A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device.
The vulnerability exists because the affected software insufficiently validates Cisco Fabric Services packets. An attacker could exploit this vulnerability by sending a crafted Cisco Fabric Services packet to an affected device. A successful exploit could allow the attacker to force a NULL pointer dereference and cause a DoS condition.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-fx-os-fabric-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-fx-os-fabric-dos”]
This advisory is part of the June 2018 Cisco FXOS and NX-OS Software Security Advisory Collection, which includes 24 Cisco Security Advisories that describe 24 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: June 2018 Cisco FXOS and NX-OS Software Security Advisory Collection [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-67770”].
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | cisco_nx-os_software | 5.2 | cpe:2.3:a:cisco:cisco_nx-os_software:5.2:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 6.1 | cpe:2.3:a:cisco:cisco_nx-os_software:6.1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 4.2(1)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:4.2\(1\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 4.2(1)n2 | cpe:2.3:a:cisco:cisco_nx-os_software:4.2\(1\)n2:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(2)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(2\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(2)n2 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(2\)n2:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(3)a1 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(3\)a1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(3)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(3\)n1:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(3)n2 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(3\)n2:*:*:*:*:*:*:* |
cisco | cisco_nx-os_software | 5.0(3)u1 | cpe:2.3:a:cisco:cisco_nx-os_software:5.0\(3\)u1:*:*:*:*:*:*:* |