Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Network
0

CVE-2024-20321

Disclosure Date: February 29, 2024
CVE-2024-20321 CVSS v3 Base Score: 8.6
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue. An attacker could exploit this vulnerability by sending large amounts of network traffic with certain characteristics through an affected device. A successful exploit could allow the attacker to cause eBGP neighbor sessions to be dropped, leading to a DoS condition in the network.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
8.6 High
Impact Score:
4
Exploitability Score:
3.9
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Changed
Confidentiality (C):
None
Integrity (I):
None
Availability (A):
High

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
Cisco NX-OS Software 7.0(3)F1(1)
Cisco NX-OS Software 7.0(3)F2(1)
Cisco NX-OS Software 7.0(3)F2(2)
Cisco NX-OS Software 7.0(3)F3(1)
Cisco NX-OS Software 7.0(3)F3(2)
Cisco NX-OS Software 7.0(3)F3(3)
Cisco NX-OS Software 7.0(3)F3(3a)
Cisco NX-OS Software 7.0(3)F3(4)
Cisco NX-OS Software 7.0(3)F3(3c)
Cisco NX-OS Software 7.0(3)F3(5)
Cisco NX-OS Software 9.2(1)
Cisco NX-OS Software 9.2(2)
Cisco NX-OS Software 9.2(2t)
Cisco NX-OS Software 9.2(3)
Cisco NX-OS Software 9.2(4)
Cisco NX-OS Software 9.2(2v)
Cisco NX-OS Software 9.3(1)
Cisco NX-OS Software 9.3(2)
Cisco NX-OS Software 9.3(3)
Cisco NX-OS Software 9.3(4)
Cisco NX-OS Software 9.3(5)
Cisco NX-OS Software 9.3(6)
Cisco NX-OS Software 9.3(7)
Cisco NX-OS Software 9.3(7a)
Cisco NX-OS Software 9.3(8)
Cisco NX-OS Software 9.3(9)
Cisco NX-OS Software 9.3(10)
Cisco NX-OS Software 9.3(11)
Cisco NX-OS Software 9.3(12)
Cisco NX-OS Software 10.1(1)
Cisco NX-OS Software 10.1(2)
Cisco NX-OS Software 10.1(2t)
Cisco NX-OS Software 10.2(1)
Cisco NX-OS Software 10.2(1q)
Cisco NX-OS Software 10.2(2)
Cisco NX-OS Software 10.2(3)
Cisco NX-OS Software 10.2(3t)
Cisco NX-OS Software 10.2(4)
Cisco NX-OS Software 10.2(5)
Cisco NX-OS Software 10.2(3v)
Cisco NX-OS Software 10.2(6)
Cisco NX-OS Software 10.3(1)
Cisco NX-OS Software 10.3(2)
Cisco NX-OS Software 10.3(3)
Cisco NX-OS Software 10.3(99w)
Cisco NX-OS Software 10.3(99x)
Cisco NX-OS Software 10.3(4a)
Cisco NX-OS Software 10.4(1)
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • cisco

Products

  • nx-os 10.1(1),
  • nx-os 10.1(2),
  • nx-os 10.1(2t),
  • nx-os 10.2(1),
  • nx-os 10.2(1q),
  • nx-os 10.2(2),
  • nx-os 10.2(3),
  • nx-os 10.2(3t),
  • nx-os 10.2(3v),
  • nx-os 10.2(4),
  • nx-os 10.2(5),
  • nx-os 10.2(6),
  • nx-os 10.3(1),
  • nx-os 10.3(2),
  • nx-os 10.3(3),
  • nx-os 10.3(4a),
  • nx-os 10.3(99w),
  • nx-os 10.3(99x),
  • nx-os 10.4(1),
  • nx-os 7.0(3)f1(1),
  • nx-os 7.0(3)f2(1),
  • nx-os 7.0(3)f2(2),
  • nx-os 7.0(3)f3(1),
  • nx-os 7.0(3)f3(2),
  • nx-os 7.0(3)f3(3),
  • nx-os 7.0(3)f3(3a),
  • nx-os 7.0(3)f3(3c),
  • nx-os 7.0(3)f3(4),
  • nx-os 7.0(3)f3(5),
  • nx-os 9.2(1),
  • nx-os 9.2(2),
  • nx-os 9.2(2t),
  • nx-os 9.2(2v),
  • nx-os 9.2(3),
  • nx-os 9.2(4),
  • nx-os 9.3(1),
  • nx-os 9.3(10),
  • nx-os 9.3(11),
  • nx-os 9.3(12),
  • nx-os 9.3(2),
  • nx-os 9.3(3),
  • nx-os 9.3(4),
  • nx-os 9.3(5),
  • nx-os 9.3(6),
  • nx-os 9.3(7),
  • nx-os 9.3(7a),
  • nx-os 9.3(8),
  • nx-os 9.3(9)

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis