VYPR

NX-OS Software

by Cisco Systems, Inc.

CVEs (136)

  • CVE-2018-0301CriJun 20, 2018
    risk 0.65cvss 9.8epss 0.18

    A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to craft a packet to the management interface on an affected system, causing a buffer overflow. The vulnerability is due to incorrect input validation in the…

  • CVE-2021-1361CriFeb 24, 2021
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode that are running Cisco NX-OS Software could allow an unauthenticated, remote attacker to create,…

  • CVE-2018-0314CriJun 20, 2018
    risk 0.64cvss 9.8epss 0.06

    A vulnerability in the Cisco Fabric Services (CFS) component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability exists because the affected software insufficiently…

  • CVE-2018-0312CriJun 20, 2018
    risk 0.64cvss 9.8epss 0.06

    A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulnerability exists because…

  • CVE-2018-0308CriJun 20, 2018
    risk 0.64cvss 9.8epss 0.06

    A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. The vulnerability exists because the affected software…

  • CVE-2018-0304CriJun 20, 2018
    risk 0.64cvss 9.8epss 0.09

    A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code as root. The…

  • CVE-2022-20650HigFeb 23, 2022
    risk 0.58cvss 8.8epss 0.15

    A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker…

  • CVE-2018-0293HigJun 20, 2018
    risk 0.58cvss 8.8epss 0.05

    A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI commands that should be restricted for a nonadministrative user. The attacker would have to possess valid user credentials for the device.…

  • CVE-2022-20824HigAug 25, 2022
    risk 0.57cvss 8.8epss 0.00

    A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. This…

  • CVE-2022-20624HigFeb 23, 2022
    risk 0.57cvss 8.6epss 0.12

    A vulnerability in the Cisco Fabric Services over IP (CFSoIP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of incoming…

  • CVE-2022-20623HigFeb 23, 2022
    risk 0.57cvss 8.6epss 0.12

    A vulnerability in the rate limiter for Bidirectional Forwarding Detection (BFD) traffic of Cisco NX-OS Software for Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause BFD traffic to be dropped on an affected device. This vulnerability is…

  • CVE-2021-1368HigFeb 24, 2021
    risk 0.57cvss 8.8epss 0.00

    A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an…

  • CVE-2020-3415HigAug 27, 2020
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the Data Management Engine (DME) of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an affected device. The vulnerability is due to…

  • CVE-2020-3217HigJun 3, 2020
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a denial of…

  • CVE-2020-3172HigFeb 26, 2020
    risk 0.57cvss 8.8epss 0.02

    A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on an affected device. The vulnerability…

  • CVE-2019-1901HigJul 31, 2019
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an adjacent, unauthenticated attacker to cause a denial of service (DoS) condition or execute arbitrary code…

  • CVE-2019-1599HigMar 7, 2019
    risk 0.57cvss 8.6epss 0.14

    A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to an issue with allocating and freeing memory buffers in the network stack.…

  • CVE-2018-0395HigOct 17, 2018
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device unexpectedly reloads. The vulnerability is…

  • CVE-2018-0303HigJun 21, 2018
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the Cisco Discovery Protocol component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on the affected device. The vulnerability…

  • CVE-2018-0330HigJun 20, 2018
    risk 0.57cvss 8.8epss 0.03

    A vulnerability in the NX-API management application programming interface (API) in devices running, or based on, Cisco NX-OS Software could allow an authenticated, remote attacker to execute commands with elevated privileges. The vulnerability is due to a failure to properly…

Page 1 of 7