Vulnerability Description
Cisco NX-OS 6.1(2)I3(4) and 7.0(3)I1(1) on Nexus 9000 (N9K) devices allows remote attackers to cause a denial of service (CPU consumption or control-plane instability) or trigger unintended traffic forwarding via a Layer 2 packet with a reserved VLAN number, aka Bug ID CSCuw13560.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nx-Os | 6.1\(2\)i3\(4\) |
| Cisco | Nexus 9000 | - |
| Cisco | Nexus 93120Tx | - |
| Cisco | Nexus 93128Tx | - |
| Cisco | Nexus 9332Pq | - |
| Cisco | Nexus 9336Pq Aci Spine | - |
| Cisco | Nexus 9372Px | - |
| Cisco | Nexus 9372Tx | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=40990Vendor Advisory
- http://www.securitytracker.com/id/1033611Third Party AdvisoryVDB Entry
- http://tools.cisco.com/security/center/viewAlert.x?alertId=40990Vendor Advisory
- http://www.securitytracker.com/id/1033611Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-6295?
CVE-2015-6295 is a vulnerability with a CVSS score of 4.8 (MEDIUM). Cisco NX-OS 6.1(2)I3(4) and 7.0(3)I1(1) on Nexus 9000 (N9K) devices allows remote attackers to cause a denial of service (CPU consumption or control-plane instability) or trigger unintended traffic fo...
How severe is CVE-2015-6295?
CVE-2015-6295 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-6295?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 9000, Cisco Nexus 93120Tx, Cisco Nexus 93128Tx, Cisco Nexus 9332Pq.