QID 317024
Date Published: 2021-09-02
QID 317024: Cisco NX-OS Software system login block-for Denial of Service Vulnerability (cisco-sa-nxos-login-blockfor-RwjGVEcu)
A vulnerability in the implementation of the system login block-for command for Cisco NX-OS Software could
allow an unauthenticated, remote attacker to cause a login process to unexpectedly restart, causing a denial of service (DoS) condition.
Affected Products
Following Cisco products if they were running a vulnerable release of Cisco NX-OS Software and had the system login block-for CLI command configured:
MDS 9000 Series Multilayer Switches
Nexus 3000 Series Switches
Nexus 5500 Platform Switches
Nexus 5600 Platform Switches
Nexus 6000 Series Switches
Nexus 7000 Series Switches
Nexus 9000 Series Switches in standalone NX-OS mode
Note: The system login block-for command is disabled by default.
QID Detection Logic(Authenticated):
It checks for vulnerable version of Cisco NX-OS using show version Command.
A successful exploit could allow the attacker to cause a login process to reload, which could result in a delay during authentication to the affected device.
Customers are advised to refer to cisco-sa-nxos-login-blockfor-RwjGVEcu for more information.
- cisco-sa-nxos-login-blockfor-RwjGVEcu -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-login-blockfor-RwjGVEcu
CVEs related to QID 317024
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-nxos-login-blockfor-RwjGVEcu |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-login-blockfor-RwjGVEcu |