cve-2021-1230
Vulnerability from cvelistv5
Published
2021-02-24 19:30
Modified
2024-11-08 23:39
Severity ?
8.6 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Summary
A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.
References
ykramarz@cisco.comhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSKVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSKVendor Advisory
Impacted products
Vendor Product Version
Cisco Cisco NX-OS System Software in ACI Mode Version: n/a
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T16:02:56.062Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-1230",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-08T20:03:51.718735Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-08T23:39:28.825Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco NX-OS System Software in ACI Mode",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2021-02-24T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-233",
              "description": "CWE-233",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-24T19:30:30",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
        }
      ],
      "source": {
        "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
        "defect": [
          [
            "CSCvr59494"
          ]
        ],
        "discovery": "INTERNAL"
      },
      "title": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "DATE_PUBLIC": "2021-02-24T16:00:00",
          "ID": "CVE-2021-1230",
          "STATE": "PUBLIC",
          "TITLE": "Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco NX-OS System Software in ACI Mode",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cisco"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer."
            }
          ]
        },
        "exploit": [
          {
            "lang": "en",
            "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
          }
        ],
        "impact": {
          "cvss": {
            "baseScore": "8.6",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-233"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK"
            }
          ]
        },
        "source": {
          "advisory": "cisco-sa-n9kaci-bgp-De9dPKSK",
          "defect": [
            [
              "CSCvr59494"
            ]
          ],
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2021-1230",
    "datePublished": "2021-02-24T19:30:30.975897Z",
    "dateReserved": "2020-11-13T00:00:00",
    "dateUpdated": "2024-11-08T23:39:28.825Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-1230\",\"sourceIdentifier\":\"ykramarz@cisco.com\",\"published\":\"2021-02-24T20:15:12.817\",\"lastModified\":\"2024-11-21T05:43:53.000\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad con el protocolo Border Gateway Protocol (BGP) para Cisco Nexus 9000 Series Fabric Switches en modo Application Centric Infrastructure (ACI) podr\u00eda permitir a un atacante remoto no autenticado causar la ca\u00edda de un proceso de enrutamiento, lo que podr\u00eda conllevar a una condici\u00f3n de denegaci\u00f3n de servicio (DoS).\u0026#xa0;Esta vulnerabilidad es debido a un problema con la instalaci\u00f3n de rutas tras recibir una actualizaci\u00f3n de BGP.\u0026#xa0;Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de una actualizaci\u00f3n de BGP dise\u00f1ada a un dispositivo afectado.\u0026#xa0;Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante causar que el proceso de enrutamiento se bloquee, lo que podr\u00eda hacer que el dispositivo se recargue.\u0026#xa0;Esta vulnerabilidad se aplica tanto a Internal BGP (IBGP) como a External BGP (EBGP).\u0026#xa0;Nota: La implementaci\u00f3n de Cisco de BGP acepta tr\u00e1fico BGP entrante solo de peers configurados expl\u00edcitamente.\u0026#xa0;Para explotar esta vulnerabilidad, un atacante necesitar\u00eda enviar un mensaje de actualizaci\u00f3n de BGP espec\u00edfico mediante una conexi\u00f3n TCP establecida que parece provenir de un peer de BGP confiable\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:C\",\"baseScore\":7.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-233\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1m\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BEE5B22-F9D3-4EAA-A552-7F0271080632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1n\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74DB471F-43AF-4E94-99B0-7D38CB3F5943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9217FBFE-2708-440A-90F9-0562C159DE16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1p\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BA5F46C-3172-4509-856F-703E0B517E7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1q\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E07DC9A1-E4BA-474C-96C2-0B73704628AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(1r\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"027DCF27-E201-4713-A1AC-526C6CA04343\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40B05631-0319-4AFA-867A-2AECEAD449CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2g\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"771CD71E-4F24-4ACC-8D86-11429379093B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"906C7861-3266-445E-BBAB-64B757229A4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"782E194A-E91E-4C72-A86A-5BD2B9CE19BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2m\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CE062A4-FD32-41E5-A5B2-06BED72140E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2n\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52016BB9-A37D-4F3A-BEB4-77CF84193652\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.0\\\\(2o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE8D042D-35C6-4BDF-9CD7-9125B19DC415\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(1h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50F91C27-4625-4CCD-B2EB-7F34F286AB2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(1i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F65D3CE3-CA53-4A13-AD86-E59196B586FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(2e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC4633AD-6CBA-4E7B-BC9D-DCCBE1F2C7EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(2g\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04B6FAA5-D3CF-4463-9DE9-6F472DC78B2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(2k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1A8E4CF-2EF7-45E8-A4FE-5BEA54617D71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(3g\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0A7F045-BE20-4B1D-8A0D-38A651B77EA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(3h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8DB4683-C8B2-4013-85C5-A1B5F01790B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(3j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF031A0E-9C92-4931-8433-EAF9F9BA0DE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.1\\\\(4a\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E66B8A3B-AE6E-4876-9C14-54B24F91229C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(1k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57B9178C-DD7F-4FE4-BC24-7025F90A4E93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(1n\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5288A19-E08E-4748-A6F8-C095746D8B92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(1o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DBC06D8-E9B3-4400-A7E5-7EE6A3B8C9BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46C5D5D2-B2B9-4A9A-84D5-6F04E3F8694F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDFA97CC-F9AD-42A8-8FBE-D986E729336C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49DCFBB0-E1DA-4F4D-877A-BC6075775EDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E02BE71-98EB-494D-A808-42A3B2A0A72A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B74C309-446F-4EAC-939E-43BC8167FE75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(2q\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EA38368-8EE4-4480-9A9A-D12992108475\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(3j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFCAE710-1789-4D3A-AC2E-E6A523037172\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(3p\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E7A6830-C15E-4690-8C1A-5044A3B01C13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(3r\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69051EB0-D60F-4E30-8939-088E50422A0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(3s\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5135CDF-5991-4CC9-9C4C-CC0DADEA8C5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(3t\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00DF4FCE-1B71-4A28-989C-AE4C5F2B3343\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(4f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6049CBB-7445-4A77-867B-5D59DF0C9332\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(4p\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58BE5188-775E-42A9-BCCF-0DBACDDFC045\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(4q\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"762B4A37-3D8C-4172-A8FF-14F470CBDBFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.2\\\\(4r\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9BCF174-6D01-4C1A-AF7F-B91EDD16E010\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94E4F174-8F51-41AF-82C7-0CA577753191\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"353FD814-0812-4B90-B8F0-D372E85CF40B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71AF6628-3E98-4D66-B4A9-9EA16519719A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E52B312E-9C91-40F7-BACB-1550D6632477\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"746D1151-BEC2-4404-A7CF-651D8BFA3412\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:12.3\\\\(1p\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52CE3E73-8EC6-49D1-837F-2FBFDD51802C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.0\\\\(1k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B774106E-DC00-4F79-A5F9-390483A9FBEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.0\\\\(2h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26676350-6635-4B97-8A1E-250E06A177CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.0\\\\(2k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA426885-C1FB-4DB5-900A-7C7882956BFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.0\\\\(2n\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA5C1581-9C53-4093-BBCA-67F57CE24C67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(1i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D548C85A-F98B-49BF-A6C3-ADEB60124822\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2m\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"970718D9-4789-414B-8ED2-FBF914B4047C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C45D91E-5AA4-46B4-9A87-75480AC04732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2p\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"973B7EE9-6B18-4D1D-8DEE-3C43D0CEB89C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2q\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32083CFE-1DAE-4BE2-AFB9-B2806F809191\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2s\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0D61DA2-28B2-49E5-8739-38113455BD09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2t\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E20496D-D83C-4CD3-B1A3-EEE0D165F609\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2u\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71425F24-4C89-49C1-9B5E-68FAFE04F89C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.1\\\\(2v\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"310CF610-34E9-45F2-B01A-76DDEC40A040\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(1l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09A32C04-1467-4564-A18E-EF2AAEF64244\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(1m\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED378075-D761-4D0D-8852-93616EA2F9BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(2l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C9BD58D-3AE9-49C7-AE94-74878CD109B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(2o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D16C20-D68E-4118-B8D4-D6A2044DCD32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABCDA33D-8576-4DF6-90A1-710CA3F78F68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D302931B-4425-40A6-BF7E-97FAB43D0778\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3n\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEBC0A74-551B-4BD1-A59A-80C119362D60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F36E0CC9-7DD7-439B-B83F-F96DEF5B2A37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3r\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F50E84B-7CAC-4832-96C5-9885F0F9DFC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(3s\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEB8A917-6F49-4636-AF8C-8C18BAACE661\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(4d\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79ECC89F-7F84-42E0-AF0F-4C9A609131E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(4e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A9AC0D9-D8D4-480F-B1B7-84D17AF4ABC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(5d\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28A0A2C2-6E9F-4A08-9ED8-6FD4E8203053\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(5e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCE26439-5B15-48F4-8E02-CC45A76297A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(5f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8744322-4D27-44BB-9573-BDEC9E8F6B00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(6i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83C1841C-9D9B-4A22-9080-724BC75A004E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(7f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E54C78E-93FE-4E22-A37A-25D07AF7C7CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(7k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED709475-D435-492E-A295-3F3202CB6CC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(8d\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20DBADBC-106E-4D0D-B6F1-F5859AD84DE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(9b\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B226BA8E-FC1E-44FF-9A91-837F355E53B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(9f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BA59F5B-43FE-4051-9D27-F83A7A39141E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(9h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3883FD9C-0BCB-4865-81B6-854C8C4EC7DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:13.2\\\\(41d\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A52F12E-8EAD-40B8-BB6D-54FAD8718AD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.0\\\\(1h\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4F75D6B-D48A-4B5E-A1DF-EEBFEBFE6073\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.0\\\\(2c\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB1B81AF-FC0F-42B6-98C0-BEC432C7BAC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.0\\\\(3c\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87C5BB7A-3B2B-4AE3-A626-04FD1BB1E9C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.0\\\\(3d\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDEB393A-9687-4E52-9837-B2C9E8F22D58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(1i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E1BE98A-95AE-4D11-B427-68D25FE60720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(1j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD61CB15-1955-4A81-9F8E-02F207094260\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(1k\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"455F4A6C-428C-494F-B70C-A891B83EBEF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(1l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"322088F6-DF10-4C58-92F3-0FFBF469A6B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2g\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20BFA5E5-0ECC-4A1F-A936-1F325A810334\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2m\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7ECA1140-9DE0-4BC9-A381-A8DCB5BEA4A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2o\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F5FCA86-82A3-4540-B827-BD752D9E0465\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2s\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B8DE7D4-EFEC-487B-8250-251F9EA36BF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2u\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83EA47AA-6F3B-4A48-81A0-2CA8D6696B27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2w\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89662D5F-AEEC-4DEB-AB8B-6A95D0A4B1D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.1\\\\(2x\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40D5076C-6C6F-44F9-91D7-D8F2FEB21310\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(1i\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8BA2854-BE27-45F8-AF6E-CF6C474CF15B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(1j\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8296DD01-9CE0-4734-97A1-43250AD87453\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(1l\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77FC6FCC-9C86-43CB-A008-82E5C3E5B791\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(2e\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AD71858-CA76-4BE3-8B4F-626959F6A342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(2f\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38F4C42B-D975-46B5-8A18-1D6F72A294F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:14.2\\\\(2g\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58277DB8-BBC7-4639-8967-FCBAB029641E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9000v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD9C1F1-8582-4F67-A77D-97CBFECB88B8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92160yc-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4283E433-7F8C-4410-B565-471415445811\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92300yc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F80AB6FB-32FD-43D7-A9F1-80FA47696210\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92304qc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5B2E4C1-2627-4B9D-8E92-4B483F647651\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92348gc-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"557ED31C-C26A-4FAE-8B14-D06B49F7F08B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9236c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11411BFD-3F4D-4309-AB35-A3629A360FB0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9272q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E663DE91-C86D-48DC-B771-FA72A8DF7A7C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A90184B3-C82F-4CE5-B2AD-97D5E4690871\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-ex-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E40F42-632A-47DF-BE33-DC25B826310B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AB89849-6DA4-4C9D-BC3F-EE0E41FD1901\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C47F6BF9-2ADB-41A4-8D7D-8BB00141BB23\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07DE6F63-2C7D-415B-8C34-01EC05C062F3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F423E45D-A6DD-4305-9C6A-EAB26293E53A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9316d-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"102F91CD-DFB6-43D4-AE5B-DA157A696230\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180lc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E952A96A-0F48-4357-B7DD-1127D8827650\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F70D81F1-8B12-4474-9060-B4934D8A3873\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-ex-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5394DE31-3863-4CA9-B7B1-E5227183100D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7349D69B-D8FA-4462-AA28-69DD18A652D9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE4BB834-2C00-4384-A78E-AF3BCDDC58AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0D30D52-837F-4FDA-B8E5-A9066E9C6D2F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx3s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CE49B45-F2E9-491D-9C29-1B46E9CE14E2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93216tc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1CC5F78-E88B-4B82-9E3E-C73D3A49DE26\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93240yc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91231DC6-2773-4238-8C14-A346F213B5E5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DF88547-BAF4-47B0-9F60-80A30297FCEB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"113772B6-E9D2-4094-9468-3F4E1A87D07D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93360yc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C45A38D6-BED6-4FEF-AD87-A1E813695DE0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336c-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1FC2B1F-232E-4754-8076-CC82F3648730\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336c-fx2-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CDD27C9-5EAF-4956-8AB7-740C84C9D4FC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"785FD17C-F32E-4042-9DDE-A89B3AAE0334\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9348gc-fxp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17C7E3DB-8E1A-47AD-B1C5-61747DC0CFB9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93600cd-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CF467E2-4567-426E-8F48-39669E0F514C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9364c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63842B25-8C32-4988-BBBD-61E9CB09B4F3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9364c-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68EA1FEF-B6B6-49FE-A0A4-5387F76303F8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4364ADB9-8162-451D-806A-B98924E6B2CF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B53BCB42-ED61-4FCF-8068-CB467631C63C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E0371B-FDE2-473C-AA59-47E1269D050F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"489D11EC-5A18-4F32-BC7C-AC1FCEC27222\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BC5293E-F2B4-46DC-85DA-167EA323FCFD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA022E77-6557-4A33-9A3A-D028E2DB669A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9508:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDC2F709-AFBE-48EA-A3A2-DA1134534FB6\"}]}]}],\"references\":[{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK\",\"source\":\"ykramarz@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK\", \"name\": \"20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T16:02:56.062Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-1230\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-08T20:03:51.718735Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-08T20:11:06.226Z\"}}], \"cna\": {\"title\": \"Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability\", \"source\": {\"defect\": [[\"CSCvr59494\"]], \"advisory\": \"cisco-sa-n9kaci-bgp-De9dPKSK\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco NX-OS System Software in ACI Mode\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"datePublic\": \"2021-02-24T00:00:00\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK\", \"name\": \"20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-233\", \"description\": \"CWE-233\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2021-02-24T19:30:30\"}, \"x_legacyV4Record\": {\"impact\": {\"cvss\": {\"version\": \"3.0\", \"baseScore\": \"8.6\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\"}}, \"source\": {\"defect\": [[\"CSCvr59494\"]], \"advisory\": \"cisco-sa-n9kaci-bgp-De9dPKSK\", \"discovery\": \"INTERNAL\"}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"n/a\"}]}, \"product_name\": \"Cisco NX-OS System Software in ACI Mode\"}]}, \"vendor_name\": \"Cisco\"}]}}, \"exploit\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-bgp-De9dPKSK\", \"name\": \"20210224 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability\", \"refsource\": \"CISCO\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service (DoS) condition. This vulnerability is due to an issue with the installation of routes upon receipt of a BGP update. An attacker could exploit this vulnerability by sending a crafted BGP update to an affected device. A successful exploit could allow the attacker to cause the routing process to crash, which could cause the device to reload. This vulnerability applies to both Internal BGP (IBGP) and External BGP (EBGP). Note: The Cisco implementation of BGP accepts incoming BGP traffic from explicitly configured peers only. To exploit this vulnerability, an attacker would need to send a specific BGP update message over an established TCP connection that appears to come from a trusted BGP peer.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"CWE-233\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2021-1230\", \"STATE\": \"PUBLIC\", \"TITLE\": \"Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability\", \"ASSIGNER\": \"psirt@cisco.com\", \"DATE_PUBLIC\": \"2021-02-24T16:00:00\"}}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-1230\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-08T23:39:28.825Z\", \"dateReserved\": \"2020-11-13T00:00:00\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2021-02-24T19:30:30.975897Z\", \"assignerShortName\": \"cisco\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.