All the vulnerabilites related to Cisco - Nexus 1000V Switch for VMware vSphere
cve-2019-1599
Vulnerability from cvelistv5
Published
2019-03-07 20:00
Modified
2024-11-19 19:15
Severity ?
EPSS score ?
Summary
Cisco NX-OS Software Netstack Denial of Service Vulnerability
References
▼ | URL | Tags |
---|---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-netstack | vendor-advisory, x_refsource_CISCO | |
http://www.securityfocus.com/bid/107342 | vdb-entry, x_refsource_BID |
Impacted products
Vendor | Product | Version | |||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Cisco | Nexus 1000V Switch for Microsoft Hyper-V |
Version: unspecified < 5.2(1)SM3(2.1) |
||||||||||||||||||||||||||||||||||||||||
|
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T18:20:28.406Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "20190306 Cisco NX-OS Software Netstack Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO", "x_transferred" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-netstack" }, { "name": "107342", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107342" } ], "title": "CVE Program Container" }, { "metrics": [ { "other": { "content": { "id": "CVE-2019-1599", "options": [ { "Exploitation": "none" }, { "Automatable": "yes" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "timestamp": "2024-11-19T17:25:19.239562Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-11-19T19:15:41.039Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Nexus 1000V Switch for Microsoft Hyper-V", "vendor": "Cisco", "versions": [ { "lessThan": "5.2(1)SM3(2.1)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 1000V Switch for VMware vSphere", "vendor": "Cisco", "versions": [ { "lessThan": "5.2(1)SV3(4.1a)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(6)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "9.2(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3500 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "6.0(2)A8(11)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.0(3)I7(6)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "9.2(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3600 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)F3(5)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "9.2(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 5500, 5600, and 6000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.1(5)N1(1b)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.3(5)N1(1)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 7000 and 7700 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "6.2(22)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.3(3)D1(1)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "8.2(3)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "8.3(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(6)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "9.2(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9500 R-Series Line Cards and Fabric Modules", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)F3(5)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "9.2(2)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "UCS 6200 and 6300 Series Fabric Interconnect", "vendor": "Cisco", "versions": [ { "lessThan": "3.2(3j)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "4.0(2a)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "UCS 6400 Series Fabric Interconnect", "vendor": "Cisco", "versions": [ { "lessThan": "4.0(2a)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] } ], "datePublic": "2019-03-06T00:00:00", "descriptions": [ { "lang": "en", "value": "A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to an issue with allocating and freeing memory buffers in the network stack. An attacker could exploit this vulnerability by sending crafted TCP streams to an affected device in a sustained way. A successful exploit could cause the network stack of an affected device to run out of available buffers, impairing operations of control plane and management plane protocols, resulting in a DoS condition. Note: This vulnerability can be triggered only by traffic that is destined to an affected device and cannot be exploited using traffic that transits an affected device. Nexus 1000V Switch for Microsoft Hyper-V is affected in versions prior to 5.2(1)SM3(2.1). Nexus 1000V Switch for VMware vSphere is affected in versions prior to 5.2(1)SV3(4.1a). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(6) and 9.2(2). Nexus 3500 Platform Switches are affected in versions prior to 6.0(2)A8(11), 7.0(3)I7(6), and 9.2(2). Nexus 3600 Platform Switches are affected in versions prior to 7.0(3)F3(5) and 9.2(2). Nexus 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.1(5)N1(1b) and 7.3(5)N1(1). Nexus 7000 and 7700 Series Switches are affected in versions prior to 6.2(22. Nexus 9500 R-Series Line Cards and Fabric Modules are affected in versions prior to 7.0(3)F3(5) and 9.2(2). UCS 6200 and 6300 Series Fabric Interconnect are affected in versions prior to 3.2(3j) and 4.0(2a). UCS 6400 Series Fabric Interconnect are affected in versions prior to 4.0(2a)." } ], "exploits": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "metrics": [ { "cvssV3_0": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-399", "description": "CWE-399", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-11T09:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco" }, "references": [ { "name": "20190306 Cisco NX-OS Software Netstack Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-netstack" }, { "name": "107342", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107342" } ], "source": { "advisory": "cisco-sa-20190306-nxos-netstack", "defect": [ [ "CSCvk55013", "CSCvm53108", "CSCvm53112", "CSCvm53113", "CSCvm53114", "CSCvm53115", "CSCvm53116", "CSCvm53125", "CSCvm53128" ] ], "discovery": "INTERNAL" }, "title": "Cisco NX-OS Software Netstack Denial of Service Vulnerability", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2019-03-06T16:00:00-0800", "ID": "CVE-2019-1599", "STATE": "PUBLIC", "TITLE": "Cisco NX-OS Software Netstack Denial of Service Vulnerability" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Nexus 1000V Switch for Microsoft Hyper-V", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "5.2(1)SM3(2.1)" } ] } }, { "product_name": "Nexus 1000V Switch for VMware vSphere", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "5.2(1)SV3(4.1a)" } ] } }, { "product_name": "Nexus 3000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(6)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "9.2(2)" } ] } }, { "product_name": "Nexus 3500 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "6.0(2)A8(11)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(6)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "9.2(2)" } ] } }, { "product_name": "Nexus 3600 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)F3(5)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "9.2(2)" } ] } }, { "product_name": "Nexus 5500, 5600, and 6000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.1(5)N1(1b)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.3(5)N1(1)" } ] } }, { "product_name": "Nexus 7000 and 7700 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "6.2(22)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.3(3)D1(1)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "8.2(3)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "8.3(2)" } ] } }, { "product_name": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(6)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "9.2(2)" } ] } }, { "product_name": "Nexus 9500 R-Series Line Cards and Fabric Modules", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)F3(5)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "9.2(2)" } ] } }, { "product_name": "UCS 6200 and 6300 Series Fabric Interconnect", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "3.2(3j)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "4.0(2a)" } ] } }, { "product_name": "UCS 6400 Series Fabric Interconnect", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "4.0(2a)" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to an issue with allocating and freeing memory buffers in the network stack. An attacker could exploit this vulnerability by sending crafted TCP streams to an affected device in a sustained way. A successful exploit could cause the network stack of an affected device to run out of available buffers, impairing operations of control plane and management plane protocols, resulting in a DoS condition. Note: This vulnerability can be triggered only by traffic that is destined to an affected device and cannot be exploited using traffic that transits an affected device. Nexus 1000V Switch for Microsoft Hyper-V is affected in versions prior to 5.2(1)SM3(2.1). Nexus 1000V Switch for VMware vSphere is affected in versions prior to 5.2(1)SV3(4.1a). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(6) and 9.2(2). Nexus 3500 Platform Switches are affected in versions prior to 6.0(2)A8(11), 7.0(3)I7(6), and 9.2(2). Nexus 3600 Platform Switches are affected in versions prior to 7.0(3)F3(5) and 9.2(2). Nexus 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.1(5)N1(1b) and 7.3(5)N1(1). Nexus 7000 and 7700 Series Switches are affected in versions prior to 6.2(22. Nexus 9500 R-Series Line Cards and Fabric Modules are affected in versions prior to 7.0(3)F3(5) and 9.2(2). UCS 6200 and 6300 Series Fabric Interconnect are affected in versions prior to 3.2(3j) and 4.0(2a). UCS 6400 Series Fabric Interconnect are affected in versions prior to 4.0(2a)." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": { "baseScore": "8.6", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-399" } ] } ] }, "references": { "reference_data": [ { "name": "20190306 Cisco NX-OS Software Netstack Denial of Service Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-netstack" }, { "name": "107342", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107342" } ] }, "source": { "advisory": "cisco-sa-20190306-nxos-netstack", "defect": [ [ "CSCvk55013", "CSCvm53108", "CSCvm53112", "CSCvm53113", "CSCvm53114", "CSCvm53115", "CSCvm53116", "CSCvm53125", "CSCvm53128" ] ], "discovery": "INTERNAL" } } } }, "cveMetadata": { "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2019-1599", "datePublished": "2019-03-07T20:00:00Z", "dateReserved": "2018-12-06T00:00:00", "dateUpdated": "2024-11-19T19:15:41.039Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-1594
Vulnerability from cvelistv5
Published
2019-03-06 22:00
Modified
2024-11-21 19:44
Severity ?
EPSS score ?
Summary
Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability
References
▼ | URL | Tags |
---|---|---|
http://www.securityfocus.com/bid/107325 | vdb-entry, x_refsource_BID | |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth | vendor-advisory, x_refsource_CISCO |
Impacted products
Vendor | Product | Version | |||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Cisco | Nexus 1000V Switch for VMware vSphere |
Version: unspecified < 5.2(1)SV3(1.4b) |
||||||||||||||||||||||||
|
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T18:20:28.331Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "107325", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO", "x_transferred" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ], "title": "CVE Program Container" }, { "metrics": [ { "other": { "content": { "id": "CVE-2019-1594", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "timestamp": "2024-11-21T19:00:18.826849Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-11-21T19:44:08.732Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Nexus 1000V Switch for VMware vSphere", "vendor": "Cisco", "versions": [ { "lessThan": "5.2(1)SV3(1.4b)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3500 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 2000, 5500, 5600, and 6000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.3(5)N1(1)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.1(5)N1(1b)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 7000 and 7700 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "8.2(3)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Fabric Switches in ACI Mode", "vendor": "Cisco", "versions": [ { "lessThan": "13.2(1l)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] } ], "datePublic": "2019-03-06T00:00:00", "descriptions": [ { "lang": "en", "value": "A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication Protocol over LAN (EAPOL) frames. An attacker could exploit this vulnerability by sending a crafted EAPOL frame to an interface on the targeted device. A successful exploit could allow the attacker to cause the Layer 2 (L2) forwarding process to restart multiple times, leading to a system-level restart of the device and a DoS condition. Note: This vulnerability affects only NX-OS devices configured with 802.1X functionality. Cisco Nexus 1000V Switch for VMware vSphere devices are affected in versions prior to 5.2(1)SV3(1.4b). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(4). Nexus 3500 Platform Switches are affected in versions prior to 7.0(3)I7(4). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.3(5)N1(1) and 7.1(5)N1(1b). Nexus 7000 and 7700 Series Switches are affected in versions prior to 8.2(3). Nexus 9000 Series Fabric Switches in ACI Mode are affected in versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected in versions prior to 7.0(3)I7(4)." } ], "exploits": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "metrics": [ { "cvssV3_0": { "attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-264", "description": "CWE-264", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-09T10:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco" }, "references": [ { "name": "107325", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ], "source": { "advisory": "cisco-sa-20190306-nx-os-lan-auth", "defect": [ [ "CSCvi93959", "CSCvj22443", "CSCvj22446", "CSCvj22447", "CSCvj22449" ] ], "discovery": "INTERNAL" }, "title": "Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2019-03-06T16:00:00-0800", "ID": "CVE-2019-1594", "STATE": "PUBLIC", "TITLE": "Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Nexus 1000V Switch for VMware vSphere", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "5.2(1)SV3(1.4b)" } ] } }, { "product_name": "Nexus 3000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 3500 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 2000, 5500, 5600, and 6000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.3(5)N1(1)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.1(5)N1(1b)" } ] } }, { "product_name": "Nexus 7000 and 7700 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "8.2(3)" } ] } }, { "product_name": "Nexus 9000 Series Fabric Switches in ACI Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "13.2(1l)" } ] } }, { "product_name": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication Protocol over LAN (EAPOL) frames. An attacker could exploit this vulnerability by sending a crafted EAPOL frame to an interface on the targeted device. A successful exploit could allow the attacker to cause the Layer 2 (L2) forwarding process to restart multiple times, leading to a system-level restart of the device and a DoS condition. Note: This vulnerability affects only NX-OS devices configured with 802.1X functionality. Cisco Nexus 1000V Switch for VMware vSphere devices are affected in versions prior to 5.2(1)SV3(1.4b). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(4). Nexus 3500 Platform Switches are affected in versions prior to 7.0(3)I7(4). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.3(5)N1(1) and 7.1(5)N1(1b). Nexus 7000 and 7700 Series Switches are affected in versions prior to 8.2(3). Nexus 9000 Series Fabric Switches in ACI Mode are affected in versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected in versions prior to 7.0(3)I7(4)." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": { "baseScore": "7.4", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-264" } ] } ] }, "references": { "reference_data": [ { "name": "107325", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ] }, "source": { "advisory": "cisco-sa-20190306-nx-os-lan-auth", "defect": [ [ "CSCvi93959", "CSCvj22443", "CSCvj22446", "CSCvj22447", "CSCvj22449" ] ], "discovery": "INTERNAL" } } } }, "cveMetadata": { "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2019-1594", "datePublished": "2019-03-06T22:00:00Z", "dateReserved": "2018-12-06T00:00:00", "dateUpdated": "2024-11-21T19:44:08.732Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }