Vulnerabilities > Cisco > NX OS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-25 | CVE-2021-1586 | Insufficient Verification of Data Authenticity vulnerability in Cisco Nx-Os 15.0(2E)/15.1(1H) A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. | 8.6 |
| 2021-08-25 | CVE-2021-1587 | Interpretation Conflict vulnerability in Cisco Nx-Os A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software, known as NGOAM, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
| 2021-08-25 | CVE-2021-1588 | Out-of-bounds Read vulnerability in Cisco Nx-Os 7.0(3)I7(9)/8.4(1)/9.3(7) A vulnerability in the MPLS Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
| 2021-08-25 | CVE-2021-1590 | Unspecified vulnerability in Cisco Nx-Os and Unified Computing System A vulnerability in the implementation of the system login block-for command for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a login process to unexpectedly restart, causing a denial of service (DoS) condition. | 5.3 |
| 2021-08-25 | CVE-2021-1591 | Unspecified vulnerability in Cisco Nx-Os 9.3(4) A vulnerability in the EtherChannel port subscription logic of Cisco Nexus 9500 Series Switches could allow an unauthenticated, remote attacker to bypass access control list (ACL) rules that are configured on an affected device. | 5.3 |
| 2021-08-25 | CVE-2021-1523 | Missing Release of Resource after Effective Lifetime vulnerability in Cisco Nx-Os 13.2(3N)/14.2(4I) A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped. | 8.6 |
| 2021-02-24 | CVE-2021-1387 | Memory Leak vulnerability in Cisco Nx-Os and Unified Computing System A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 8.6 |
| 2021-02-24 | CVE-2021-1368 | Out-of-bounds Write vulnerability in Cisco Nx-Os and Unified Computing System A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an affected device. | 8.8 |
| 2021-02-24 | CVE-2021-1367 | Improper Input Validation vulnerability in Cisco Nx-Os 9.3(5) A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. | 4.3 |
| 2021-02-24 | CVE-2021-1361 | Files or Directories Accessible to External Parties vulnerability in Cisco Nx-Os 9.3(5)/9.3(6) A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode that are running Cisco NX-OS Software could allow an unauthenticated, remote attacker to create, delete, or overwrite arbitrary files with root privileges on the device. | 9.1 |