Multiple Cisco Nexus devices are prone to a denial-of-service vulnerability.
An attacker can exploit this issue to cause the device to crash, denying service to legitimate users.
The vendor has released updates. Please see the referenced advisory for details.
Cisco NX-OS 4.2.x before 4.2(1)SV1(5.1) on Nexus 1000v series switches 4.x and 5.0.x before 5.0(2)N1(1) on Nexus 5000 series switches and 4.2.x before 4.2.8, 5.0.x before 5.0.5, and 5.1.x before 5.1.1 on Nexus 7000 series switches allows remote attackers to cause a denial of service (netstack process crash and device reload) via a malformed IP packet, aka Bug IDs CSCti23447, CSCti49507, and CSCtj01991.
The following devices are affected: Cisco Nexus 1000V Cisco Nexus 5000 Cisco Nexus 7000
Check the version from SNMP sysdesc
Updated on 2015-03-25
- Cisco IOS XR Software Fragmented Packets Processing Denial of Service Vulnerability
- Multiple Cisco Products Multiple Remote Buffer Overflow Vulnerabilities
- Cisco Prime LAN Management Solution Remote Command Execution Vulnerability
- Cisco IOS XR Software IPv6 Packet Handling Denial of Service Vulnerability
- Cisco VG248 login password is blank