Cisco NX-OS Multiple Vulnerabilities
Last Update Date:
7 Oct 2016 16:38
Release Date:
7 Oct 2016
2817
Views
RISK: High Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Cisco NX-OS.
A remote user can execute arbitrary code on the target system.
A remote authenticated user can bypass security restrictions.
A remote user can cause the target service to crash.
A remote user can cause the target system to reload. A remote user can obtain potentially sensitive information on the target system.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Nexus 1000V Series Switches
- Nexus 2000 Series Fabric Extenders
- Nexus 3000 Series Switches
- Nexus 3500 Platform Switches
- Nexus 4000 Series Switches
- Nexus 5000 Series Switches
- Nexus 5500 Platform Switches
- Nexus 5600 Platform Switches
- Nexus 6000 Series Switches
- Nexus 7000 Series Switches
- Nexus 7700 Series Switches
- Nexus 9000 Series Switches in Application Centric Infrastructure (ACI) mode
- Nexus 9000 Series Switches in NX-OS mode
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
The vendor has issued fixes:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-otv
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp1
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp2
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-bgp
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-n9kinfo
Vulnerability Identifier
Source
Related Link
Share with