Cisco FXOS and NX-OS Software buffer overflow | CVE-2022-20824
NAME
Cisco FXOS and NX-OS Software buffer overflow
- Platforms Affected:
Cisco Nexus 3000 Series Switches
Cisco MDS 9000 Series Multilayer Switches
Cisco Nexus 6000 Series Switches
Cisco Nexus 7000 Series Switches
Cisco Nexus 5500 Platform Switches
Cisco Nexus 5600 Platform Switches
Cisco UCS 6200 Series Fabric Interconnects
Cisco UCS 6300 Series Fabric Interconnects
Cisco NX-OS Software
Cisco Nexus 9000 Series Switches in standalone NX-OS mode
Cisco FXOS Software
Cisco UCS 6400 Series Fabric Interconnects
Cisco Nexus 1000V Switch for Microsoft Hyper-V
Cisco Nexus 1000V Switch for VMware vSphere
Cisco Firepower 4100 Series
Cisco Firepower 9300 Security Appliances
Cisco Nexus 9000 Series Fabric Switches in ACI mode
Cisco Nexus 1000 Virtual Edge for VMware vSphere - Risk Level:
8.8 - Exploitability:
Unproven - Consequences:
Gain Access
DESCRIPTION
Cisco FXOS and NX-OS Software are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the Cisco Discovery Protocol message. By sending a specially-crafted Cisco Discovery Protocol packet, a remote attacker could overflow a buffer and execute arbitrary code with root privileges or cause the Cisco Discovery Protocol process to crash and restart multiple times.
CVSS 3.0 Information
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
- Access Vector: Adjacent Network
- Access Complexity: Low
- Confidentiality Impact: High
- Integrity Impact: High
- Availability Impact: High
- Remediation Level: Official Fix
MITIGATION
Refer to Cisco Security Advisory cisco-sa-nxos-cdp-dos-ce-wWvPucC9 for patch, upgrade or suggested workaround information. See References.
- Reference Link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cdp-dos-ce-wWvPucC9 - Reference Link:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20824
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on Patreon using the button below
To keep up to date follow us on the below channels.