Denial of Service Vulnerability in Cisco Nexus 9000 Series Leaf Switches
CVE-2016-6457

6.5MEDIUM

Key Information:

Vendor
Cisco
Status
Cisco Nexus 9000 Series Platform Leaf Switches For Application Centric Infrastructure (aci) 11.2(2x) Through 12.0(1x)
Vendor
CVE Published:
19 November 2016

Summary

A vulnerability exists in the Cisco Nexus 9000 Series Leaf Switches for Application Centric Infrastructure that could enable an unauthenticated, adjacent attacker to execute a denial of service (DoS) attack. This issue affects specific versions of the Cisco Nexus 9000 Series Leaf Switches operating in ACI mode and the Cisco Application Policy Infrastructure Controller (APIC), potentially leading to significant disruptions in network services. Organizations using affected devices should prioritize remediation measures to maintain network integrity.

Affected Version(s)

Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure (ACI) 11.2(2x) through 12.0(1x) Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure (ACI) 11.2(2x) through 12.0(1x)

References

http://www.securityfocus.com/bid/94077
vdb-entryx_refsource_BID
https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037185
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.