CVE-2015-0775Cisco MDS 9000 Nx-os vulnerability

CWE-3994 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.2%
top 20.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco MDS 9000 Nx-osCisco Nx-os
Timeline
PublishedJun 12
Latest updateMay 17

Description

The banner (aka MOTD) implementation in Cisco NX-OS 4.1(2)E1(1f) on Nexus 4000 devices, 5.2(1)SV3(2.1) on Nexus 1000V devices, 6.0(2)N2(2) on Nexus 5000 devices, 6.2(11) on MDS 9000 devices, 6.2(12) on Nexus 7000 devices, 7.0(3) on Nexus 9000 devices, and 7.2(0)ZN(99.67) on Nexus 3000 devices allows remote attackers to cause a denial of service (login process reset) via an unspecified terminal-session request during TELNET session setup, aka Bug IDs CSCuo10554, CSCuu75466, CSCuu75471, CSCuu75484

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDcisco/mds_9000_nx-os6.2\(11\)
NVDcisco/nx-os4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-5mfv-779g-c9j3: The banner (aka MOTD) implementation in Cisco NX-OS 42022-05-17
CVEList
CVE-2015-0775: The banner (aka MOTD) implementation in Cisco NX-OS 42015-06-12

📋Vendor Advisories

1
Cisco
Cisco Nexus and Cisco Multilayer Director Switches MOTD Telnet Login Reset Vulnerability2015-06-10
CVE-2015-0775 — Cisco MDS 9000 Nx-os vulnerability | cvebase