Cisco Nx-Os Software 7.3 D1 vulnerabilities

CVE-2020-3174 [MEDIUM] CWE-345 CVE-2020-3174: A vulnerability in the anycast gateway feature of Cisco NX-OS Software could allow an unauthenticate A vulnerability in the anycast gateway feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a device to learn invalid Address Resolution Protocol (ARP) entries. The ARP entries are for nonlocal IP addresses for the subnet. The vulnerability is due to improper validation of a received gratuitous ARP (GARP) request.

CVE-2020-3170 [MEDIUM] CWE-20 CVE-2020-3170: A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could exploit this vulnerability by sending a crafted HTTP reque