Unrated severityNVD Advisory· Published Sep 14, 2011· Updated Apr 29, 2026

CVE-2011-2581

Description

The ACL implementation in Cisco NX-OS 5.0(2) and 5.0(3) before 5.0(3)N2(1) on Nexus 5000 series switches, and NX-OS before 5.0(3)U1(2a) on Nexus 3000 series switches, does not properly handle comments in conjunction with deny statements, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by sending packets, aka Bug IDs CSCto09813 and CSCtr61490.

Affected products

Cisco Systems, Inc./Nx Os10 versions
cpe:2.3:a:cisco:nx-os:5.0\(2\):*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:cisco:nx-os:5.0\(2\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:nx-os:5.0\(3\)n1\(1\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:nx-os:5.0\(3\)n1\(1a\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:nx-os:5.0\(3\)n1\(1b\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*range: <=5.0\(3\)u1\(2\)
- cpe:2.3:o:cisco:nx-os:5.0\(3\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:nx-os:5.0\(3\)n1\(1c\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:nx-os:5.0\(3\)u1\(1a\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:nx-os:5.0\(3\)u1\(1b\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:nx-os:5.0\(3\)u1\(1d\):*:*:*:*:*:*:*
Cisco Systems, Inc./Nexus 3000
cpe:2.3:h:cisco:nexus_3000:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Nexus 5000
cpe:2.3:h:cisco:nexus_5000:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080b9250c.shtmlnvdVendor Advisory
secunia.com/advisories/45883nvd
www.securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000