CVE-2020-3517

Published: Aug 27, 2020Modified: Nov 21, 2024

8.6

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 4.0

Source: NVD

Description

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated attacker to cause process crashes, which could result in a denial of service (DoS) condition on an affected device. The attack vector is configuration dependent and could be remote or adjacent. For more information about the attack vector, see the Details section of this advisory. The vulnerability is due to insufficient error handling when the affected software parses Cisco Fabric Services messages. An attacker could exploit this vulnerability by sending malicious Cisco Fabric Services messages to an affected device. A successful exploit could allow the attacker to cause a reload of an affected device, which could result in a DoS condition.

Affected (290)

Products: Cisco: Firepower Extensible Operating System, Nx Os

Cisco

2 products

Firepower Extensible Operating System

Nx Os

Configuration A

4 vulnerable · 9 platform

Vulnerable Software	Affected Versions
Cisco Firepower Extensible Operating System	From 1.1 to 1.1.4.179
Cisco Firepower Extensible Operating System	From 2.0 to 2.0.1.153
Cisco Firepower Extensible Operating System	From 2.1 to 2.1.1.86
Cisco Firepower Extensible Operating System	From 2.2 to 2.2.1.70

Running on/with	Platform Versions
Cisco Firepower 4110	All versions
Cisco Firepower 4112	All versions
Cisco Firepower 4115	All versions
Cisco Firepower 4120	All versions
Cisco Firepower 4125	All versions
Cisco Firepower 4140	All versions
Cisco Firepower 4145	All versions
Cisco Firepower 4150	All versions
Cisco Firepower 9300	All versions

Configuration B

283 vulnerable · 81 platform

Vulnerable Software	Affected Versions
Cisco Nx Os	Version 6.0(2)a3(1)
Cisco Nx Os	Version 6.0(2)a3(2)
Cisco Nx Os	Version 6.0(2)a3(4)
Cisco Nx Os	Version 6.0(2)a4(1)
Cisco Nx Os	Version 6.0(2)a4(2)
Cisco Nx Os	Version 6.0(2)a4(3)
Cisco Nx Os	Version 6.0(2)a4(4)
Cisco Nx Os	Version 6.0(2)a4(5)
Cisco Nx Os	Version 6.0(2)a4(6)
Cisco Nx Os	Version 6.0(2)a6(1)
Cisco Nx Os	Version 6.0(2)a6(1a)
Cisco Nx Os	Version 6.0(2)a6(2)
Cisco Nx Os	Version 6.0(2)a6(2a)
Cisco Nx Os	Version 6.0(2)a6(3)
Cisco Nx Os	Version 6.0(2)a6(3a)
Cisco Nx Os	Version 6.0(2)a6(4)
Cisco Nx Os	Version 6.0(2)a6(4a)
Cisco Nx Os	Version 6.0(2)a6(5)
Cisco Nx Os	Version 6.0(2)a6(5a)
Cisco Nx Os	Version 6.0(2)a6(5b)
Cisco Nx Os	Version 6.0(2)a6(6)
Cisco Nx Os	Version 6.0(2)a6(7)
Cisco Nx Os	Version 6.0(2)a6(8)
Cisco Nx Os	Version 6.0(2)a7(1)
Cisco Nx Os	Version 6.0(2)a7(1a)
Cisco Nx Os	Version 6.0(2)a7(2)
Cisco Nx Os	Version 6.0(2)a7(2a)
Cisco Nx Os	Version 6.0(2)a8
Cisco Nx Os	Version 6.0(2)a8(10)
Cisco Nx Os	Version 6.0(2)a8(10a)
Cisco Nx Os	Version 6.0(2)a8(11)
Cisco Nx Os	Version 6.0(2)a8(11a)
Cisco Nx Os	Version 6.0(2)a8(11b)
Cisco Nx Os	Version 6.0(2)a8(1)
Cisco Nx Os	Version 6.0(2)a8(2)
Cisco Nx Os	Version 6.0(2)a8(3)
Cisco Nx Os	Version 6.0(2)a8(4)
Cisco Nx Os	Version 6.0(2)a8(4a)
Cisco Nx Os	Version 6.0(2)a8(5)
Cisco Nx Os	Version 6.0(2)a8(6.213)
Cisco Nx Os	Version 6.0(2)a8(6)
Cisco Nx Os	Version 6.0(2)a8(7)
Cisco Nx Os	Version 6.0(2)a8(7a)
Cisco Nx Os	Version 6.0(2)a8(7b)
Cisco Nx Os	Version 6.0(2)a8(8)
Cisco Nx Os	Version 6.0(2)a8(9.7)
Cisco Nx Os	Version 6.0(2)a8(9)
Cisco Nx Os	Version 6.0(2)u2(1)
Cisco Nx Os	Version 6.0(2)u2(2)
Cisco Nx Os	Version 6.0(2)u2(3)
Cisco Nx Os	Version 6.0(2)u2(4)
Cisco Nx Os	Version 6.0(2)u2(5)
Cisco Nx Os	Version 6.0(2)u2(6)
Cisco Nx Os	Version 6.0(2)u3(1)
Cisco Nx Os	Version 6.0(2)u3(2)
Cisco Nx Os	Version 6.0(2)u3(3)
Cisco Nx Os	Version 6.0(2)u3(4)
Cisco Nx Os	Version 6.0(2)u3(5)
Cisco Nx Os	Version 6.0(2)u3(6)
Cisco Nx Os	Version 6.0(2)u3(7)
Cisco Nx Os	Version 6.0(2)u3(8)
Cisco Nx Os	Version 6.0(2)u3(9)
Cisco Nx Os	Version 6.0(2)u4(1)
Cisco Nx Os	Version 6.0(2)u4(2)
Cisco Nx Os	Version 6.0(2)u4(3)
Cisco Nx Os	Version 6.0(2)u4(4)
Cisco Nx Os	Version 6.0(2)u5(1)
Cisco Nx Os	Version 6.0(2)u5(2)
Cisco Nx Os	Version 6.0(2)u5(3)
Cisco Nx Os	Version 6.0(2)u5(4)
Cisco Nx Os	Version 6.0(2)u6
Cisco Nx Os	Version 6.0(2)u6(0.46)
Cisco Nx Os	Version 6.0(2)u6(10)
Cisco Nx Os	Version 6.0(2)u6(10a)
Cisco Nx Os	Version 6.0(2)u6(1)
Cisco Nx Os	Version 6.0(2)u6(1a)
Cisco Nx Os	Version 6.0(2)u6(2)
Cisco Nx Os	Version 6.0(2)u6(2a)
Cisco Nx Os	Version 6.0(2)u6(3)
Cisco Nx Os	Version 6.0(2)u6(3a)
Cisco Nx Os	Version 6.0(2)u6(4)
Cisco Nx Os	Version 6.0(2)u6(4a)
Cisco Nx Os	Version 6.0(2)u6(5)
Cisco Nx Os	Version 6.0(2)u6(5a)
Cisco Nx Os	Version 6.0(2)u6(5b)
Cisco Nx Os	Version 6.0(2)u6(5c)
Cisco Nx Os	Version 6.0(2)u6(6)
Cisco Nx Os	Version 6.0(2)u6(7)
Cisco Nx Os	Version 6.0(2)u6(8)
Cisco Nx Os	Version 6.0(2)u6(9)
Cisco Nx Os	Version 6.2(10)
Cisco Nx Os	Version 6.2(11b)
Cisco Nx Os	Version 6.2(12)
Cisco Nx Os	Version 6.2(14)
Cisco Nx Os	Version 6.2(14a)
Cisco Nx Os	Version 6.2(14b)
Cisco Nx Os	Version 6.2(16)
Cisco Nx Os	Version 6.2(18)
Cisco Nx Os	Version 6.2(20)
Cisco Nx Os	Version 6.2(20a)
Cisco Nx Os	Version 6.2(22)
Cisco Nx Os	Version 6.2(24)
Cisco Nx Os	Version 6.2(25)
Cisco Nx Os	Version 6.2(27)
Cisco Nx Os	Version 6.2(2)
Cisco Nx Os	Version 6.2(2a)
Cisco Nx Os	Version 6.2(3)
Cisco Nx Os	Version 6.2(3n)
Cisco Nx Os	Version 6.2(5)
Cisco Nx Os	Version 6.2(5a)
Cisco Nx Os	Version 6.2(6)
Cisco Nx Os	Version 6.2(6a)
Cisco Nx Os	Version 6.2(6b)
Cisco Nx Os	Version 6.2(7)
Cisco Nx Os	Version 6.2(8)
Cisco Nx Os	Version 6.2(8a)
Cisco Nx Os	Version 6.2(8b)
Cisco Nx Os	Version 7.0(0)n1(1)
Cisco Nx Os	Version 7.0(1)n1(1)
Cisco Nx Os	Version 7.0(2)n1(1)
Cisco Nx Os	Version 7.0(3)f1
Cisco Nx Os	Version 7.0(3)f2
Cisco Nx Os	Version 7.0(3)f3
Cisco Nx Os	Version 7.0(3)f3(1)
Cisco Nx Os	Version 7.0(3)f3(2)
Cisco Nx Os	Version 7.0(3)f3(3)
Cisco Nx Os	Version 7.0(3)f3(3a)
Cisco Nx Os	Version 7.0(3)f3(3b)
Cisco Nx Os	Version 7.0(3)f3(3c)
Cisco Nx Os	Version 7.0(3)f3(4)
Cisco Nx Os	Version 7.0(3)f3(5)
Cisco Nx Os	Version 7.0(3)i2(1)
Cisco Nx Os	Version 7.0(3)i2(1a)
Cisco Nx Os	Version 7.0(3)i2(2)
Cisco Nx Os	Version 7.0(3)i2(2a)
Cisco Nx Os	Version 7.0(3)i2(2b)
Cisco Nx Os	Version 7.0(3)i2(2c)
Cisco Nx Os	Version 7.0(3)i2(2d)
Cisco Nx Os	Version 7.0(3)i2(2e)
Cisco Nx Os	Version 7.0(3)i2(2r)
Cisco Nx Os	Version 7.0(3)i2(2s)
Cisco Nx Os	Version 7.0(3)i2(2v)
Cisco Nx Os	Version 7.0(3)i2(2w)
Cisco Nx Os	Version 7.0(3)i2(2x)
Cisco Nx Os	Version 7.0(3)i2(2y)
Cisco Nx Os	Version 7.0(3)i3(1)
Cisco Nx Os	Version 7.0(3)i4(1)
Cisco Nx Os	Version 7.0(3)i4(1t)
Cisco Nx Os	Version 7.0(3)i4(2)
Cisco Nx Os	Version 7.0(3)i4(3)
Cisco Nx Os	Version 7.0(3)i4(4)
Cisco Nx Os	Version 7.0(3)i4(5)
Cisco Nx Os	Version 7.0(3)i4(6)
Cisco Nx Os	Version 7.0(3)i4(6t)
Cisco Nx Os	Version 7.0(3)i4(7)
Cisco Nx Os	Version 7.0(3)i4(8)
Cisco Nx Os	Version 7.0(3)i4(8a)
Cisco Nx Os	Version 7.0(3)i4(8b)
Cisco Nx Os	Version 7.0(3)i4(8z)
Cisco Nx Os	Version 7.0(3)i4(9)
Cisco Nx Os	Version 7.0(3)i5
Cisco Nx Os	Version 7.0(3)i5(1)
Cisco Nx Os	Version 7.0(3)i5(2)
Cisco Nx Os	Version 7.0(3)i5(3)
Cisco Nx Os	Version 7.0(3)i5(3a)
Cisco Nx Os	Version 7.0(3)i5(3b)
Cisco Nx Os	Version 7.0(3)i6(1)
Cisco Nx Os	Version 7.0(3)i6(2)
Cisco Nx Os	Version 7.0(3)i7
Cisco Nx Os	Version 7.0(3)i7(1)
Cisco Nx Os	Version 7.0(3)i7(2)
Cisco Nx Os	Version 7.0(3)i7(3)
Cisco Nx Os	Version 7.0(3)i7(3z)
Cisco Nx Os	Version 7.0(3)i7(4)
Cisco Nx Os	Version 7.0(3)i7(5)
Cisco Nx Os	Version 7.0(3)i7(5a)
Cisco Nx Os	Version 7.0(3)i7(6)
Cisco Nx Os	Version 7.0(3)i7(6z)
Cisco Nx Os	Version 7.0(3)i7(7)
Cisco Nx Os	Version 7.0(3)i7(8)
Cisco Nx Os	Version 7.0(3)ia7(1)
Cisco Nx Os	Version 7.0(3)ia7(2)
Cisco Nx Os	Version 7.0(3)ic4(4)
Cisco Nx Os	Version 7.0(3)im3(1)
Cisco Nx Os	Version 7.0(3)im3(2)
Cisco Nx Os	Version 7.0(3)im3(2a)
Cisco Nx Os	Version 7.0(3)im3(2b)
Cisco Nx Os	Version 7.0(3)im3(3)
Cisco Nx Os	Version 7.0(3)im7(2)
Cisco Nx Os	Version 7.0(3)n1(1)
Cisco Nx Os	Version 7.0(4)n1(1)
Cisco Nx Os	Version 7.0(4)n1(1a)
Cisco Nx Os	Version 7.0(5)n1(1)
Cisco Nx Os	Version 7.0(5)n1(1a)
Cisco Nx Os	Version 7.0(6)n1(1)
Cisco Nx Os	Version 7.0(6)n1(2s)
Cisco Nx Os	Version 7.0(6)n1(3s)
Cisco Nx Os	Version 7.0(6)n1(4s)
Cisco Nx Os	Version 7.0(7)n1(1)
Cisco Nx Os	Version 7.0(7)n1(1a)
Cisco Nx Os	Version 7.0(7)n1(1b)
Cisco Nx Os	Version 7.0(8)n1(1)
Cisco Nx Os	Version 7.0(8)n1(1a)
Cisco Nx Os	Version 7.1(0.1)
Cisco Nx Os	Version 7.1(0)n1(1)
Cisco Nx Os	Version 7.1(0)n1(1a)
Cisco Nx Os	Version 7.1(0)n1(1b)
Cisco Nx Os	Version 7.1(1)n1(1)
Cisco Nx Os	Version 7.1(1)n1(1a)
Cisco Nx Os	Version 7.1(2)n1(1)
Cisco Nx Os	Version 7.1(2)n1(1a)
Cisco Nx Os	Version 7.1(3)n1(1)
Cisco Nx Os	Version 7.1(3)n1(2)
Cisco Nx Os	Version 7.1(3)n1(2a)
Cisco Nx Os	Version 7.1(3)n1(3)
Cisco Nx Os	Version 7.1(3)n1(4)
Cisco Nx Os	Version 7.1(3)n1(5)
Cisco Nx Os	Version 7.1(4)n1(1)
Cisco Nx Os	Version 7.1(4)n1(1a)
Cisco Nx Os	Version 7.1(4)n1(1c)
Cisco Nx Os	Version 7.1(4)n1(1d)
Cisco Nx Os	Version 7.1(5)n1(1)
Cisco Nx Os	Version 7.1(5)n1(1b)
Cisco Nx Os	Version 7.2(0)d1(1)
Cisco Nx Os	Version 7.2(0)n1(1)
Cisco Nx Os	Version 7.2(1)d(1)
Cisco Nx Os	Version 7.2(1)n1(1)
Cisco Nx Os	Version 7.2(2)d1(1)
Cisco Nx Os	Version 7.2(2)d1(2)
Cisco Nx Os	Version 7.2(2)d1(3)
Cisco Nx Os	Version 7.2(2)d1(4)
Cisco Nx Os	Version 7.3(0)d1(1)
Cisco Nx Os	Version 7.3(0)dx(1)
Cisco Nx Os	Version 7.3(0)n1(1)
Cisco Nx Os	Version 7.3(0)n1(1a)
Cisco Nx Os	Version 7.3(0)n1(1b)
Cisco Nx Os	Version 7.3(1)d1(1)
Cisco Nx Os	Version 7.3(1)n1(1)
Cisco Nx Os	Version 7.3(2)d1(1)
Cisco Nx Os	Version 7.3(2)d1(1d)
Cisco Nx Os	Version 7.3(2)d1(2)
Cisco Nx Os	Version 7.3(2)d1(3)
Cisco Nx Os	Version 7.3(2)d1(3a)
Cisco Nx Os	Version 7.3(2)n1(1)
Cisco Nx Os	Version 7.3(2)n1(1b)
Cisco Nx Os	Version 7.3(2)n1(1c)
Cisco Nx Os	Version 7.3(3)d1(1)
Cisco Nx Os	Version 7.3(3)n1(1)
Cisco Nx Os	Version 7.3(4)d1(1)
Cisco Nx Os	Version 7.3(4)n1(1)
Cisco Nx Os	Version 7.3(4)n1(1a)
Cisco Nx Os	Version 7.3(5)d1(1)
Cisco Nx Os	Version 7.3(5)n1(1)
Cisco Nx Os	Version 7.3(6)n1(1)
Cisco Nx Os	Version 7.3(6)n1(1a)
Cisco Nx Os	Version 7.3(7)n1(1)
Cisco Nx Os	Version 7.3(7)n1(1a)
Cisco Nx Os	Version 7.3(7)n1(1b)
Cisco Nx Os	Version 8.0(1)
Cisco Nx Os	Version 8.1(1)
Cisco Nx Os	Version 8.1(1a)
Cisco Nx Os	Version 8.1(1b)
Cisco Nx Os	Version 8.1(2)
Cisco Nx Os	Version 8.1(2a)
Cisco Nx Os	Version 8.2(1)
Cisco Nx Os	Version 8.2(2)
Cisco Nx Os	Version 8.2(3)
Cisco Nx Os	Version 8.2(4)
Cisco Nx Os	Version 8.2(5)
Cisco Nx Os	Version 8.3(1)
Cisco Nx Os	Version 8.3(2)
Cisco Nx Os	Version 8.4(1)
Cisco Nx Os	Version 8.4(1a)
Cisco Nx Os	Version 9.2(1)
Cisco Nx Os	Version 9.2(2)
Cisco Nx Os	Version 9.2(2t)
Cisco Nx Os	Version 9.2(2v)
Cisco Nx Os	Version 9.2(3)
Cisco Nx Os	Version 9.2(3y)
Cisco Nx Os	Version 9.3(1)
Cisco Nx Os	Version 9.3(1z)
Cisco Nx Os	Version 9.3(2)
Cisco Nx Os	Version 9.3(3)

Running on/with	Platform Versions
Cisco Mds 9100	All versions
Cisco Mds 9200	All versions
Cisco Mds 9500	All versions
Cisco Mds 9700	All versions
Cisco Nexus 3016	All versions
Cisco Nexus 3048	All versions
Cisco Nexus 3064	All versions
Cisco Nexus 3064 T	All versions
Cisco Nexus 31108pc V	All versions
Cisco Nexus 31108tc V	All versions
Cisco Nexus 31128pq	All versions
Cisco Nexus 3132c Z	All versions
Cisco Nexus 3132q	All versions
Cisco Nexus 3132q V	All versions
Cisco Nexus 3132q Xl	All versions
Cisco Nexus 3164q	All versions
Cisco Nexus 3172	All versions
Cisco Nexus 3172pq Xl	All versions
Cisco Nexus 3172tq	All versions
Cisco Nexus 3172tq 32t	All versions
Cisco Nexus 3172tq Xl	All versions
Cisco Nexus 3232c	All versions
Cisco Nexus 3264c E	All versions
Cisco Nexus 3264q	All versions
Cisco Nexus 3408 S	All versions
Cisco Nexus 34180yc	All versions
Cisco Nexus 3432d S	All versions
Cisco Nexus 3464c	All versions
Cisco Nexus 3524	All versions
Cisco Nexus 3524 X	All versions
Cisco Nexus 3524 Xl	All versions
Cisco Nexus 3548	All versions
Cisco Nexus 3548 X	All versions
Cisco Nexus 3548 Xl	All versions
Cisco Nexus 36180yc R	All versions
Cisco Nexus 3636c R	All versions
Cisco Nexus 5548p	All versions
Cisco Nexus 5548up	All versions
Cisco Nexus 5596t	All versions
Cisco Nexus 5596up	All versions
Cisco Nexus 56128p	All versions
Cisco Nexus 5624q	All versions
Cisco Nexus 5648q	All versions
Cisco Nexus 5672up	All versions
Cisco Nexus 5696q	All versions
Cisco Nexus 6001	All versions
Cisco Nexus 6004	All versions
Cisco Nexus 7000	All versions
Cisco Nexus 7700	All versions
Cisco Nexus 9000v	All versions
Cisco Nexus 92160yc X	All versions
Cisco Nexus 92300yc	All versions
Cisco Nexus 92304qc	All versions
Cisco Nexus 92348gc X	All versions
Cisco Nexus 9236c	All versions
Cisco Nexus 9272q	All versions
Cisco Nexus 93108tc Ex	All versions
Cisco Nexus 93108tc Fx	All versions
Cisco Nexus 93120tx	All versions
Cisco Nexus 93128tx	All versions
Cisco Nexus 93180lc Ex	All versions
Cisco Nexus 93180yc Ex	All versions
Cisco Nexus 93180yc Fx	All versions
Cisco Nexus 93216tc Fx2	All versions
Cisco Nexus 93240yc Fx2	All versions
Cisco Nexus 9332c	All versions
Cisco Nexus 9332pq	All versions
Cisco Nexus 93360yc Fx2	All versions
Cisco Nexus 9336c Fx2	All versions
Cisco Nexus 9336pq Aci Spine	All versions
Cisco Nexus 9348gc Fxp	All versions
Cisco Nexus 9364c	All versions
Cisco Nexus 9372px	All versions
Cisco Nexus 9372px E	All versions
Cisco Nexus 9372tx	All versions
Cisco Nexus 9372tx E	All versions
Cisco Nexus 9396px	All versions
Cisco Nexus 9396tx	All versions
Cisco Nexus 9504	All versions
Cisco Nexus 9508	All versions
Cisco Nexus 9516	All versions

Configuration C

3 vulnerable · 6 platform

Vulnerable Software	Affected Versions
Cisco Nx Os	Before 3.2\(3o\)
Cisco Nx Os	From 4.0 to 4.0\(4i\)
Cisco Nx Os	From 4.1 to 4.1\(1c\)

Running on/with	Platform Versions
Cisco Ucs 6248up	All versions
Cisco Ucs 6296up	All versions
Cisco Ucs 6300	All versions
Cisco Ucs 6324	All versions
Cisco Ucs 64108	All versions
Cisco Ucs 6454	All versions

Related CWEs

CWE-476

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-nxos-cfs-dos-dAmnymbd

Source: psirt@cisco.com

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-nxos-cfs-dos-dAmnymbd

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.