CVE-2020-3175
26.02.2020, 17:15
A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An attacker could exploit this vulnerability by sending traffic to the management interface (mgmt0) of an affected device at very high rates. An exploit could allow the attacker to cause unexpected behaviors such as high CPU usage, process crashes, or even full system reboots of an affected device.Enginsight
| Vendor | Product | Version |
|---|---|---|
| cisco | nx-os | 6.2\(1\) |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-664 - Improper Control of a Resource Through its LifetimeThe software does not maintain or incorrectly maintains control over a resource throughout its lifetime of creation, use, and release.
- CWE-400 - Uncontrolled Resource ConsumptionThe software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.