CVE-2017-3878Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco Nx-os

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources
Severity
5.3MEDIUMNVD
OSV6.1
EPSS
0.9%
top 24.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Nx-os
Timeline
PublishedMar 17
Latest updateMay 17

Description

A Denial of Service vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. Affected Products: This vulnerability affects Cisco Nexus 9000 Series Switches that are running Cisco NX-OS Software and are configured to allow rem

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

NVDcisco/nx-os7.0\(3\)i3\(0.170\)

🔴Vulnerability Details

3
GHSA
GHSA-f862-pggf-w7pj: A Denial of Service vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could a2022-05-17
OSV
libapache2-mod-auth-mellon vulnerabilities2020-10-22
CVEList
CVE-2017-3878: A Denial of Service vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could a2017-03-17

📋Vendor Advisories

1
Cisco
Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability2017-03-15
CVE-2017-3878 — Cisco Nx-os vulnerability | cvebase