Cisco NX-OS vulnerabilities
239 known vulnerabilities affecting cisco/nx-os.
Total CVEs
239
CISA KEV
2
actively exploited
Public exploits
1
Exploited in wild
3
Severity breakdown
CRITICAL8HIGH104MEDIUM125LOW2
Vulnerabilities
Page 10 of 12
CVE-2017-3804MEDIUMCVSS 6.1v7.1\(3\)n1\(2.1\)v7.1\(3\)n1\(3.12\)+2 more2017-01-26
CVE-2017-3804 [MEDIUM] CVE-2017-3804: A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of
A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device. Switches in the FabricPath domain crash because of an __inst_001__isis_fabricpath hap reset when processing a cr
nvd
CVE-2016-6457MEDIUMCVSS 6.5v11.2\(2g\)v11.2\(2h\)+13 more2016-11-19
CVE-2016-6457 [MEDIUM] CWE-119 CVE-2016-6457: A vulnerability in the Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infras
A vulnerability in the Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure (ACI) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability affects Cisco Nexus 9000 Series Leaf Switches (TOR) - ACI Mode and Cisco Application Policy Infrastr
nvd
CVE-2016-1453CRITICALCVSS 9.8v4.1.\(2\)v4.1.\(3\)+44 more2016-10-06
CVE-2016-1453 [CRITICAL] CWE-119 CVE-2016-1453: Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through
Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long parameters in a packet header, aka Bug ID CSCuy95701.
nvd
CVE-2015-6392HIGHCVSS 7.5v4.1.\(2\)v4.1.\(3\)+103 more2016-10-06
CVE-2015-6392 [HIGH] CWE-399 CVE-2015-6392: Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700,
Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted IPv4 DHCP packets to the (1) DHCPv4 relay agent or (2) smart relay agent, aka Bug IDs CSCuq24603, CSCur93159, CSCus21693, and CSCut76171.
nvd
CVE-2015-6393HIGHCVSS 7.5v4.2\(1\)n1\(1\)v4.2\(1\)n2\(1\)+102 more2016-10-06
CVE-2015-6393 [HIGH] CWE-399 CVE-2015-6393: Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 3000, 3500, 5000, 5500, 5600, 6000,
Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via malformed IPv4 DHCP packets to the DHCPv4 relay agent, aka Bug IDs CSCuq39250, CSCus21733, CSCus21739, CSCut76171, and CSCux67182.
nvd
CVE-2015-0721HIGHCVSS 8.0v4.1.\(2\)v4.1.\(3\)+176 more2016-10-06
CVE-2015-0721 [HIGH] CWE-264 CVE-2015-0721: Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 55
Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection negotiation, aka Bug IDs CSCum35502, CSCuw78669, CSCuw79754, an
nvd
CVE-2016-1454MEDIUMCVSS 6.5fixed in 6.0\(2\)u6\(7\)≥ 6.1, < 7.0\(3\)i4\(1\)+9 more2016-10-06
CVE-2016-1454 [MEDIUM] CWE-20 CVE-2016-1454: Cisco NX-OS 4.0 through 7.3 and 11.0 through 11.2 on 1000v, 2000, 3000, 3500, 5000, 5500, 5600, 6000
Cisco NX-OS 4.0 through 7.3 and 11.0 through 11.2 on 1000v, 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device reload) by leveraging a peer relationship to send a crafted BGP UPDATE message, aka Bug IDs CSCuq77105 and CSCux11417.
nvd
CVE-2016-1455HIGHCVSS 7.5v7.0\(3\)v7.0\(3\)i1\(1\)+3 more2016-10-05
CVE-2016-1455 [HIGH] CWE-200 CVE-2016-1455: Cisco NX-OS before 7.0(3)I2(2e) and 7.0(3)I4 before 7.0(3)I4(1) has an incorrect iptables local-inte
Cisco NX-OS before 7.0(3)I2(2e) and 7.0(3)I4 before 7.0(3)I4(1) has an incorrect iptables local-interface configuration, which allows remote attackers to obtain sensitive information via TCP or UDP traffic, aka Bug ID CSCuz05365.
nvd
CVE-2016-1465MEDIUMCVSS 6.5v4.0\(4\)sv1\(1\)v4.0\(4\)sv1\(2\)+19 more2016-07-28
CVE-2016-1465 [MEDIUM] CWE-399 CVE-2016-1465: Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attac
Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi hypervisor crash and purple screen) via a crafted Cisco Discovery Protocol packet that triggers an out-of-bounds memory access, aka Bug ID CSCuw57985.
nvd
CVE-2016-1409HIGHCVSS 7.5Exploitedv1.0\(1.110a\)v1.0\(1e\)+254 more2016-05-29
CVE-2016-1409 [HIGH] CWE-20 CVE-2016-1409: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in May 2016.
nvd
CVE-2016-1351HIGHCVSS 7.5v4.1\(2\)v4.1\(3\)+40 more2016-03-26
CVE-2016-1351 [HIGH] CWE-20 CVE-2016-1351: The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 th
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to cause a denial of service (device reload) via a crafted header in a packet, aka Bug ID CSCuu64279.
nvd
CVE-2015-0718HIGHCVSS 7.5vbase2016-03-03
CVE-2015-0718 [HIGH] CWE-399 CVE-2015-0718: Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Comp
Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WAIT TCP session, aka Bug ID CSCub70579.
nvd
CVE-2016-1341CRITICALCVSS 9.8v7.0\(1\)n1\(1\)v7.0\(1\)n1\(3\)+1 more2016-02-24
CVE-2016-1341 [CRITICAL] CWE-255 CVE-2016-1341: Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3), and 7.0(4)N1(1) on Nexus 2000 Fabric Extender devices has a bl
Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3), and 7.0(4)N1(1) on Nexus 2000 Fabric Extender devices has a blank root password, which allows local users to gain privileges via unspecified vectors, aka Bug ID CSCur22079.
nvd
CVE-2016-1302HIGHCVSS 8.8vbase2016-02-07
CVE-2016-1302 [HIGH] CWE-284 CVE-2016-1302: Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1
Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1.1 before 1.1(1j) and Nexus 9000 ACI Mode switches with software before 11.0(3h) and 11.1 before 11.1(1j) allow remote authenticated users to bypass intended RBAC restrictions via crafted REST requests, aka Bug ID CSCut12998.
nvd
CVE-2015-6394MEDIUMCVSS 4.9v5.2\(9\)n1\(1\)2015-12-05
CVE-2015-6394 [MEDIUM] CWE-399 CVE-2015-6394: The kernel in Cisco NX-OS 5.2(9)N1(1) on Nexus 5000 devices allows local users to cause a denial of
The kernel in Cisco NX-OS 5.2(9)N1(1) on Nexus 5000 devices allows local users to cause a denial of service (device crash) via crafted USB parameters, aka Bug ID CSCus89408.
nvd
CVE-2015-6308MEDIUMCVSS 4.0v6.0\(2\)u6\(0.46\)2015-10-02
CVE-2015-6308 [MEDIUM] CWE-399 CVE-2015-6308: Cisco NX-OS 6.0(2)U6(0.46) on N3K devices allows remote authenticated users to cause a denial of ser
Cisco NX-OS 6.0(2)U6(0.46) on N3K devices allows remote authenticated users to cause a denial of service (temporary SNMP outage) via an SNMP request for an OID that does not exist, aka Bug ID CSCuw36684.
nvd
CVE-2015-6295MEDIUMCVSS 4.8v6.1\(2\)i3\(4\)v7.0\(3\)i1\(1\)2015-09-20
CVE-2015-6295 [MEDIUM] CWE-399 CVE-2015-6295: Cisco NX-OS 6.1(2)I3(4) and 7.0(3)I1(1) on Nexus 9000 (N9K) devices allows remote attackers to cause
Cisco NX-OS 6.1(2)I3(4) and 7.0(3)I1(1) on Nexus 9000 (N9K) devices allows remote attackers to cause a denial of service (CPU consumption or control-plane instability) or trigger unintended traffic forwarding via a Layer 2 packet with a reserved VLAN number, aka Bug ID CSCuw13560.
nvd
CVE-2015-6277MEDIUMCVSS 6.1v7.3\(0\)zd\(0.47\)v4.1\(2\)e1+2 more2015-09-02
CVE-2015-6277 [MEDIUM] CWE-399 CVE-2015-6277: The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexu
The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus 4000 devices 4.1(2)E1, Nexus 9000 devices 7.3(0)ZD(0.61), and MDS 9000 devices 7.0(0)HSK(0.353) and SAN-OS NX-OS on MDS 9000 devices 7.0(0)HSK(0.353) allows remote attackers to cause a denial of service (ARP process
nvd
CVE-2015-4296MEDIUMCVSS 5.0v6.0\(2\)a6\(1\)2015-08-19
CVE-2015-4296 [MEDIUM] CWE-399 CVE-2015-4296: Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software 6.0(2)A6(1) allows remote attacker
Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software 6.0(2)A6(1) allows remote attackers to cause a denial of service (Java process restart) via crafted connections to the Java application, aka Bug ID CSCut87006.
nvd
CVE-2015-4323MEDIUMCVSS 6.1v6.2\(14\)s1v6.0\(2\)u5\(1.41\)+4 more2015-08-19
CVE-2015-4323 [MEDIUM] CWE-119 CVE-2015-4323: Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 d
Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 devices 6.0(2)U5(1.41), 7.0(3)I2(0.373), and 7.3(0)ZN(0.83); Nexus 4000 devices 4.1(2)E1(1b); Nexus 7000 devices 6.2(14)S1; Nexus 9000 devices 7.3(0)ZN(0.9); and MDS 9000 devices 6.2 (13) and 7.1(0)ZN(91.99) and MDS SAN-OS 7.1(0)ZN(91.99) allows remote a
nvd