8.6

CVE-2024-20321

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

 This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue. An attacker could exploit this vulnerability by sending large amounts of network traffic with certain characteristics through an affected device. A successful exploit could allow the attacker to cause eBGP neighbor sessions to be dropped, leading to a DoS condition in the network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoNx-os Version7.0(3)f1(1)
CiscoNx-os Version7.0(3)f2(1)
CiscoNx-os Version7.0(3)f2(2)
CiscoNx-os Version7.0(3)f3(1)
CiscoNx-os Version7.0(3)f3(2)
CiscoNx-os Version7.0(3)f3(3)
CiscoNx-os Version7.0(3)f3(3a)
CiscoNx-os Version7.0(3)f3(3c)
CiscoNx-os Version7.0(3)f3(4)
CiscoNx-os Version7.0(3)f3(5)
CiscoNx-os Version9.2(1)
CiscoNx-os Version9.2(2)
CiscoNx-os Version9.2(2t)
CiscoNx-os Version9.2(2v)
CiscoNx-os Version9.2(3)
CiscoNx-os Version9.2(4)
CiscoNx-os Version9.3(1)
CiscoNx-os Version9.3(2)
CiscoNx-os Version9.3(3)
CiscoNx-os Version9.3(4)
CiscoNx-os Version9.3(5)
CiscoNx-os Version9.3(6)
CiscoNx-os Version9.3(7)
CiscoNx-os Version9.3(7a)
CiscoNx-os Version9.3(8)
CiscoNx-os Version9.3(9)
CiscoNx-os Version9.3(10)
CiscoNx-os Version9.3(11)
CiscoNx-os Version9.3(12)
CiscoNx-os Version10.1(1)
CiscoNx-os Version10.1(2)
CiscoNx-os Version10.1(2t)
CiscoNx-os Version10.2(1)
CiscoNx-os Version10.2(1q)
CiscoNx-os Version10.2(2)
CiscoNx-os Version10.2(3)
CiscoNx-os Version10.2(3t)
CiscoNx-os Version10.2(3v)
CiscoNx-os Version10.2(4)
CiscoNx-os Version10.2(5)
CiscoNx-os Version10.2(6)
CiscoNx-os Version10.3(1)
CiscoNx-os Version10.3(2)
CiscoNx-os Version10.3(3)
CiscoNx-os Version10.3(4a)
CiscoNx-os Version10.3(99w)
CiscoNx-os Version10.3(99x)
CiscoNx-os Version10.4(1)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.71% 0.486
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.6 3.9 4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
psirt@cisco.com 8.6 3.9 4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.

CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ebgp-dos-L3QCwVJ
Vendor Advisory