Skip to main content

Nexus 3016 Firmware CVE-2022-20823

HIGH
Buffer Over-read (CWE-126)
2022-08-25 psirt@cisco.com
Cisco Denial Of Service Buffer Overflow Nexus 3016 Firmware Nexus 3016Q Firmware Nexus 3048 Firmware Nexus 3064 Firmware Nexus 3064 32T Firmware Nexus 3064 T Firmware Nexus 3064 X Firmware Nexus 3064T Firmware Nexus 3064X Firmware Nexus 3100 Firmware Nexus 3100 V Firmware Nexus 3100 Z Firmware Nexus 3100V Firmware Nexus 31108Pc V Firmware Nexus 31108Pv V Firmware Nexus 31108Tc V Firmware Nexus 31128Pq Firmware Nexus 3132C Z Firmware Nexus 3132Q Firmware Nexus 3132Q V Firmware Nexus 3132Q X Firmware Nexus 3132Q X 3132Q Xl Firmware Nexus 3132Q Xl Firmware Nexus 3164Q Firmware Nexus 3172 Firmware Nexus 3172Pq Firmware Nexus 3172Pq Xl Firmware Nexus 3172Pq Pq Xl Firmware Nexus 3172Tq Firmware Nexus 3172Tq 32T Firmware Nexus 3172Tq Xl Firmware Nexus 3200 Firmware Nexus 3232C Firmware Nexus 3264C E Firmware Nexus 3264Q Firmware Nexus 3400 Firmware Nexus 3408 S Firmware Nexus 34180Yc Firmware Nexus 34200Yc Sm Firmware Nexus 3432D S Firmware Nexus 3464C Firmware Nexus 3500 Firmware Nexus 3500 Platform Firmware Nexus 3524 Firmware Nexus 3524 X Firmware Nexus 3524 X Xl Firmware Nexus 3524 Xl Firmware Nexus 3548 Firmware Nexus 3548 X Firmware Nexus 3548 X Xl Firmware Nexus 3548 Xl Firmware Nexus 3600 Firmware Nexus 36180Yc R Firmware Nexus 3636C R Firmware Nexus 5500 Firmware Nexus 5548P Firmware Nexus 5548Up Firmware Nexus 5596T Firmware Nexus 5596Up Firmware Nexus 5600 Firmware Nexus 56128P Firmware Nexus 5624Q Firmware Nexus 5648Q Firmware Nexus 5672Up Firmware Nexus 5672Up 16G Firmware Nexus 5696Q Firmware Nexus 6000 Firmware Nexus 6001 Firmware Nexus 6001P Firmware Nexus 6001T Firmware Nexus 6004 Firmware Nexus 6004X Firmware Nexus 7000 Firmware Nexus 7000 10 Slot Firmware Nexus 7000 18 Slot Firmware Nexus 7000 4 Slot Firmware Nexus 7000 9 Slot Firmware Nexus 7000 Supervisor 1 Firmware Nexus 7000 Supervisor 2 Firmware Nexus 7000 Supervisor 2E Firmware Nexus 7004 Firmware Nexus 7009 Firmware Nexus 7010 Firmware Nexus 7018 Firmware Nexus 7700 Firmware Nexus 7700 10 Slot Firmware Nexus 7700 18 Slot Firmware Nexus 7700 2 Slot Firmware Nexus 7700 6 Slot Firmware Nexus 7700 Supervisor 2E Firmware Nexus 7700 Supervisor 3E Firmware Nexus 7702 Firmware Nexus 7706 Firmware Nexus 7710 Firmware Nexus 7718 Firmware Nexus 9000 Firmware Nexus 9000V Firmware Nexus 9200 Firmware Nexus 92160Yc X Firmware Nexus 9221C Firmware Nexus 92300Yc Firmware Nexus 92304Qc Firmware Nexus 92348Gc X Firmware Nexus 9236C Firmware Nexus 9272Q Firmware Nexus 9300 Firmware Nexus 93108Tc Ex Firmware Nexus 93108Tc Ex 24 Firmware Nexus 93108Tc Fx Firmware Nexus 93108Tc Fx 24 Firmware Nexus 93108Tc Fx3P Firmware Nexus 93120Tx Firmware Nexus 93128 Firmware Nexus 93128Tx Firmware Nexus 9316D Gx Firmware Nexus 93180Lc Ex Firmware Nexus 93180Tc Ex Firmware Nexus 93180Yc Ex Firmware Nexus 93180Yc Ex 24 Firmware Nexus 93180Yc Fx Firmware Nexus 93180Yc Fx 24 Firmware Nexus 93180Yc Fx3 Firmware Nexus 93180Yc Fx3S Firmware Nexus 93216Tc Fx2 Firmware Nexus 93240Yc Fx2 Firmware Nexus 9332C Firmware Nexus 9332Pq Firmware Nexus 93360Yc Fx2 Firmware Nexus 9336C Fx2 Firmware Nexus 9336C Fx2 E Firmware Nexus 9336Pq Firmware Nexus 9348Gc Fxp Firmware Nexus 93600Cd Gx Firmware Nexus 9364C Firmware Nexus 9364C Gx Firmware Nexus 9372Px Firmware Nexus 9372Px E Firmware Nexus 9372Tx Firmware Nexus 9372Tx E Firmware Nexus 9396Px Firmware Nexus 9396Tx Firmware Nexus 9500 Firmware Nexus 9500R Firmware Nexus 9504 Firmware Nexus 9508 Firmware Nexus 9516 Firmware
8.6
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.6 HIGH
AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Aug 25, 2022 - 19:15 nvd
HIGH 8.6

DescriptionNVD

A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete input validation of specific OSPFv3 packets. An attacker could exploit this vulnerability by sending a malicious OSPFv3 link-state advertisement (LSA) to an affected device. A successful exploit could allow the attacker to cause the OSPFv3 process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. Note: The OSPFv3 feature is disabled by default. To exploit this vulnerability, an attacker must be able to establish a full OSPFv3 neighbor state with an affected device. For more information about exploitation conditions, see the Details section of this advisory.

AnalysisAI

A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-126. A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete input validation of specific OSPFv3 packets. An attacker could exploit this vulnerability by sending a malicious OSPFv3 link-state advertisement (LSA) to an affected device. A successful exploit could allow the attacker to cause the OSPFv3 process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. Note: The OSPFv3 feature is disabled by default. To exploit this vulnerability, an attacker must be able to establish a full OSPFv3 neighbor state with an affected device. For more information about exploitation conditions, see the Details section of this advisory. Affected products include: Cisco Nexus 3016 Firmware, Cisco Nexus 3016Q Firmware, Cisco Nexus 3048 Firmware, Cisco Nexus 3064 Firmware, Cisco Nexus 3064-32T Firmware. Version information: version 3.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2022-20823 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy