Lucene search

CiscoCISCO-SA-20200205-NXOS-CDP-RCE

HistoryFeb 05, 2020 - 4:00 p.m.

Cisco NX-OS Software Cisco Discovery Protocol Remote Code Execution Vulnerability

2020-02-0516:00:00

tools.cisco.com

0.001 Low

EPSS

Percentile

46.7%

JSON

A vulnerability in the Cisco Discovery Protocol implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected device.

The vulnerability exists because the Cisco Discovery Protocol parser does not properly validate input for certain fields in a Cisco Discovery Protocol message. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. An successful exploit could allow the attacker to cause a stack overflow, which could allow the attacker to execute arbitrary code with administrative privileges on an affected device.

Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-nxos-cdp-rce [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-nxos-cdp-rce”]

Affected configurations

Vulners

Node

cisconx_osMatch7.0\(3\)i7

cisconx_osMatch9.2

cisconx_osMatch7.0\(3\)ia7

cisconx_osMatch7.0\(3\)im7

cisconx_osMatch9.3

cisconexus_3000Matchany

cisconexus_9000Matchany

cisconx_osMatch14.0

cisconx_osMatch14.1

cisconx_osMatch14.2

cisconexus_9000Matchany

cisconx_osMatch7.0\(3\)i7\(1\)

cisconx_osMatch7.0\(3\)i7\(2\)

cisconx_osMatch7.0\(3\)i7\(3\)

cisconx_osMatch7.0\(3\)i7\(4\)

cisconx_osMatch7.0\(3\)i7\(5\)

cisconx_osMatch7.0\(3\)i7\(5a\)

cisconx_osMatch7.0\(3\)i7\(3z\)

cisconx_osMatch7.0\(3\)i7\(6\)

cisconx_osMatch7.0\(3\)i7\(6z\)

cisconx_osMatch7.0\(3\)i7\(7\)

cisconx_osMatch9.2\(1\)

cisconx_osMatch9.2\(2\)

cisconx_osMatch9.2\(2t\)

cisconx_osMatch9.2\(3\)

cisconx_osMatch9.2\(3y\)

cisconx_osMatch9.2\(4\)

cisconx_osMatch9.2\(2v\)

cisconx_osMatch7.0\(3\)ia7\(1\)

cisconx_osMatch7.0\(3\)ia7\(2\)

cisconx_osMatch7.0\(3\)im7\(2\)

cisconx_osMatch9.3\(1\)

cisconx_osMatch9.3\(1z\)

cisconx-os_for_nexus_5600_platform_switchesMatch3000_series_switches

cisconx-os_for_nexus_5600_platform_switchesMatch9000_series_switches

cisconx_osMatch14.0\(1h\)

cisconx_osMatch14.0\(2c\)

cisconx_osMatch14.0\(3d\)

cisconx_osMatch14.0\(3c\)

cisconx_osMatch14.1\(1i\)

cisconx_osMatch14.1\(1j\)

cisconx_osMatch14.1\(1k\)

cisconx_osMatch14.1\(1l\)

cisconx_osMatch14.1\(2g\)

cisconx_osMatch14.1\(2m\)

cisconx_osMatch14.1\(2o\)

cisconx_osMatch14.1\(2s\)

cisconx_osMatch14.1\(2u\)

cisconx_osMatch14.1\(2w\)

cisconx_osMatch14.2\(1i\)

cisconx-os_for_nexus_5600_platform_switchesMatch9000_series_switches