CVE-2020-3175Improper Control of a Resource Through its Lifetime in Cisco Nx-os Software 5.0

CWE-664Improper Control of a Resource Through its LifetimeCWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
8.6HIGHNVD
EPSS
2.6%
top 14.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Nx-os Software 5.0Cisco Nx-os
Timeline
PublishedFeb 26
Latest updateMay 24

Description

A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An attacker could exploit this vulnerability by sending traffic to the management interface (mgmt0) of an affected device at very high rates. An exploit could allow the attacker to cause unexpected behavio

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

CVEListV5cisco/cisco_nx-os_software_5.0unspecifiedn/a
NVDcisco/nx-os6.2\(1\)

🔴Vulnerability Details

2
GHSA
GHSA-wmrh-48xq-4cvm: A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated,2022-05-24
CVEList
Cisco MDS 9000 Series Multilayer Switches Denial of Service Vulnerability2020-02-26

📋Vendor Advisories

1
Cisco
Cisco MDS 9000 Series Switches Denial of Service Vulnerability2020-02-26
CVE-2020-3175 — Cisco Nx-os Software 5.0 vulnerability | cvebase