, the device is approaching an OOM condition and may reload. The Cisco Technical Assistance Center [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"] (TAC) can help to recover a device from the high memory condition.",
        "title": "Indicators of Compromise"
      },
      {
        "category": "general",
        "text": "A workaround for this vulnerability exists for AAA providers that are configured with IPv4 DNS names. Update all AAA providers from a DNS name (hostname or FQDN) to an IPv4 address configuration. For more information about AAA configuration, see Cisco Application Centric Infrastructure Fundamentals, Release 6.1(x) [\"https://www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/aci-fundamentals/cisco-aci-fundamentals-61x/aaa-60x.html?bookSearch=true\"].\r\n\r\nThere is no workaround for IPv6 configurations.\r\n\r\nWhile this workaround has been deployed and proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
        "title": "Workarounds"
      },
      {
        "category": "general",
        "text": "Cisco considers any workarounds and mitigations (if applicable) to be temporary solutions until an upgrade to a fixed software release is available. To fully remediate this vulnerability and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory.\r\n        Cisco NX-OS Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco NX-OS Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories that the Software Checker identifies (\u201cCombined First Fixed\u201d).\r\n\r\nTo use the tool, go to the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps:\r\n\r\nChoose which advisories the tool will search\u2014only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr\"], or all advisories.\r\nChoose the appropriate software.\r\nChoose the appropriate platform.\r\nEnter a release number\u2014for example, 10.4(4) for Cisco Nexus 3000 Series Switches or 16.0(8e) for Cisco NX-OS Software in ACI mode.\r\nClick Check.\r\n\r\n       Only this advisory  All Critical and High advisories  All advisories    Cisco NX-OS Software  Cisco NX-OS Software in ACI Mode    Any Platform  MDS 9000 Series Multilayer Switches  Nexus 3000 Series Switches  Nexus 5000 Series Switches  Nexus 6000 Series Switches  Nexus 7000 Series Switches  Nexus 9000 Series Switches\r\n\r\n\r\n\r\n\r\n     Additional Resources\r\nFor help determining the best Cisco NX-OS Software release for a Cisco Nexus Switch, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance.\r\n\r\nCisco MDS Series Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html\"]\r\nCisco Nexus 3000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html\"]\r\nCisco Nexus 5500 Platform Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html\"]\r\nCisco Nexus 5600 Platform Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html\"]\r\nCisco Nexus 6000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html\"]\r\nCisco Nexus 7000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html\"]\r\nCisco Nexus 9000 Series Switches [\"http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html\"]\r\nCisco Nexus 9000 Series ACI-Mode Switches [\"https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html\"]\r\n\r\nTo determine the best release for Cisco UCS Software, see the Recommended Releases documents in the release notes for the device.",
        "title": "Fixed Software"
      },
      {
        "category": "general",
        "text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
        "title": "Vulnerability Policy"
      },
      {
        "category": "general",
        "text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
        "title": "Exploitation and Public Announcements"
      },
      {
        "category": "general",
        "text": "This vulnerability was found during the resolution of a Cisco TAC support case.",
        "title": "Source"
      },
      {
        "category": "legal_disclaimer",
        "text": "SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT\r\n\r\nThe Cisco Support and Downloads [\"https://www.cisco.com/c/en/us/support/index.html\"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid.\r\n\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories [\"https://www.cisco.com/go/psirt\"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"] or their contracted maintenance providers.\r\n    LEGAL DISCLAIMER DETAILS\r\n\r\nCISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nCopies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories [\"https://www.cisco.com/go/psirt\"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"] for more information.",
        "title": "Legal Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@cisco.com",
      "issuing_authority": "Cisco PSIRT",
      "name": "Cisco",
      "namespace": "https://wwww.cisco.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"
      },
      {
        "category": "external",
        "summary": "Cisco Event Response: February 2026 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication",
        "url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75740"
      },
      {
        "category": "external",
        "summary": "Cisco Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Configure SNMP in ACI",
        "url": "https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/221836-configure-snmp-in-aci.html"
      },
      {
        "category": "external",
        "summary": "Cisco Technical Assistance Center",
        "url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
      },
      {
        "category": "external",
        "summary": "Cisco Application Centric Infrastructure Fundamentals, Release 6.1(x)",
        "url": "https://www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/aci-fundamentals/cisco-aci-fundamentals-61x/aaa-60x.html?bookSearch=true"
      },
      {
        "category": "external",
        "summary": "Cisco Software Checker",
        "url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
      },
      {
        "category": "external",
        "summary": "Security Impact Rating (SIR)",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"
      },
      {
        "category": "external",
        "summary": "Cisco MDS Series Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/mds9000/sw/b_MDS_NX-OS_Recommended_Releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 3000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_3000_Series_Switches.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 5500 Platform Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5500/sw/release/recommended_releases/n5500_recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 5600 Platform Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5600/sw/release/recommended_releases/n5600_recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 6000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus6000/sw/release/recommended_releases/recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 7000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nx-os/recommended_releases/recommended_nx-os_releases.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 9000 Series Switches",
        "url": "http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/recommended_release/b_Minimum_and_Recommended_Cisco_NX-OS_Releases_for_Cisco_Nexus_9000_Series_Switches.html"
      },
      {
        "category": "external",
        "summary": "Cisco Nexus 9000 Series ACI-Mode Switches",
        "url": "https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/recommended-release/b_Recommended_Cisco_ACI_Releases.html"
      },
      {
        "category": "external",
        "summary": "Security Vulnerability Policy",
        "url": "http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Cisco Support and Downloads",
        "url": "https://www.cisco.com/c/en/us/support/index.html"
      },
      {
        "category": "external",
        "summary": "considering software upgrades",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
      },
      {
        "category": "external",
        "summary": "the advisories",
        "url": "https://www.cisco.com/go/psirt"
      }
    ],
    "title": "Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability",
    "tracking": {
      "current_release_date": "2026-02-25T16:00:00+00:00",
      "generator": {
        "date": "2026-02-25T15:59:59+00:00",
        "engine": {
          "name": "TVCE"
        }
      },
      "id": "cisco-sa-nxos-dsnmp-cNN39Uh",
      "initial_release_date": "2026-02-25T16:00:00+00:00",
      "revision_history": [
        {
          "date": "2026-02-25T15:59:37+00:00",
          "number": "1.0.0",
          "summary": "Initial public release."
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "15.2(1g)",
                    "product": {
                      "name": "15.2(1g)",
                      "product_id": "CSAFPID-283749"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(2e)",
                    "product": {
                      "name": "15.2(2e)",
                      "product_id": "CSAFPID-284173"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(2f)",
                    "product": {
                      "name": "15.2(2f)",
                      "product_id": "CSAFPID-284339"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(2g)",
                    "product": {
                      "name": "15.2(2g)",
                      "product_id": "CSAFPID-284720"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(2h)",
                    "product": {
                      "name": "15.2(2h)",
                      "product_id": "CSAFPID-284792"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(3e)",
                    "product": {
                      "name": "15.2(3e)",
                      "product_id": "CSAFPID-285918"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(3f)",
                    "product": {
                      "name": "15.2(3f)",
                      "product_id": "CSAFPID-285926"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(3g)",
                    "product": {
                      "name": "15.2(3g)",
                      "product_id": "CSAFPID-286113"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(4d)",
                    "product": {
                      "name": "15.2(4d)",
                      "product_id": "CSAFPID-286487"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(4e)",
                    "product": {
                      "name": "15.2(4e)",
                      "product_id": "CSAFPID-286555"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(5c)",
                    "product": {
                      "name": "15.2(5c)",
                      "product_id": "CSAFPID-286879"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(5d)",
                    "product": {
                      "name": "15.2(5d)",
                      "product_id": "CSAFPID-287186"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(5e)",
                    "product": {
                      "name": "15.2(5e)",
                      "product_id": "CSAFPID-288243"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(4f)",
                    "product": {
                      "name": "15.2(4f)",
                      "product_id": "CSAFPID-289276"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(6e)",
                    "product": {
                      "name": "15.2(6e)",
                      "product_id": "CSAFPID-289328"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(6g)",
                    "product": {
                      "name": "15.2(6g)",
                      "product_id": "CSAFPID-290615"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(7f)",
                    "product": {
                      "name": "15.2(7f)",
                      "product_id": "CSAFPID-290655"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(7g)",
                    "product": {
                      "name": "15.2(7g)",
                      "product_id": "CSAFPID-294782"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(6h)",
                    "product": {
                      "name": "15.2(6h)",
                      "product_id": "CSAFPID-295577"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8d)",
                    "product": {
                      "name": "15.2(8d)",
                      "product_id": "CSAFPID-299959"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8e)",
                    "product": {
                      "name": "15.2(8e)",
                      "product_id": "CSAFPID-300261"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8f)",
                    "product": {
                      "name": "15.2(8f)",
                      "product_id": "CSAFPID-300738"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8g)",
                    "product": {
                      "name": "15.2(8g)",
                      "product_id": "CSAFPID-300940"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8h)",
                    "product": {
                      "name": "15.2(8h)",
                      "product_id": "CSAFPID-301134"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.2(8i)",
                    "product": {
                      "name": "15.2(8i)",
                      "product_id": "CSAFPID-301282"
                    }
                  }
                ],
                "category": "product_version",
                "name": "15.2"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "16.0(1g)",
                    "product": {
                      "name": "16.0(1g)",
                      "product_id": "CSAFPID-288206"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(1j)",
                    "product": {
                      "name": "16.0(1j)",
                      "product_id": "CSAFPID-290585"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(2h)",
                    "product": {
                      "name": "16.0(2h)",
                      "product_id": "CSAFPID-294809"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(2j)",
                    "product": {
                      "name": "16.0(2j)",
                      "product_id": "CSAFPID-300257"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(3d)",
                    "product": {
                      "name": "16.0(3d)",
                      "product_id": "CSAFPID-300266"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(3e)",
                    "product": {
                      "name": "16.0(3e)",
                      "product_id": "CSAFPID-300744"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(4c)",
                    "product": {
                      "name": "16.0(4c)",
                      "product_id": "CSAFPID-301160"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(5h)",
                    "product": {
                      "name": "16.0(5h)",
                      "product_id": "CSAFPID-301280"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(3g)",
                    "product": {
                      "name": "16.0(3g)",
                      "product_id": "CSAFPID-301729"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(5j)",
                    "product": {
                      "name": "16.0(5j)",
                      "product_id": "CSAFPID-301742"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(6c)",
                    "product": {
                      "name": "16.0(6c)",
                      "product_id": "CSAFPID-302636"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(7e)",
                    "product": {
                      "name": "16.0(7e)",
                      "product_id": "CSAFPID-302836"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(8e)",
                    "product": {
                      "name": "16.0(8e)",
                      "product_id": "CSAFPID-303022"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(8f)",
                    "product": {
                      "name": "16.0(8f)",
                      "product_id": "CSAFPID-303066"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(9c)",
                    "product": {
                      "name": "16.0(9c)",
                      "product_id": "CSAFPID-303335"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(9d)",
                    "product": {
                      "name": "16.0(9d)",
                      "product_id": "CSAFPID-303891"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(6h)",
                    "product": {
                      "name": "16.0(6h)",
                      "product_id": "CSAFPID-305298"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(8h)",
                    "product": {
                      "name": "16.0(8h)",
                      "product_id": "CSAFPID-305306"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.0(9e)",
                    "product": {
                      "name": "16.0(9e)",
                      "product_id": "CSAFPID-306562"
                    }
                  }
                ],
                "category": "product_version",
                "name": "16.0"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "15.3(1d)",
                    "product": {
                      "name": "15.3(1d)",
                      "product_id": "CSAFPID-301035"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2a)",
                    "product": {
                      "name": "15.3(2a)",
                      "product_id": "CSAFPID-301220"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2b)",
                    "product": {
                      "name": "15.3(2b)",
                      "product_id": "CSAFPID-301569"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2c)",
                    "product": {
                      "name": "15.3(2c)",
                      "product_id": "CSAFPID-302631"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2d)",
                    "product": {
                      "name": "15.3(2d)",
                      "product_id": "CSAFPID-302963"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2e)",
                    "product": {
                      "name": "15.3(2e)",
                      "product_id": "CSAFPID-303065"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "15.3(2f)",
                    "product": {
                      "name": "15.3(2f)",
                      "product_id": "CSAFPID-303319"
                    }
                  }
                ],
                "category": "product_version",
                "name": "15.3"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "16.1(1f)",
                    "product": {
                      "name": "16.1(1f)",
                      "product_id": "CSAFPID-302689"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.1(2f)",
                    "product": {
                      "name": "16.1(2f)",
                      "product_id": "CSAFPID-303136"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.1(2g)",
                    "product": {
                      "name": "16.1(2g)",
                      "product_id": "CSAFPID-303182"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.1(3f)",
                    "product": {
                      "name": "16.1(3f)",
                      "product_id": "CSAFPID-303772"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.1(3g)",
                    "product": {
                      "name": "16.1(3g)",
                      "product_id": "CSAFPID-306456"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "16.1(4h)",
                    "product": {
                      "name": "16.1(4h)",
                      "product_id": "CSAFPID-306563"
                    }
                  }
                ],
                "category": "product_version",
                "name": "16.1"
              }
            ],
            "category": "product_family",
            "name": "Cisco NX-OS System Software in ACI Mode"
          },
          {
            "category": "product_name",
            "name": "Cisco Nexus 9000 Series Switches",
            "product": {
              "name": "Cisco Nexus 9000 Series Switches",
              "product_id": "CSAFPID-265096"
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(1g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-283749:265096"
        },
        "product_reference": "CSAFPID-283749",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(2e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284173:265096"
        },
        "product_reference": "CSAFPID-284173",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(2f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284339:265096"
        },
        "product_reference": "CSAFPID-284339",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(2g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284720:265096"
        },
        "product_reference": "CSAFPID-284720",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(2h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-284792:265096"
        },
        "product_reference": "CSAFPID-284792",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(3e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-285918:265096"
        },
        "product_reference": "CSAFPID-285918",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(3f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-285926:265096"
        },
        "product_reference": "CSAFPID-285926",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(3g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286113:265096"
        },
        "product_reference": "CSAFPID-286113",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(4d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286487:265096"
        },
        "product_reference": "CSAFPID-286487",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(4e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286555:265096"
        },
        "product_reference": "CSAFPID-286555",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(5c) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-286879:265096"
        },
        "product_reference": "CSAFPID-286879",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(5d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-287186:265096"
        },
        "product_reference": "CSAFPID-287186",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(5e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-288243:265096"
        },
        "product_reference": "CSAFPID-288243",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(4f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-289276:265096"
        },
        "product_reference": "CSAFPID-289276",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(6e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-289328:265096"
        },
        "product_reference": "CSAFPID-289328",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(6g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-290615:265096"
        },
        "product_reference": "CSAFPID-290615",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(7f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-290655:265096"
        },
        "product_reference": "CSAFPID-290655",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(7g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-294782:265096"
        },
        "product_reference": "CSAFPID-294782",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(6h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-295577:265096"
        },
        "product_reference": "CSAFPID-295577",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-299959:265096"
        },
        "product_reference": "CSAFPID-299959",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300261:265096"
        },
        "product_reference": "CSAFPID-300261",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300738:265096"
        },
        "product_reference": "CSAFPID-300738",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300940:265096"
        },
        "product_reference": "CSAFPID-300940",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301134:265096"
        },
        "product_reference": "CSAFPID-301134",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.2(8i) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301282:265096"
        },
        "product_reference": "CSAFPID-301282",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(1g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-288206:265096"
        },
        "product_reference": "CSAFPID-288206",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(1j) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-290585:265096"
        },
        "product_reference": "CSAFPID-290585",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(2h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-294809:265096"
        },
        "product_reference": "CSAFPID-294809",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(2j) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300257:265096"
        },
        "product_reference": "CSAFPID-300257",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(3d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300266:265096"
        },
        "product_reference": "CSAFPID-300266",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(3e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-300744:265096"
        },
        "product_reference": "CSAFPID-300744",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(4c) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301160:265096"
        },
        "product_reference": "CSAFPID-301160",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(5h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301280:265096"
        },
        "product_reference": "CSAFPID-301280",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(3g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301729:265096"
        },
        "product_reference": "CSAFPID-301729",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(5j) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301742:265096"
        },
        "product_reference": "CSAFPID-301742",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(6c) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302636:265096"
        },
        "product_reference": "CSAFPID-302636",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(7e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302836:265096"
        },
        "product_reference": "CSAFPID-302836",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(8e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303022:265096"
        },
        "product_reference": "CSAFPID-303022",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(8f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303066:265096"
        },
        "product_reference": "CSAFPID-303066",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(9c) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303335:265096"
        },
        "product_reference": "CSAFPID-303335",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(9d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303891:265096"
        },
        "product_reference": "CSAFPID-303891",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(6h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-305298:265096"
        },
        "product_reference": "CSAFPID-305298",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(8h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-305306:265096"
        },
        "product_reference": "CSAFPID-305306",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.0(9e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306562:265096"
        },
        "product_reference": "CSAFPID-306562",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(1d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301035:265096"
        },
        "product_reference": "CSAFPID-301035",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2a) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301220:265096"
        },
        "product_reference": "CSAFPID-301220",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2b) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-301569:265096"
        },
        "product_reference": "CSAFPID-301569",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2c) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302631:265096"
        },
        "product_reference": "CSAFPID-302631",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2d) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302963:265096"
        },
        "product_reference": "CSAFPID-302963",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2e) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303065:265096"
        },
        "product_reference": "CSAFPID-303065",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 15.3(2f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303319:265096"
        },
        "product_reference": "CSAFPID-303319",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(1f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-302689:265096"
        },
        "product_reference": "CSAFPID-302689",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(2f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303136:265096"
        },
        "product_reference": "CSAFPID-303136",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(2g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303182:265096"
        },
        "product_reference": "CSAFPID-303182",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(3f) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-303772:265096"
        },
        "product_reference": "CSAFPID-303772",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(3g) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306456:265096"
        },
        "product_reference": "CSAFPID-306456",
        "relates_to_product_reference": "CSAFPID-265096"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco NX-OS System Software in ACI Mode 16.1(4h) when installed on Cisco Nexus 9000 Series Switches",
          "product_id": "CSAFPID-306563:265096"
        },
        "product_reference": "CSAFPID-306563",
        "relates_to_product_reference": "CSAFPID-265096"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-20048",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq57598"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-283749:265096",
          "CSAFPID-284173:265096",
          "CSAFPID-284339:265096",
          "CSAFPID-284720:265096",
          "CSAFPID-284792:265096",
          "CSAFPID-285918:265096",
          "CSAFPID-285926:265096",
          "CSAFPID-286113:265096",
          "CSAFPID-286487:265096",
          "CSAFPID-286555:265096",
          "CSAFPID-286879:265096",
          "CSAFPID-287186:265096",
          "CSAFPID-288206:265096",
          "CSAFPID-288243:265096",
          "CSAFPID-289276:265096",
          "CSAFPID-289328:265096",
          "CSAFPID-290585:265096",
          "CSAFPID-290615:265096",
          "CSAFPID-290655:265096",
          "CSAFPID-294782:265096",
          "CSAFPID-294809:265096",
          "CSAFPID-295577:265096",
          "CSAFPID-299959:265096",
          "CSAFPID-300257:265096",
          "CSAFPID-300261:265096",
          "CSAFPID-300266:265096",
          "CSAFPID-300738:265096",
          "CSAFPID-300744:265096",
          "CSAFPID-300940:265096",
          "CSAFPID-301035:265096",
          "CSAFPID-301134:265096",
          "CSAFPID-301160:265096",
          "CSAFPID-301220:265096",
          "CSAFPID-301280:265096",
          "CSAFPID-301282:265096",
          "CSAFPID-301569:265096",
          "CSAFPID-301729:265096",
          "CSAFPID-301742:265096",
          "CSAFPID-302631:265096",
          "CSAFPID-302636:265096",
          "CSAFPID-302689:265096",
          "CSAFPID-302836:265096",
          "CSAFPID-302963:265096",
          "CSAFPID-303022:265096",
          "CSAFPID-303065:265096",
          "CSAFPID-303066:265096",
          "CSAFPID-303136:265096",
          "CSAFPID-303182:265096",
          "CSAFPID-303319:265096",
          "CSAFPID-303335:265096",
          "CSAFPID-303772:265096",
          "CSAFPID-303891:265096",
          "CSAFPID-305298:265096",
          "CSAFPID-305306:265096",
          "CSAFPID-306456:265096",
          "CSAFPID-306562:265096",
          "CSAFPID-306563:265096"
        ]
      },
      "release_date": "2026-02-25T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-283749:265096",
            "CSAFPID-284173:265096",
            "CSAFPID-284339:265096",
            "CSAFPID-284720:265096",
            "CSAFPID-284792:265096",
            "CSAFPID-285918:265096",
            "CSAFPID-285926:265096",
            "CSAFPID-286113:265096",
            "CSAFPID-286487:265096",
            "CSAFPID-286555:265096",
            "CSAFPID-286879:265096",
            "CSAFPID-287186:265096",
            "CSAFPID-288206:265096",
            "CSAFPID-288243:265096",
            "CSAFPID-289276:265096",
            "CSAFPID-289328:265096",
            "CSAFPID-290585:265096",
            "CSAFPID-290615:265096",
            "CSAFPID-290655:265096",
            "CSAFPID-294782:265096",
            "CSAFPID-294809:265096",
            "CSAFPID-295577:265096",
            "CSAFPID-299959:265096",
            "CSAFPID-300257:265096",
            "CSAFPID-300261:265096",
            "CSAFPID-300266:265096",
            "CSAFPID-300738:265096",
            "CSAFPID-300744:265096",
            "CSAFPID-300940:265096",
            "CSAFPID-301035:265096",
            "CSAFPID-301134:265096",
            "CSAFPID-301160:265096",
            "CSAFPID-301220:265096",
            "CSAFPID-301280:265096",
            "CSAFPID-301282:265096",
            "CSAFPID-301569:265096",
            "CSAFPID-301729:265096",
            "CSAFPID-301742:265096",
            "CSAFPID-302631:265096",
            "CSAFPID-302636:265096",
            "CSAFPID-302689:265096",
            "CSAFPID-302836:265096",
            "CSAFPID-302963:265096",
            "CSAFPID-303022:265096",
            "CSAFPID-303065:265096",
            "CSAFPID-303066:265096",
            "CSAFPID-303136:265096",
            "CSAFPID-303182:265096",
            "CSAFPID-303319:265096",
            "CSAFPID-303335:265096",
            "CSAFPID-303772:265096",
            "CSAFPID-303891:265096",
            "CSAFPID-305298:265096",
            "CSAFPID-305306:265096",
            "CSAFPID-306456:265096",
            "CSAFPID-306562:265096",
            "CSAFPID-306563:265096"
          ],
          "url": "https://software.cisco.com"
        },
        {
          "category": "workaround",
          "details": "A workaround for this vulnerability exists for AAA providers that are configured with IPv4 DNS names. Update all AAA providers from a DNS name (hostname or FQDN) to an IPv4 address configuration. For more information about AAA configuration, see Cisco Application Centric Infrastructure Fundamentals, Release 6.1(x) [\"https://www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/aci-fundamentals/cisco-aci-fundamentals-61x/aaa-60x.html?bookSearch=true\"].\r\n\r\nThere is no workaround for IPv6 configurations.\r\n\r\nWhile this workaround has been deployed and proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
          "product_ids": [
            "CSAFPID-283749:265096",
            "CSAFPID-284173:265096",
            "CSAFPID-284339:265096",
            "CSAFPID-284720:265096",
            "CSAFPID-284792:265096",
            "CSAFPID-285918:265096",
            "CSAFPID-285926:265096",
            "CSAFPID-286113:265096",
            "CSAFPID-286487:265096",
            "CSAFPID-286555:265096",
            "CSAFPID-286879:265096",
            "CSAFPID-287186:265096",
            "CSAFPID-288206:265096",
            "CSAFPID-288243:265096",
            "CSAFPID-289276:265096",
            "CSAFPID-289328:265096",
            "CSAFPID-290585:265096",
            "CSAFPID-290615:265096",
            "CSAFPID-290655:265096",
            "CSAFPID-294782:265096",
            "CSAFPID-294809:265096",
            "CSAFPID-295577:265096",
            "CSAFPID-299959:265096",
            "CSAFPID-300257:265096",
            "CSAFPID-300261:265096",
            "CSAFPID-300266:265096",
            "CSAFPID-300738:265096",
            "CSAFPID-300744:265096",
            "CSAFPID-300940:265096",
            "CSAFPID-301035:265096",
            "CSAFPID-301134:265096",
            "CSAFPID-301160:265096",
            "CSAFPID-301220:265096",
            "CSAFPID-301280:265096",
            "CSAFPID-301282:265096",
            "CSAFPID-301569:265096",
            "CSAFPID-301729:265096",
            "CSAFPID-301742:265096",
            "CSAFPID-302631:265096",
            "CSAFPID-302636:265096",
            "CSAFPID-302689:265096",
            "CSAFPID-302836:265096",
            "CSAFPID-302963:265096",
            "CSAFPID-303022:265096",
            "CSAFPID-303065:265096",
            "CSAFPID-303066:265096",
            "CSAFPID-303136:265096",
            "CSAFPID-303182:265096",
            "CSAFPID-303319:265096",
            "CSAFPID-303335:265096",
            "CSAFPID-303772:265096",
            "CSAFPID-303891:265096",
            "CSAFPID-305298:265096",
            "CSAFPID-305306:265096",
            "CSAFPID-306456:265096",
            "CSAFPID-306562:265096",
            "CSAFPID-306563:265096"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-283749:265096",
            "CSAFPID-284173:265096",
            "CSAFPID-284339:265096",
            "CSAFPID-284720:265096",
            "CSAFPID-284792:265096",
            "CSAFPID-285918:265096",
            "CSAFPID-285926:265096",
            "CSAFPID-286113:265096",
            "CSAFPID-286487:265096",
            "CSAFPID-286555:265096",
            "CSAFPID-286879:265096",
            "CSAFPID-287186:265096",
            "CSAFPID-288206:265096",
            "CSAFPID-288243:265096",
            "CSAFPID-289276:265096",
            "CSAFPID-289328:265096",
            "CSAFPID-290585:265096",
            "CSAFPID-290615:265096",
            "CSAFPID-290655:265096",
            "CSAFPID-294782:265096",
            "CSAFPID-294809:265096",
            "CSAFPID-295577:265096",
            "CSAFPID-299959:265096",
            "CSAFPID-300257:265096",
            "CSAFPID-300261:265096",
            "CSAFPID-300266:265096",
            "CSAFPID-300738:265096",
            "CSAFPID-300744:265096",
            "CSAFPID-300940:265096",
            "CSAFPID-301035:265096",
            "CSAFPID-301134:265096",
            "CSAFPID-301160:265096",
            "CSAFPID-301220:265096",
            "CSAFPID-301280:265096",
            "CSAFPID-301282:265096",
            "CSAFPID-301569:265096",
            "CSAFPID-301729:265096",
            "CSAFPID-301742:265096",
            "CSAFPID-302631:265096",
            "CSAFPID-302636:265096",
            "CSAFPID-302689:265096",
            "CSAFPID-302836:265096",
            "CSAFPID-302963:265096",
            "CSAFPID-303022:265096",
            "CSAFPID-303065:265096",
            "CSAFPID-303066:265096",
            "CSAFPID-303136:265096",
            "CSAFPID-303182:265096",
            "CSAFPID-303319:265096",
            "CSAFPID-303335:265096",
            "CSAFPID-303772:265096",
            "CSAFPID-303891:265096",
            "CSAFPID-305298:265096",
            "CSAFPID-305306:265096",
            "CSAFPID-306456:265096",
            "CSAFPID-306562:265096",
            "CSAFPID-306563:265096"
          ]
        }
      ],
      "title": "Cisco NX-OS Software SNMP Denial of Service Vulnerability"
    }
  ]
}

GHSA-C9VX-X9Q2-FFX8

Vulnerability from github – Published: 2026-02-25 18:31 – Updated: 2026-02-25 18:31

Details

This vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a DoS condition. Note: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv1 or SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.

Severity ?

7.7 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-20048"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-789"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-02-25T17:25:25Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\n\nThis vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries\u0026nbsp;to a specific MIB of an affected device. A successful exploit could allow the attacker to cause a kernel panic on the device, resulting in a reload and a\u0026nbsp;DoS condition.\nNote: This vulnerability affects SNMP versions 1, 2c, and 3. To exploit\u0026nbsp;this vulnerability through SNMPv1 or\u0026nbsp;SNMPv2c, the attacker must have a valid read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.",
  "id": "GHSA-c9vx-x9q2-ffx8",
  "modified": "2026-02-25T18:31:38Z",
  "published": "2026-02-25T18:31:38Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-20048"
    },
    {
      "type": "WEB",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-20048 (GCVE-0-2026-20048)

FKIE_CVE-2026-20048

CISCO-SA-NXOS-DSNMP-CNN39UH

GHSA-C9VX-X9Q2-FFX8

Tags

Sightings

Nomenclature