Vulnerabilities > Cisco > NX OS

DATE CVE VULNERABILITY TITLE RISK
2021-08-25 CVE-2021-1586 Insufficient Verification of Data Authenticity vulnerability in Cisco Nx-Os 15.0(2E)/15.1(1H)
A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-345
8.6
2021-08-25 CVE-2021-1587 Interpretation Conflict vulnerability in Cisco Nx-Os
A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software, known as NGOAM, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-436
8.6
2021-08-25 CVE-2021-1588 Out-of-bounds Read vulnerability in Cisco Nx-Os 7.0(3)I7(9)/8.4(1)/9.3(7)
A vulnerability in the MPLS Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-125
8.6
2021-08-25 CVE-2021-1590 Unspecified vulnerability in Cisco Nx-Os and Unified Computing System
A vulnerability in the implementation of the system login block-for command for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a login process to unexpectedly restart, causing a denial of service (DoS) condition.
network
low complexity
cisco
5.3
2021-08-25 CVE-2021-1591 Unspecified vulnerability in Cisco Nx-Os 9.3(4)
A vulnerability in the EtherChannel port subscription logic of Cisco Nexus 9500 Series Switches could allow an unauthenticated, remote attacker to bypass access control list (ACL) rules that are configured on an affected device.
network
low complexity
cisco
5.3
2021-08-25 CVE-2021-1523 Missing Release of Resource after Effective Lifetime vulnerability in Cisco Nx-Os 13.2(3N)/14.2(4I)
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause a queue wedge on a leaf switch, which could result in critical control plane traffic to the device being dropped.
network
low complexity
cisco CWE-772
8.6
2021-02-24 CVE-2021-1387 Unspecified vulnerability in Cisco Nx-Os and Unified Computing System
A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco
8.6
2021-02-24 CVE-2021-1368 Unspecified vulnerability in Cisco Nx-Os and Unified Computing System
A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an affected device.
low complexity
cisco
8.8
2021-02-24 CVE-2021-1367 Unspecified vulnerability in Cisco Nx-Os 9.3(5)
A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
low complexity
cisco
4.3
2021-02-24 CVE-2021-1361 Unspecified vulnerability in Cisco Nx-Os 9.3(5)/9.3(6)
A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode that are running Cisco NX-OS Software could allow an unauthenticated, remote attacker to create, delete, or overwrite arbitrary files with root privileges on the device.
network
low complexity
cisco
critical
9.1