CVE-2017-3879Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco Nx-os

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
5.3MEDIUMNVD
EPSS
0.9%
top 24.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Nx-os
Timeline
PublishedMar 17
Latest updateMay 17

Description

A Denial of Service vulnerability in the remote login functionality for Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. The attacker could use either a Telnet or an SSH client for the remote login attempt. Affected Products: This vulnerability affects Cisco Nexus 9000 Series Switc

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

NVDcisco/nx-os7.0\(3\)i3\(0.170\), 8.3\(0\)cv\(0.342\), 8.3\(0\)cv\(0.345\)+2

🔴Vulnerability Details

2
GHSA
GHSA-88f9-c76f-fhv6: A Denial of Service vulnerability in the remote login functionality for Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow a2022-05-17
CVEList
CVE-2017-3879: A Denial of Service vulnerability in the remote login functionality for Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow a2017-03-17

📋Vendor Advisories

1
Cisco
Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability2017-03-15
CVE-2017-3879 — Cisco Nx-os vulnerability | cvebase