Skip Ribbon Commands
Skip to main content
Computer Security Incident Response Team of Mauritius (CERT-MU)

VN-2019-21


Cisco NX-OS Software IPv6 Denial of Service Vulnerability
Severity Rating: High
Systems Affected:
This vulnerability affects the following Cisco products if they are running a vulnerable release of Cisco NX-OS Software:
  • Nexus 7000 Series Switches
  • Nexus 7700 Series Switches
Description
A vulnerability has been identified in the IPv6 traffic processing of Cisco NX-OS Software and this could exploited by remote attackers to cause a denial of service condition. The vulnerability is caused due to improper validation of IPv6 traffic sent through an affected device. Successful exploitation of the vulnerability could allow an attacker to send a malformed IPv6 packet through an affected device, thus causing a denial of service (DoS) condition while the netstack process restarts. A sustained attack could lead to a reboot of the device.
Solution
Users are advised to apply updates at the earliest.
More information is available on:
Vendor Information
Cisco
CVE Information
References
Cisco Security Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-ipv6-dos
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis