7.8

CVE-2011-0355

EPSS 1.79%
Veröffentlicht 17.02.2011 18:00:03
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802.1Q tagged packet over an access vEthernet port, aka Cisco Bug ID CSCtj17451.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VMware ≫ Esx Version4.0

VMware ≫ Esx Version4.1

VMware ≫ Esxi Version4.0

VMware ≫ Esxi Version4.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.79%	0.81

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://lists.vmware.com/pipermail/security-announce/2011/000118.html

http://secunia.com/advisories/43084

Vendor Advisory

http://securityreason.com/securityalert/8090

http://securitytracker.com/id?1025030

http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3_c/release/notes/n1000v_rn.html

http://www.osvdb.org/70837

http://www.securityfocus.com/archive/1/516259/100/0/threaded

http://www.securityfocus.com/bid/46247

http://www.vmware.com/security/advisories/VMSA-2011-0002.html

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0314

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0315

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65217

https://nvd.nist.gov/vuln/detail/CVE-2011-0355

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-0355

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-0355

EUVD