1. Home
  2. CVE Database
  3. CVE-2024-20291
MEDIUM · 5.8

CVE-2024-20291

A vulnerability in the access control list (ACL) programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote...

Vulnerability Description

A vulnerability in the access control list (ACL) programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to send traffic that should be blocked through an affected device. This vulnerability is due to incorrect hardware programming that occurs when configuration changes are made to port channel member ports. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to access network resources that should be protected by an ACL that was applied on port channel subinterfaces.

CVSS Score

5.8

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
NONE
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
CiscoNx-Os9.3\(10\)
CiscoNexus 3000 In Standalone Nx-Os Mode-
CiscoNexus 3048-
CiscoNexus 31108Pc-V-
CiscoNexus 31108Tc-V-
CiscoNexus 31128Pq-
CiscoNexus 3132C-Z-
CiscoNexus 3132Q-V-
CiscoNexus 3132Q-Xl-
CiscoNexus 3164Q-
CiscoNexus 3172Pq-
CiscoNexus 3172Pq-Xl-
CiscoNexus 3172Tq-
CiscoNexus 3172Tq-32T-
CiscoNexus 3172Tq-Xl-
CiscoNexus 3232C-
CiscoNexus 3264C-E-
CiscoNexus 3264Q-
CiscoNexus 3408-S-
CiscoNexus 34180Yc-

Related Weaknesses (CWE)

CWE-284CWE-863

References

FAQ

What is CVE-2024-20291?

CVE-2024-20291 is a vulnerability with a CVSS score of 5.8 (MEDIUM). A vulnerability in the access control list (ACL) programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote...

How severe is CVE-2024-20291?

CVE-2024-20291 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-20291?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 3000 In Standalone Nx-Os Mode, Cisco Nexus 3048, Cisco Nexus 31108Pc-V, Cisco Nexus 31108Tc-V.