Published: 25/04/2013 Updated: 30/10/2018
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

Cisco NX-OS on Nexus 5500 devices 4.x and 5.x prior to 5.0(3)N2(2), Nexus 3000 devices 5.x prior to 5.0(3)U3(2), and Unified Computing System (UCS) 6200 devices prior to 2.0(1w) allows remote attackers to cause a denial of service (device reload) by sending a jumbo packet to the management interface, aka Bug IDs CSCtx17544, CSCts10593, and CSCtx95389.

Affected Products

Vendor Product Versions
CiscoNexus 3016q-
CiscoNexus 3048-
CiscoNexus 3064t-
CiscoNexus 3064x-
CiscoNexus 3548-
CiscoNexus 5548p-
CiscoNexus 5548up-
CiscoNexus 5596up-
CiscoUnified Computing System 6248up Fabric Interconnect-
CiscoUnified Computing System 6296up Fabric Interconnect-
CiscoNx-os4.0, 4.0(0)n1(1a), 4.0(0)n1(2), 4.0(0)n1(2a), 4.0(1a)n1(1), 4.0(1a)n1(1a), 4.0(1a)n2(1), 4.0(1a)n2(1a), 4.0(4)sv1(1), 4.0(4)sv1(2), 4.0(4)sv1(3), 4.0(4)sv1(3a), 4.0(4)sv1(3b), 4.0(4)sv1(3c), 4.0(4)sv1(3d), 4.1(3)n1(1), 4.1(3)n1(1a), 4.1(3)n2(1), 4.1(3)n2(1a), 4.1.(2), 4.1.(3), 4.1.(4), 4.1.(5), 4.2, 4.2(1), 4.2(1)n1(1), 4.2(1)n2(1), 4.2(1)n2(1a), 4.2(1)sv1(4), 4.2(1)sv1(4a), 4.2(1)sv1(5.1), 4.2(2), 4.2(3), 4.2(4), 4.2(6), 4.2(8), 4.2.(2a), 5.0, 5.0(2), 5.0(2)n1(1), 5.0(2)n2(1), 5.0(2)n2(1a), 5.0(2a), 5.0(3), 5.0(3)n1(1), 5.0(3)n1(1a), 5.0(3)n1(1b), 5.0(3)n1(1c), 5.0(3)n2(1), 5.0(3)n2(2), 5.0(3)n2(2a), 5.0(3)n2(2b), 5.0(3)u1(1b), 5.0(3)u2(1), 5.0(3)u2(2), 5.0(3)u2(2a), 5.0(3)u2(2b), 5.0(3)u2(2c), 5.0(3)u2(2d), 5.0(3)u3(1)
CiscoUnified Computing System Infrastructure And Unified Computing System Software1.0(2k), 1.1(1m), 1.2(1d), 1.3(1c), 1.3(1m), 1.3(1n), 1.3(1o), 1.3(1p), 1.3(1q), 1.3(1t), 1.3(1w), 1.3(1y), 1.4(1j), 1.4(1m), 1.4(3i), 1.4(3l), 1.4(3m), 1.4(3q), 1.4(3s), 1.4(3u), 1.4(3y), 1.4(4f), 1.4(4g), 1.4(4i), 1.4(4j), 1.4(4k), 2.0(1q), 2.0(1s), 2.0(1t)

Vendor Advisories

Cisco Nexus, Cisco Unified Computing System (UCS), Cisco MDS 9000 Series Multilayer Switches, and Cisco 1000 Series Connected Grid Routers (CGR) are all based on the Cisco NX-OS operating system  These products are affected by one or more of the following vulnerabilities: Multiple Cisco Discovery Protocol Vulnerabilities in Cisco NX-OS-Based ...