CVE-2015-6392Cisco Nx-os vulnerability

CWE-3994 documents4 sources
Severity
7.5HIGHNVD
EPSS
1.3%
top 19.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Nx-os
Timeline
PublishedOct 6
Latest updateMay 17

Description

Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted IPv4 DHCP packets to the (1) DHCPv4 relay agent or (2) smart relay agent, aka Bug IDs CSCuq24603, CSCur93159, CSCus21693, and CSCut76171.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDcisco/nx-os105 versions+104

🔴Vulnerability Details

2
GHSA
GHSA-jp89-g36w-6g62: Cisco NX-OS 42022-05-17
CVEList
CVE-2015-6392: Cisco NX-OS 42016-10-06

📋Vendor Advisories

1
Cisco
Cisco NX-OS Software Crafted DHCPv4 Packet Denial of Service Vulnerability2016-10-05
CVE-2015-6392 — Cisco Nx-os vulnerability | cvebase