5.3.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

CWE-399

NVD

Published: 2015-08-19

Updated: 2017-09-21

Summary

The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service (tmp/*config file creation, memory consumption, and device hang) via unspecified vectors, aka Bug ID CSCut93842.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco NX OS 5.1.3 Cisco NX OS 5.3.0	2
Hardware	Cisco Cisco Nexus 93120Tx - Cisco Nexus 93128Tx - Cisco Nexus 9332Pq - Cisco Nexus 9336Pq ACI Spine - Cisco Nexus 9372Px - Cisco Nexus 9372Tx - Cisco Nexus 9396Px - Cisco Nexus 9396Tx - Cisco Nexus 9504 - Cisco Nexus 9508 - Cisco Nexus 9516 -	11

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References