CVE-2026-20048Memory Allocation with Excessive Size Value in Cisco Nx-os System Software IN ACI Mode

CWE-789Memory Allocation with Excessive Size Value5 documents5 sources
Severity
7.7HIGHNVD
EPSS
0.2%
top 54.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Nx-os System Software IN ACI Mode
Timeline
PublishedFeb 25

Description

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper processing when parsing SNMP requests. An attacker could exploit this vulnerability by continuously sending SNMP queries to a specific MIB of an affected device. A successful exploit could allow the attacker to cause

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 3.1 | Impact: 4.0

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
Cisco NX-OS Software SNMP Denial of Service Vulnerability2026-02-25
GHSA
GHSA-c9vx-x9q2-ffx8: A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authe2026-02-25

📋Vendor Advisories

1
Cisco
Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability2026-02-25
CVE-2026-20048 — Cisco vulnerability | cvebase