Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Product filter

Nx-os Subscribe

Filter

218 total CVE
CVE Vendors Products Updated CVSS
CVE-2012-4099 1 Cisco 1 Nx-os 2016-09-22 4.3
The BGP implementation in Cisco NX-OS does not properly filter AS paths, which allows remote attackers to cause a denial of service (BGP service reset and resync) via a malformed UPDATE message, aka Bug ID CSCtn13065.
CVE-2012-4097 1 Cisco 1 Nx-os 2016-09-22 4.3
The BGP implementation in Cisco NX-OS does not properly filter segment types in AS paths, which allows remote attackers to cause a denial of service (BGP service reset) via a malformed UPDATE message, aka Bug ID CSCtn13043.
CVE-2014-3295 1 Cisco 1 Nx-os 2016-09-08 4.8
The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309.
CVE-2014-8013 1 Cisco 1 Nx-os 2015-11-04 4.9
The TACACS+ command-authorization implementation in Cisco NX-OS allows local users to cause a denial of service (device reload) via a long CLI command, aka Bug ID CSCur54182.
CVE-2015-0658 1 Cisco 1 Nx-os 2015-10-22 7.9
The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary commands as root by sending crafted response packets...
CVE-2013-6975 1 Cisco 1 Nx-os 2015-10-13 4.6
Directory traversal vulnerability in the command-line interface in Cisco NX-OS 6.2(2a) and earlier allows local users to read arbitrary files via unspecified input, aka Bug ID CSCul05217.
CVE-2015-0686 1 Cisco 1 Nx-os 2015-09-29 6.3
The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000 devices, when a Reset High Availability (HA) policy is configured, allows remote authenticated users to cause a denial of service (device reload) via unspecified vectors, aka Bug ID...
CVE-2014-2201 1 Cisco 7 Mds 9100, Nexus 7000 18-slot, Mds 9000 and 4 more 2014-05-27 7.8
The Message Transfer Service (MTS) in Cisco NX-OS before 6.2(7) on MDS 9000 devices and 6.0 before 6.0(2) on Nexus 7000 devices allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a large volume of...
CVE-2014-2200 1 Cisco 1 Nx-os 2014-05-27 7.1
Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via an SSH session to a management interface, aka Bug ID...
CVE-2013-1191 1 Cisco 5 Nexus 7000 18-slot, Nexus 7000, Nx-os and 2 more 2014-05-27 7.1
Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management...
CVE-2014-0684 1 Cisco 5 Nexus 7000 18-slot, Nexus 7000, Nx-os and 2 more 2014-05-07 4.6
Cisco NX-OS 6.2(2) on Nexus 7000 switches allows local users to cause a denial of service via crafted sed input, aka Bug ID CSCui56136.
CVE-2012-4135 1 Cisco 1 Nx-os 2013-12-23 4.6
Directory traversal vulnerability in filesys in Cisco NX-OS 6.1(2) and earlier allows local users to access arbitrary files via crafted command-line arguments during a delete action, aka Bug IDs CSCty07270, CSCty07271, CSCty07273, and CSCty07275.
CVE-2012-4131 1 Cisco 1 Nx-os 2013-12-23 4.6
Directory traversal vulnerability in tar in Cisco NX-OS allows local users to access arbitrary files via crafted command-line arguments, aka Bug IDs CSCty07157, CSCty07159, CSCty07162, and CSCty07164.
CVE-2013-5566 1 Cisco 1 Nx-os 2013-11-14 5.0
Cisco NX-OS 5.0 and earlier on MDS 9000 devices allows remote attackers to cause a denial of service (supervisor CPU consumption) via Authentication Header (AH) authentication in a Virtual Router Redundancy Protocol (VRRP) frame, aka Bug ID CSCte27874.
CVE-2013-6683 1 Cisco 1 Nx-os 2013-11-14 6.1
The IPv6 implementation in Cisco NX-OS does not properly handle neighbor-table adjacencies, which allows remote attackers to cause a denial of service (NS processing outage) via a series of malformed packets, aka Bug ID CSCtd15904.
CVE-2013-5496 1 Cisco 1 Nx-os 2013-10-16 6.3
Open Network Environment Platform (ONEP) in Cisco NX-OS allows remote authenticated users to cause a denial of service (network-element reload) via a crafted packet, aka Bug ID CSCui51551.
CVE-2012-4121 1 Cisco 1 Nx-os 2013-10-16 6.8
Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs CSCts56559, CSCts56565, CSCts56570, and CSCts56574.
CVE-2013-1121 1 Cisco 1 Nx-os 2013-09-20 5.4
The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service (device reload) via a crafted AS path set, aka Bug ID CSCuf49554.
CVE-2013-3400 1 Cisco 2 Nexus 1000v, Nx-os 2013-08-20 6.8
The license-installation module in Cisco NX-OS on Nexus 1000V devices allows local users to execute arbitrary commands via crafted "install license" arguments, aka Bug ID CSCuh30824.
CVE-2013-0149 1 Cisco 7 Ios, Asa 5500, Ios Xe and 4 more 2013-08-13 5.8
The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly validate Link State Advertisement (LSA) type 1...