7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.8%
A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption. A successful exploit could allow the attacker to read or modify the traffic that is transmitted between the sites.
Cisco has not released and will not release software updates that address this vulnerability.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(501947);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/01");
script_cve_id("CVE-2023-20185");
script_name(english:"Cisco Nexus 9000 Information Disclosure (CVE-2023-20185)");
script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"A vulnerability in the Cisco ACI Multi-Site CloudSec encryption
feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could
allow an unauthenticated, remote attacker to read or modify intersite
encrypted traffic. This vulnerability is due to an issue with the
implementation of the ciphers that are used by the CloudSec encryption
feature on affected switches. An attacker with an on-path position
between the ACI sites could exploit this vulnerability by intercepting
intersite encrypted traffic and using cryptanalytic techniques to
break the encryption. A successful exploit could allow the attacker to
read or modify the traffic that is transmitted between the sites.
Cisco has not released and will not release software updates that
address this vulnerability.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
# https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?54db6797");
script_set_attribute(attribute:"solution", value:
"Cisco has not released and will not release software updates to address the vulnerability that is described in this advisory.
Customers who are using the Cisco ACI Multi-Site CloudSec encryption feature for the Cisco Nexus 9332C and Nexus 9364C
Switches and the Cisco Nexus N9K-X9736C-FX Line Card are advised to disable this feature and to contact their support
organization to evaluate alternative options, such as performing encryption on the underlying site-to-site connections.
There are no alternatives that provide full encryption for data in transit between sites on current ACI Spine Switches hardware.
When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are
available from the Cisco Security Advisories page, to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware
and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are
advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Please refer to the vendor advisory for more information.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-20185");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(326, 330);
script_set_attribute(attribute:"vuln_publication_date", value:"2023/07/12");
script_set_attribute(attribute:"patch_publication_date", value:"2023/07/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/01/31");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.0%281h%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.0%282c%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.0%283c%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.0%283d%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%281i%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%281j%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%281k%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%281l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282m%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282o%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282s%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282u%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282w%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.1%282x%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%281i%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%281j%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%281l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%282e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%282f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%282g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%283j%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%283l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%283n%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%283q%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%284i%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%284k%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%284o%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%284p%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%285k%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%285l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%285n%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%286d%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%286g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%286h%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%286l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%286o%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287q%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287r%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287s%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287t%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287u%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287v%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:14.2%287w%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.0%281k%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.0%281l%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.0%282e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.0%282h%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.1%281h%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.1%282e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.1%283e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.1%284c%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%281g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%282e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%282f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%282g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%282h%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%283e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%283f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%283g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%284d%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%284e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%284f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%285c%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%285d%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%285e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%286e%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%286g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%287f%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%287g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:15.2%288d%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:16.0%281g%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:16.0%281j%29");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:nx-os:16.0%282h%29");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Tenable.ot");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("tenable_ot_api_integration.nasl");
script_require_keys("Tenable.ot/Cisco");
exit(0);
}
include('tenable_ot_cve_funcs.inc');
get_kb_item_or_exit('Tenable.ot/Cisco');
var asset = tenable_ot::assets::get(vendor:'Cisco');
var vuln_cpes = {
"cpe:/o:cisco:nx-os:14.0%281h%29" :
{"versionEndIncluding" : "14.0%281h%29", "versionStartIncluding" : "14.0%281h%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.0%282c%29" :
{"versionEndIncluding" : "14.0%282c%29", "versionStartIncluding" : "14.0%282c%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.0%283c%29" :
{"versionEndIncluding" : "14.0%283c%29", "versionStartIncluding" : "14.0%283c%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.0%283d%29" :
{"versionEndIncluding" : "14.0%283d%29", "versionStartIncluding" : "14.0%283d%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%281i%29" :
{"versionEndIncluding" : "14.1%281i%29", "versionStartIncluding" : "14.1%281i%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%281j%29" :
{"versionEndIncluding" : "14.1%281j%29", "versionStartIncluding" : "14.1%281j%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%281k%29" :
{"versionEndIncluding" : "14.1%281k%29", "versionStartIncluding" : "14.1%281k%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%281l%29" :
{"versionEndIncluding" : "14.1%281l%29", "versionStartIncluding" : "14.1%281l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282g%29" :
{"versionEndIncluding" : "14.1%282g%29", "versionStartIncluding" : "14.1%282g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282m%29" :
{"versionEndIncluding" : "14.1%282m%29", "versionStartIncluding" : "14.1%282m%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282o%29" :
{"versionEndIncluding" : "14.1%282o%29", "versionStartIncluding" : "14.1%282o%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282s%29" :
{"versionEndIncluding" : "14.1%282s%29", "versionStartIncluding" : "14.1%282s%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282u%29" :
{"versionEndIncluding" : "14.1%282u%29", "versionStartIncluding" : "14.1%282u%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282w%29" :
{"versionEndIncluding" : "14.1%282w%29", "versionStartIncluding" : "14.1%282w%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.1%282x%29" :
{"versionEndIncluding" : "14.1%282x%29", "versionStartIncluding" : "14.1%282x%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%281i%29" :
{"versionEndIncluding" : "14.2%281i%29", "versionStartIncluding" : "14.2%281i%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%281j%29" :
{"versionEndIncluding" : "14.2%281j%29", "versionStartIncluding" : "14.2%281j%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%281l%29" :
{"versionEndIncluding" : "14.2%281l%29", "versionStartIncluding" : "14.2%281l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%282e%29" :
{"versionEndIncluding" : "14.2%282e%29", "versionStartIncluding" : "14.2%282e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%282f%29" :
{"versionEndIncluding" : "14.2%282f%29", "versionStartIncluding" : "14.2%282f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%282g%29" :
{"versionEndIncluding" : "14.2%282g%29", "versionStartIncluding" : "14.2%282g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%283j%29" :
{"versionEndIncluding" : "14.2%283j%29", "versionStartIncluding" : "14.2%283j%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%283l%29" :
{"versionEndIncluding" : "14.2%283l%29", "versionStartIncluding" : "14.2%283l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%283n%29" :
{"versionEndIncluding" : "14.2%283n%29", "versionStartIncluding" : "14.2%283n%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%283q%29" :
{"versionEndIncluding" : "14.2%283q%29", "versionStartIncluding" : "14.2%283q%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%284i%29" :
{"versionEndIncluding" : "14.2%284i%29", "versionStartIncluding" : "14.2%284i%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%284k%29" :
{"versionEndIncluding" : "14.2%284k%29", "versionStartIncluding" : "14.2%284k%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%284o%29" :
{"versionEndIncluding" : "14.2%284o%29", "versionStartIncluding" : "14.2%284o%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%284p%29" :
{"versionEndIncluding" : "14.2%284p%29", "versionStartIncluding" : "14.2%284p%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%285k%29" :
{"versionEndIncluding" : "14.2%285k%29", "versionStartIncluding" : "14.2%285k%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%285l%29" :
{"versionEndIncluding" : "14.2%285l%29", "versionStartIncluding" : "14.2%285l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%285n%29" :
{"versionEndIncluding" : "14.2%285n%29", "versionStartIncluding" : "14.2%285n%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%286d%29" :
{"versionEndIncluding" : "14.2%286d%29", "versionStartIncluding" : "14.2%286d%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%286g%29" :
{"versionEndIncluding" : "14.2%286g%29", "versionStartIncluding" : "14.2%286g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%286h%29" :
{"versionEndIncluding" : "14.2%286h%29", "versionStartIncluding" : "14.2%286h%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%286l%29" :
{"versionEndIncluding" : "14.2%286l%29", "versionStartIncluding" : "14.2%286l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%286o%29" :
{"versionEndIncluding" : "14.2%286o%29", "versionStartIncluding" : "14.2%286o%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287f%29" :
{"versionEndIncluding" : "14.2%287f%29", "versionStartIncluding" : "14.2%287f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287l%29" :
{"versionEndIncluding" : "14.2%287l%29", "versionStartIncluding" : "14.2%287l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287q%29" :
{"versionEndIncluding" : "14.2%287q%29", "versionStartIncluding" : "14.2%287q%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287r%29" :
{"versionEndIncluding" : "14.2%287r%29", "versionStartIncluding" : "14.2%287r%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287s%29" :
{"versionEndIncluding" : "14.2%287s%29", "versionStartIncluding" : "14.2%287s%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287t%29" :
{"versionEndIncluding" : "14.2%287t%29", "versionStartIncluding" : "14.2%287t%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287u%29" :
{"versionEndIncluding" : "14.2%287u%29", "versionStartIncluding" : "14.2%287u%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287v%29" :
{"versionEndIncluding" : "14.2%287v%29", "versionStartIncluding" : "14.2%287v%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:14.2%287w%29" :
{"versionEndIncluding" : "14.2%287w%29", "versionStartIncluding" : "14.2%287w%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.0%281k%29" :
{"versionEndIncluding" : "15.0%281k%29", "versionStartIncluding" : "15.0%281k%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.0%281l%29" :
{"versionEndIncluding" : "15.0%281l%29", "versionStartIncluding" : "15.0%281l%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.0%282e%29" :
{"versionEndIncluding" : "15.0%282e%29", "versionStartIncluding" : "15.0%282e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.0%282h%29" :
{"versionEndIncluding" : "15.0%282h%29", "versionStartIncluding" : "15.0%282h%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.1%281h%29" :
{"versionEndIncluding" : "15.1%281h%29", "versionStartIncluding" : "15.1%281h%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.1%282e%29" :
{"versionEndIncluding" : "15.1%282e%29", "versionStartIncluding" : "15.1%282e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.1%283e%29" :
{"versionEndIncluding" : "15.1%283e%29", "versionStartIncluding" : "15.1%283e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.1%284c%29" :
{"versionEndIncluding" : "15.1%284c%29", "versionStartIncluding" : "15.1%284c%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%281g%29" :
{"versionEndIncluding" : "15.2%281g%29", "versionStartIncluding" : "15.2%281g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%282e%29" :
{"versionEndIncluding" : "15.2%282e%29", "versionStartIncluding" : "15.2%282e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%282f%29" :
{"versionEndIncluding" : "15.2%282f%29", "versionStartIncluding" : "15.2%282f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%282g%29" :
{"versionEndIncluding" : "15.2%282g%29", "versionStartIncluding" : "15.2%282g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%282h%29" :
{"versionEndIncluding" : "15.2%282h%29", "versionStartIncluding" : "15.2%282h%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%283e%29" :
{"versionEndIncluding" : "15.2%283e%29", "versionStartIncluding" : "15.2%283e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%283f%29" :
{"versionEndIncluding" : "15.2%283f%29", "versionStartIncluding" : "15.2%283f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%283g%29" :
{"versionEndIncluding" : "15.2%283g%29", "versionStartIncluding" : "15.2%283g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%284d%29" :
{"versionEndIncluding" : "15.2%284d%29", "versionStartIncluding" : "15.2%284d%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%284e%29" :
{"versionEndIncluding" : "15.2%284e%29", "versionStartIncluding" : "15.2%284e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%284f%29" :
{"versionEndIncluding" : "15.2%284f%29", "versionStartIncluding" : "15.2%284f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%285c%29" :
{"versionEndIncluding" : "15.2%285c%29", "versionStartIncluding" : "15.2%285c%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%285d%29" :
{"versionEndIncluding" : "15.2%285d%29", "versionStartIncluding" : "15.2%285d%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%285e%29" :
{"versionEndIncluding" : "15.2%285e%29", "versionStartIncluding" : "15.2%285e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%286e%29" :
{"versionEndIncluding" : "15.2%286e%29", "versionStartIncluding" : "15.2%286e%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%286g%29" :
{"versionEndIncluding" : "15.2%286g%29", "versionStartIncluding" : "15.2%286g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%287f%29" :
{"versionEndIncluding" : "15.2%287f%29", "versionStartIncluding" : "15.2%287f%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%287g%29" :
{"versionEndIncluding" : "15.2%287g%29", "versionStartIncluding" : "15.2%287g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:15.2%288d%29" :
{"versionEndIncluding" : "15.2%288d%29", "versionStartIncluding" : "15.2%288d%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:16.0%281g%29" :
{"versionEndIncluding" : "16.0%281g%29", "versionStartIncluding" : "16.0%281g%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:16.0%281j%29" :
{"versionEndIncluding" : "16.0%281j%29", "versionStartIncluding" : "16.0%281j%29", "family" : "NXOS"},
"cpe:/o:cisco:nx-os:16.0%282h%29" :
{"versionEndIncluding" : "16.0%282h%29", "versionStartIncluding" : "16.0%282h%29", "family" : "NXOS"}
};
tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | nx-os | 14.0%281h%29 | cpe:/o:cisco:nx-os:14.0%281h%29 |
cisco | nx-os | 14.0%282c%29 | cpe:/o:cisco:nx-os:14.0%282c%29 |
cisco | nx-os | 14.0%283c%29 | cpe:/o:cisco:nx-os:14.0%283c%29 |
cisco | nx-os | 14.0%283d%29 | cpe:/o:cisco:nx-os:14.0%283d%29 |
cisco | nx-os | 14.1%281i%29 | cpe:/o:cisco:nx-os:14.1%281i%29 |
cisco | nx-os | 14.1%281j%29 | cpe:/o:cisco:nx-os:14.1%281j%29 |
cisco | nx-os | 14.1%281k%29 | cpe:/o:cisco:nx-os:14.1%281k%29 |
cisco | nx-os | 14.1%281l%29 | cpe:/o:cisco:nx-os:14.1%281l%29 |
cisco | nx-os | 14.1%282g%29 | cpe:/o:cisco:nx-os:14.1%282g%29 |
cisco | nx-os | 14.1%282m%29 | cpe:/o:cisco:nx-os:14.1%282m%29 |
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.8%