Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2024-20321

HIGH
Published 2024-02-28T16:14:28.992Z
Actions:

CVSS Score

V3.1
8.6
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01
0.000
probability
of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25
Exploit Probability
Percentile: 0.193
Higher than 19.3% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED

Impact Metrics

Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Description

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue. An attacker could exploit this vulnerability by sending large amounts of network traffic with certain characteristics through an affected device. A successful exploit could allow the attacker to cause eBGP neighbor sessions to be dropped, leading to a DoS condition in the network.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Cisco

Cisco NX-OS Software

Affected Versions:

7.0(3)F1(1) 7.0(3)F2(1) 7.0(3)F2(2) 7.0(3)F3(1) 7.0(3)F3(2) 7.0(3)F3(3) 7.0(3)F3(3a) 7.0(3)F3(4) 7.0(3)F3(3c) 7.0(3)F3(5) 9.2(1) 9.2(2) 9.2(2t) 9.2(3) 9.2(4) 9.2(2v) 9.3(1) 9.3(2) 9.3(3) 9.3(4) 9.3(5) 9.3(6) 9.3(7) 9.3(7a) 9.3(8) 9.3(9) 9.3(10) 9.3(11) 9.3(12) 10.1(1) 10.1(2) 10.1(2t) 10.2(1) 10.2(1q) 10.2(2) 10.2(3) 10.2(3t) 10.2(4) 10.2(5) 10.2(3v) 10.2(6) 10.3(1) 10.3(2) 10.3(3) 10.3(99w) 10.3(99x) 10.3(4a) 10.4(1)
cisco

nx-os

Affected Versions:

7.0\(3\)f1\(1\) 7.0\(3\)f2\(1\) 7.0\(3\)f2\(2\) 7.0\(3\)f3\(1\) 7.0\(3\)f3\(2\) 7.0\(3\)f3\(3\) 7.0\(3\)f3\(3a\) 7.0\(3\)f3\(4\) 7.0\(3\)f3\(3c\) 7.0\(3\)f3\(5\) 9.2\(1\) 9.2\(2\) 9.2\(2t\) 9.2\(3\) 9.2\(4\) 9.2\(2v\) 9.3\(1\) 9.3\(2\) 9.3\(3\) 9.3\(4\) 9.3\(5\) 9.3\(6\) 9.3\(7\) 9.3\(7a\) 9.3\(8\) 9.3\(9\) 9.3\(10\) 9.3\(11\) 9.3\(12\) 10.1\(1\) 10.1\(2\) 10.1\(2t\) 10.2\(1\) 10.2\(1q\) 10.2\(2\) 10.2\(3\) 10.2\(3t\) 10.2\(4\) 10.2\(5\) 10.2\(3v\) 10.2\(6\) 10.3\(1\) 10.3\(2\) 10.3\(3\) 10.3\(99w\) 10.3\(99x\) 10.3\(4a\) 10.4\(1\)

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ebgp-dos-L3QCwVJ
Published: 2024-02-28T16:14:28.992Z
Last Modified: 2024-08-16T20:12:16.247Z
Copied to clipboard!