Cisco Security Advisory - Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability

Started by Netwörkheäd, April 02, 2022, 06:11:23 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

April 02, 2022, 06:11:23 PM
Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability

<p><strong>February 23, 2022 Update: </strong>After further investigation, Cisco&nbsp;determined that an additional fix was necessary to completely address this vulnerability. The initial fix allowed an attacker to cause high CPU utilization on an affected device, which could impact user traffic. See the <a href="#fs">Fixed Software</a> section of this advisory for updated information about the fixed releases.</p>

<p>A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco&nbsp;Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition.</p>
<p>This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition.&nbsp;</p>
<p>Cisco&nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.</p>
<p>This advisory is available at the following link:<br><a href="https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM" target="_blank" rel="noopener">https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM</a></p>
<p>This advisory is part of the August 2021 Cisco&nbsp;FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see <a href="https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-74640" rel="nofollow">Cisco&nbsp;Event Response: August 2021 Cisco&nbsp;FXOS and NX-OS Software Security Advisory Bundled Publication</a>.</p>

     
         
Security Impact Rating:  High
   
   
       
CVE: CVE-2021-1586
Source: Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability
Let's not argue. Let's network!
Print
Go Up Pages1
User actions