CVE-2015-6308 — Cisco Nx-os vulnerability

CWE-3994 documents4 sources

Severity

4.0MEDIUMNVD

EPSS

0.4%

top 40.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Nx-os

Timeline

PublishedOct 2

Latest updateMay 17

Description

Cisco NX-OS 6.0(2)U6(0.46) on N3K devices allows remote authenticated users to cause a denial of service (temporary SNMP outage) via an SNMP request for an OID that does not exist, aka Bug ID CSCuw36684.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/nx-os6.0\(2\)u6\(0.46\)

🔴Vulnerability Details

GHSA

GHSA-x56f-xphh-4cf6: Cisco NX-OS 6↗2022-05-17

▶

CVEList

CVE-2015-6308: Cisco NX-OS 6↗2015-10-02

▶

📋Vendor Advisories

Cisco

Cisco Nexus 3000 Series Switches SNMP Non-Existent OID Denial of Service Vulnerability↗2015-09-30

▶