Welcome to Scribd!

TI Advisory - Cisco - Multiple CVEs - 2024-2-29 - 64859

Uploaded by

0% found this document useful (0 votes)

6 views5 pages

Multiple vulnerabilities were found in Cisco products that could allow a remote attacker to cause denial of service attacks or security bypass. The vulnerabilities affect Cisco NX-OS Software, Cisco FXOS Software, Cisco UCS 6400/6500 Fabric Interconnects, Cisco Nexus 3000/9000 Series Switches. Updates are available to address vulnerabilities including denial of service through LLDP, eBGP, MPLS handling, and insufficient rate limiting of TCP connections.

Original Description:

Original Title

TI Advisory - Cisco_ Multiple CVEs - 2024-2-29 - 64859

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

6 views5 pages

TI Advisory - Cisco - Multiple CVEs - 2024-2-29 - 64859

Uploaded by

Saad Ur Rehman

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 5

Search inside document

Threat

Intelligence

Advisory
Cisco: Multiple CVEs

Cisco Products Vulnerabilities

Threat Intelligence Advisory - 64859

Multiple vulnerabilities in Cisco products have been found. Some of these vulnerabilities could
be used by a remote attacker to cause a denial of service or security bypass on the targeted
system.

Privilege Escalation
Remote Code Execution
Information Theft
Denial Of Service

Cisco NX-OS Software

Cisco FXOS Software
Cisco UCS 6400 Series Fabric Interconnects
Cisco UCS 6500 Series Fabric Interconnects
Cisco Nexus 3000 Series Switches
Cisco Nexus 9000 Series Switches

CVE Number(s) Description Published CVSS Score

CVE-2024-20294 When some fields in an LLDP 2024-02-28 6.6

frame are handled incorrectly
the Cisco FXOS and NX-OS
software is susceptible to a
denial of service attack. A
remote attacker might leverage
this issue to crash the LLDP
service by sending a specially
constructed LLDP packet.
Threat Intelligence Advisory - 64859

CVE-2024-20321 A bug in the implementation of 2024-02-28 8.6

the External Border Gateway
Protocol eBGP could result in a
denial of service attack on the
Cisco NX-OS software. This
vulnerability could be used by a
remote attacker to force the
termination of eBGP neighbor
sessions by providing huge
volumes of network traffic with
specific characteristics.

CVE-2024-20267 When processing an incoming 2024-02-28 8.6

MPLS frame improper error
checking leaves the Cisco NX-
OS software open to a denial of
service attack. A remote attacker
might leverage this vulnerability
to send a specially constructed
IPv6 packet and cause a denial
of service.

CVE-2024-20344 Insufficient rate-limiting of TCP 2024-02-28 5.3

connections makes the Cisco
UCS 6400 and 6500 Series
Fabric Interconnects susceptible
to a denial of service attack. An
exploit for this issue could cause
the Device Console UI process
to fail by flooding the network
with TCP traffic.
Threat Intelligence Advisory - 64859

CVE-2024-20291 When configuration 2024-02-28 5.8

modifications are made to port
channel member ports
erroneous hardware
programming takes place which
can lead to security constraints
that a remote attacker could
circumvent on Cisco Nexus 3000
and 9000 Series Switches. An
attacker could use this
vulnerability to get access to
network resources by submitting
a request that has been carefully
constructed.
Threat Intelligence Advisory - 64859

CVEs Patch and info link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-
nxos-ebgp-dos-L3QCwVJ

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-
mpls-dos-R9ycXkwM

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-
ucsfi-imm-syn-p6kZTDQC

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-
nxos-po-acl-TkyePgvL

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-
nxos-lldp-dos-z7PncTgt

Update the aforementioned Vulnerability as soon as possible on your end.

Update all programmes Prioritize patches for CVEs that are already known to be exploited or
that would be available to the greatest number of potential adversaries as soon as a patch is
released (such as internet-facing systems)

Cert Exercises Handbook
Document88 pages
Cert Exercises Handbook
Daniel Checchia
100% (1)
CCNA Security v2.0 Final Exam Answers 100 1 PDF
Document26 pages
CCNA Security v2.0 Final Exam Answers 100 1 PDF
LêTrungĐức
100% (3)
Anyconnect Remote Access VPN Troubleshooting and Best Practices 2020 v1
Document115 pages
Anyconnect Remote Access VPN Troubleshooting and Best Practices 2020 v1
flyingccie datacenter
100% (2)
Cyber Security Notes
Document7 pages
Cyber Security Notes
Vinaya Sree
No ratings yet
Cybersecurity Interview Questions
Document17 pages
Cybersecurity Interview Questions
Luke R. Corde
100% (1)
(3-In-1 Combo Package) : Cisco ACI + Cisco SDWAN + Cisco NEXUS
Document11 pages
(3-In-1 Combo Package) : Cisco ACI + Cisco SDWAN + Cisco NEXUS
Jitendramatrix
No ratings yet
CEH Module 14: Denial of Service
Document24 pages
CEH Module 14: Denial of Service
Ahmad Mahmoud
No ratings yet
Cisco Data Center Spine-And-Leaf Architecture - Design Overview White Paper
Document32 pages
Cisco Data Center Spine-And-Leaf Architecture - Design Overview White Paper
Stephanie Carreño
No ratings yet
Cisco AAVID Enterprise VPN Design
Document76 pages
Cisco AAVID Enterprise VPN Design
wctang888
No ratings yet
Firewall Architectures
Document112 pages
Firewall Architectures
Bong Hong Thuy Tinh
No ratings yet
CCNA 3 v7.0 Final Exam Answers Full - Enterprise Networking, Security, and Automation
Document102 pages
CCNA 3 v7.0 Final Exam Answers Full - Enterprise Networking, Security, and Automation
fabrizio fiori
No ratings yet
Top 10 API Security Risks 2019 PDF
Document31 pages
Top 10 API Security Risks 2019 PDF
Nabil Shaukat
No ratings yet
CNS 222 2I en Student Manual 1 3 Days Softlayer v05
Document536 pages
CNS 222 2I en Student Manual 1 3 Days Softlayer v05
Adrian Vilardo
100% (1)
Fase 5
Document14 pages
Fase 5
john fredy rodriguez
No ratings yet
Troubleshooting VXLAN BGP EVPN Multi Site
Document55 pages
Troubleshooting VXLAN BGP EVPN Multi Site
Trk
No ratings yet
Fortinet Device Icons PDF
Document66 pages
Fortinet Device Icons PDF
Kunal
No ratings yet
WAF0201 - Barracuda Web Application Firewall - Advanced Features - Student Guide
Document113 pages
WAF0201 - Barracuda Web Application Firewall - Advanced Features - Student Guide
neoalt
No ratings yet
Search Results: Name Description
Document9 pages
Search Results: Name Description
liming
No ratings yet
Caja Blanca Yhn6en
Document101 pages
Caja Blanca Yhn6en
Alan Colmenares
No ratings yet
Analisis WEB PABELLON
Document93 pages
Analisis WEB PABELLON
Nelson Torres
No ratings yet
Armis CDPWN WP
Document29 pages
Armis CDPWN WP
MarcDupinet
No ratings yet
VPWS (Virtual Private Wire Service) - Part 1 - WWW - Ipcisco.com - WWW - Ipcisco
Document7 pages
VPWS (Virtual Private Wire Service) - Part 1 - WWW - Ipcisco.com - WWW - Ipcisco
Jesus Rosales
No ratings yet
Casa Systems Advantech Intel and Wind River - Virtual Mobile Security at The Network Edge
Document5 pages
Casa Systems Advantech Intel and Wind River - Virtual Mobile Security at The Network Edge
oskcarrasqui
No ratings yet
Autonomic Vehicular Networks: Safety, Privacy, Cybersecurity and Societal Issues
Document5 pages
Autonomic Vehicular Networks: Safety, Privacy, Cybersecurity and Societal Issues
sofiane_ouni
No ratings yet
Armis TLStorm 1646968381
Document38 pages
Armis TLStorm 1646968381
geniusjoa
No ratings yet
VMDC Design Consideration
Document34 pages
VMDC Design Consideration
cspower
No ratings yet
Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1609)
Document3 pages
Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1609)
Mohaideen
No ratings yet
Firewall Cisco Power 2100
Document7 pages
Firewall Cisco Power 2100
Huy Doan
No ratings yet
WCT - F0o7fo
Document238 pages
WCT - F0o7fo
kamidikamalakar
No ratings yet
Lahore Garrison University: Computer Networks
Document2 pages
Lahore Garrison University: Computer Networks
Muhammad Adil 026
No ratings yet
CISCO CCNA Certifications - CCNA 3 - Module 1 PDF
Document5 pages
CISCO CCNA Certifications - CCNA 3 - Module 1 PDF
Alina Draghici
No ratings yet
Cisco IOS Router Exploitation: A Map of The Problem Space
Document10 pages
Cisco IOS Router Exploitation: A Map of The Problem Space
sbilly
No ratings yet
BRKCRS 1731
Document53 pages
BRKCRS 1731
Phyo Min Tun
No ratings yet
ITEM 8 Datasheet c78 742473
Document10 pages
ITEM 8 Datasheet c78 742473
Alfredo Claros
No ratings yet
Datasheet c78 742473
Document10 pages
Datasheet c78 742473
ruphyd
No ratings yet
Multiple Vulnerabilities
Document4 pages
Multiple Vulnerabilities
JDaemon7
No ratings yet
Virtualized Multiservice Data Center (VMDC) Virtual Services Architecture (VSA) 1.0 Design Guide
Document64 pages
Virtualized Multiservice Data Center (VMDC) Virtual Services Architecture (VSA) 1.0 Design Guide
cspower
No ratings yet
DGTL-BRKCLD-3440-Multicloud Networking - Design and Deployment
Document225 pages
DGTL-BRKCLD-3440-Multicloud Networking - Design and Deployment
paulo_an7381
No ratings yet
DMZ Virtualization Vsphere4 Nexus1000V
Document20 pages
DMZ Virtualization Vsphere4 Nexus1000V
hulikul22
No ratings yet
Brksec 2417
Document30 pages
Brksec 2417
Dinesh
No ratings yet
Networkvulnerability Scan Sample Report
Document4 pages
Networkvulnerability Scan Sample Report
Venâncio Guedes
No ratings yet
VPC SI System Architecture
Document12 pages
VPC SI System Architecture
K Ouertani
No ratings yet
National Critical Information Infrastructure Protection Centre
Document4 pages
National Critical Information Infrastructure Protection Centre
Ravi Sankar
No ratings yet
Implementation Considerations of Ipsec VPN For Small and Medium-Sized Companies
Document57 pages
Implementation Considerations of Ipsec VPN For Small and Medium-Sized Companies
Thái Tài Phạm
No ratings yet
Gcasr 9 Kvpls
Document52 pages
Gcasr 9 Kvpls
Abhishek garg
No ratings yet
Deploying and Managing Enterprise Ipsec Vpns
Document55 pages
Deploying and Managing Enterprise Ipsec Vpns
Jiang Shi Feng
No ratings yet
05-6909A01 Orbit MCR Applications Guide
Document24 pages
05-6909A01 Orbit MCR Applications Guide
Gustavo Pargade
No ratings yet
Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1609) PDF
Document3 pages
Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1609) PDF
Mohaideen
No ratings yet
CCNAS Final Exam Answer 2
Document54 pages
CCNAS Final Exam Answer 2
ayion
100% (1)
DWA-131 REVE RELEASE NOTES v5.13B01 HOTFIX WINDOWS
Document2 pages
DWA-131 REVE RELEASE NOTES v5.13B01 HOTFIX WINDOWS
giuveta
No ratings yet
Azure - Windows Server - Host Scan - 2024 Jan q5trvk
Document410 pages
Azure - Windows Server - Host Scan - 2024 Jan q5trvk
eshensanjula2002
No ratings yet
Network Virtualization
Document16 pages
Network Virtualization
vivekanandhan.v
No ratings yet
Gas Controller Research
Document3 pages
Gas Controller Research
Dej Voleti
No ratings yet
Siemens Simatic Pcs7 - List of Security Vulnerabilities
Document2 pages
Siemens Simatic Pcs7 - List of Security Vulnerabilities
Jemerald
No ratings yet
Azure SQL Database Always Encrypted
Document15 pages
Azure SQL Database Always Encrypted
Kapil Vaswani
No ratings yet
Presentation Title Meraki SD-WAN: A Global Solution For Distributed Networks
Document54 pages
Presentation Title Meraki SD-WAN: A Global Solution For Distributed Networks
thimotti
No ratings yet
VBLOCK340 Overview PDF
Document3 pages
VBLOCK340 Overview PDF
sudharaghavan
No ratings yet
Identity-Based Networking Services: MAC Security: Deployment Guide
Document32 pages
Identity-Based Networking Services: MAC Security: Deployment Guide
wertre
No ratings yet
VSS VPC
Document8 pages
VSS VPC
Khoi Tran
No ratings yet
DCI2 External PDF
Document146 pages
DCI2 External PDF
oscarledesma
No ratings yet
Brksec 2236
Document35 pages
Brksec 2236
Isa
No ratings yet
Assessment System: Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing The WAN (Version 4.0)
Document16 pages
Assessment System: Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing The WAN (Version 4.0)
Euri Subiaga
No ratings yet
VA Supporting Report
Document12 pages
VA Supporting Report
madamji
No ratings yet
Team82 Finds Critical Flaws in OPC Protocol Implementations - Claroty
Document1 page
Team82 Finds Critical Flaws in OPC Protocol Implementations - Claroty
Alexander Bakken
No ratings yet
Vpls Configuration Ios XR With BGP and LDP Autodiscovery
Document104 pages
Vpls Configuration Ios XR With BGP and LDP Autodiscovery
mplsinsdnera
No ratings yet
Ccna Training Ccnav3 - New Questions 3
Document38 pages
Ccna Training Ccnav3 - New Questions 3
Remi Paternack
No ratings yet
Lightspeed Cache Vulnerability Paper
Document14 pages
Lightspeed Cache Vulnerability Paper
Majed
No ratings yet
Bridge Technology Report
From Everand
Bridge Technology Report
Architecture Technology Architecture Technology Corpor
No ratings yet
Intelligent Internet Knowledge Networks: Processing of Concepts and Wisdom
From Everand
Intelligent Internet Knowledge Networks: Processing of Concepts and Wisdom
Syed V. Ahamed
No ratings yet
Distributed Denial of Service Attacks: Steven M. Bellovin
Document13 pages
Distributed Denial of Service Attacks: Steven M. Bellovin
Bhagya Alle
No ratings yet
User Guide: AC1200 Wireless MU-MIMO Gigabit Router Archer A6/Archer C6
Document113 pages
User Guide: AC1200 Wireless MU-MIMO Gigabit Router Archer A6/Archer C6
Aro rovo
No ratings yet
An Efficient Counter-Based DDoS Attack Detection Framework Leveraging Software Defined IoT SD-IoT
Document20 pages
An Efficient Counter-Based DDoS Attack Detection Framework Leveraging Software Defined IoT SD-IoT
Khushal Singh
No ratings yet
Unit 4 - Cyber Security
Document14 pages
Unit 4 - Cyber Security
Pradmohan Singh Tomar
No ratings yet
Cyber Security Enhancing CAN Transceivers
Document4 pages
Cyber Security Enhancing CAN Transceivers
Jonatas Xavier Silva
No ratings yet
Smart Agriculture PDF
Document17 pages
Smart Agriculture PDF
Sri Sri
No ratings yet
Competitive Analysis - Fortinet Vs Trend Micro Network VirusWall
Document8 pages
Competitive Analysis - Fortinet Vs Trend Micro Network VirusWall
o0000o
No ratings yet
PSP Assignment1
Document25 pages
PSP Assignment1
B Basit
No ratings yet
Lab 2 Stopping SYN Flood Attacks
Document6 pages
Lab 2 Stopping SYN Flood Attacks
kosoe
No ratings yet
Computer Security Fundamentals 5Th Edition William Chuck Easttom Full Chapter
Document51 pages
Computer Security Fundamentals 5Th Edition William Chuck Easttom Full Chapter
jose.ferguson966
100% (17)
HTB FormulaX
Document38 pages
HTB FormulaX
abdelrahmanmahmoud0301
No ratings yet
Huawei S6720-SI Series Switches Datasheet
Document40 pages
Huawei S6720-SI Series Switches Datasheet
Jose Albino Sanchez
No ratings yet
Risks of Using Public Wi-Fi
Document4 pages
Risks of Using Public Wi-Fi
International Journal of Innovative Science and Research Technology
No ratings yet
Ddos Attacks and How To Protect Against Them: Martin Oravec
Document34 pages
Ddos Attacks and How To Protect Against Them: Martin Oravec
Gelu Constantin
No ratings yet
ONOS Overview
Document10 pages
ONOS Overview
DIBYARUP
No ratings yet
Ethical Hacking - Terminologies
Document4 pages
Ethical Hacking - Terminologies
mihirmmb
No ratings yet
Handbook Student
Document224 pages
Handbook Student
Eha Diop
No ratings yet
Term Paper PPT Security Challenges in Fog Computing
Document22 pages
Term Paper PPT Security Challenges in Fog Computing
jannat jannat
No ratings yet
Spoofing
Document21 pages
Spoofing
Akshitha Sai
No ratings yet
172 DC PDF
Document279 pages
172 DC PDF
ashish saini
100% (1)
Protection: References
Document30 pages
Protection: References
Subhash Chandra Nalla
No ratings yet