Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Nx\-Os
(Cisco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 276 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2013-05-29 | CVE-2013-1213 | Cisco NX-OS on the Nexus 1000V does not assign the proper priority to heartbeat messages from a Virtual Ethernet Module (VEM) to a Virtual Supervisor Module (VSM), which allows remote attackers to cause a denial of service (false VEM unavailability report) via a flood of UDP packets, aka Bug ID CSCud14840. | Nexus_1000v, Nx\-Os | N/A | ||
| 2013-05-29 | CVE-2013-1212 | The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof servers, and intercept or modify Virtual Supervisor Module (VSM) to VMware vCenter communication, via a crafted certificate, aka Bug ID CSCud14837. | Nexus_1000v, Nx\-Os | N/A | ||
| 2013-05-29 | CVE-2013-1211 | Cisco NX-OS on the Nexus 1000V does not properly handle authentication for Virtual Ethernet Module (VEM) to Virtual Supervisor Module (VSM) communication, which allows remote attackers to obtain VEM access via (1) spoofed STUN packets or (2) a crafted VMware ESXi instance, aka Bug ID CSCud14832. | Nx\-Os | N/A | ||
| 2013-05-29 | CVE-2013-1210 | Array index error in the Virtual Ethernet Module (VEM) kernel driver for VMware ESXi in Cisco NX-OS on the Nexus 1000V, when STUN debugging is enabled, allows remote attackers to cause a denial of service (ESXi crash and purple screen of death) by sending crafted STUN packets to a VEM, aka Bug ID CSCud14825. | Nx\-Os | N/A | ||
| 2013-05-29 | CVE-2013-1209 | The encryption functionality in the Virtual Supervisor Module (VSM) to Virtual Ethernet Module (VEM) communication component in Cisco NX-OS on the Nexus 1000V does not properly authenticate VSM/VEM packets, which allows remote attackers to disable packet-level encryption and integrity protection via crafted packets, aka Bug ID CSCud14710. | Nx\-Os | N/A | ||
| 2013-05-29 | CVE-2013-1208 | The encryption functionality in Cisco NX-OS on the Nexus 1000V does not properly handle Virtual Supervisor Module (VSM) to Virtual Ethernet Module (VEM) communication, which allows remote attackers to intercept or modify network traffic by leveraging certain Layer 2 or Layer 3 access, aka Bug ID CSCud14691. | Nx\-Os | N/A | ||
| 2014-05-25 | CVE-2013-1191 | Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400. | Nexus_7000, Nexus_7000_10\-Slot, Nexus_7000_18\-Slot, Nexus_7000_9\-Slot, Nx\-Os | N/A | ||
| 2013-04-25 | CVE-2013-1181 | Cisco NX-OS on Nexus 5500 devices 4.x and 5.x before 5.0(3)N2(2), Nexus 3000 devices 5.x before 5.0(3)U3(2), and Unified Computing System (UCS) 6200 devices before 2.0(1w) allows remote attackers to cause a denial of service (device reload) by sending a jumbo packet to the management interface, aka Bug IDs CSCtx17544, CSCts10593, and CSCtx95389. | Nexus_3016q, Nexus_3048, Nexus_3064t, Nexus_3064x, Nexus_3548, Nexus_5548p, Nexus_5548up, Nexus_5596up, Nx\-Os, Unified_computing_system_6248up_fabric_interconnect, Unified_computing_system_6296up_fabric_interconnect, Unified_computing_system_infrastructure_and_unified_computing_system_software | N/A | ||
| 2013-04-25 | CVE-2013-1180 | Buffer overflow in the SNMP implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(5) and 6.x before 6.1(1) and MDS 9000 devices 4.x and 5.x before 5.2(5) allows remote authenticated users to execute arbitrary code via a crafted SNMP request, aka Bug ID CSCtx54822. | Mds_9000, Nexus_7000, Nexus_7000_10\-Slot, Nexus_7000_18\-Slot, Nexus_7000_9\-Slot, Nx\-Os | N/A | ||
| 2013-04-25 | CVE-2013-1179 | Multiple buffer overflows in the (1) SNMP and (2) License Manager implementations in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(5) and 6.x before 6.1(1) and MDS 9000 devices 4.x and 5.x before 5.2(5) allow remote authenticated users to execute arbitrary code via a crafted SNMP request, aka Bug ID CSCtx54830. | Mds_9000, Nexus_7000, Nexus_7000_10\-Slot, Nexus_7000_18\-Slot, Nexus_7000_9\-Slot, Nx\-Os | N/A |