Unauthenticated Remote Attacker Could Send Traffic Through Blocked Ports

CVE-2024-20291

5.8MEDIUM

Key Information

Vendor: Cisco
Status: Cisco Nx-os Software
Vendor: CVE Published:; 29 February 2024

Badges

👾 Exploit Exists

Summary

A vulnerability in the access control list (ACL) programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to send traffic that should be blocked through an affected device. This vulnerability is due to incorrect hardware programming that occurs when configuration changes are made to port channel member ports. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to access network resources that should be protected by an ACL that was applied on port channel subinterfaces.

Affected Version(s)

Cisco NX-OS Software = 9.3(10)

Cisco NX-OS Software = 9.3(11)

Cisco NX-OS Software = 9.3(12)

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

👾
Exploit exists.
Mar 3, 2024
Vulnerability published.
Feb 29, 2024
Vulnerability Reserved.
Nov 8, 2023

Collectors

NVD DatabaseMitre Database0 Proof of Concept(s)