1. Home
  2. CVE Database
  3. CVE-2015-4296
MEDIUM · 5.0

CVE-2015-4296

Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software 6.0(2)A6(1) allows remote attackers to cause a denial of service (Java process restart) via crafted connections to the Java applicatio...

Vulnerability Description

Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software 6.0(2)A6(1) allows remote attackers to cause a denial of service (Java process restart) via crafted connections to the Java application, aka Bug ID CSCut87006.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL

Affected Products

VendorProductVersions
CiscoNx-Os6.0\(2\)a6\(1\)
CiscoNexus 3016-
CiscoNexus 3048-
CiscoNexus 3064-
CiscoNexus 31128Pq-
CiscoNexus 3132Q-
CiscoNexus 3164Q-
CiscoNexus 3172-
CiscoNexus 3232C-
CiscoNexus 3524-
CiscoNexus 3548-

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2015-4296?

CVE-2015-4296 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software 6.0(2)A6(1) allows remote attackers to cause a denial of service (Java process restart) via crafted connections to the Java applicatio...

How severe is CVE-2015-4296?

CVE-2015-4296 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-4296?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 3016, Cisco Nexus 3048, Cisco Nexus 3064, Cisco Nexus 31128Pq.