Vulnerabilities > Cisco > Nexus 9504 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-09-27 CVE-2021-27853 Authentication Bypass by Spoofing vulnerability in multiple products
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers.
low complexity
ieee ietf cisco CWE-290
4.7
2022-08-25 CVE-2022-20823 Out-of-bounds Read vulnerability in Cisco products
A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-125
8.6
2022-08-25 CVE-2022-20824 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device.
low complexity
cisco CWE-787
8.8
2019-05-03 CVE-2019-1804 Insecure Default Initialization of Resource vulnerability in Cisco products
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user.
network
low complexity
cisco CWE-1188
critical
9.8