Versio.io

CVE-2022-20624

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 23-02-2022 07:15
Last modified: - 07-03-2022 04:08
Total changes: - 3

Description

A vulnerability in the Cisco Fabric Services over IP (CFSoIP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of incoming CFSoIP packets. An attacker could exploit this vulnerability by sending crafted CFSoIP packets to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Low
Attack complexity
Network
Attack vector
High
Availability
None
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
 

Verification logic

OR
AND
OR
vendor=cisco AND product=nx-os AND version=7.0\(3\)
vendor=cisco AND product=nx-os AND version=9.2\(2\)
vendor=cisco AND product=nx-os AND version=9.2\(3\)
vendor=cisco AND product=nx-os AND version=9.3\(3\)
vendor=cisco AND product=nx-os AND version=9.3\(5\)
OR
vendor=cisco AND product=n9k-c9316d-gx AND version=-
vendor=cisco AND product=n9k-c9332d-gx2b AND version=-
vendor=cisco AND product=n9k-c9348d-gx2a AND version=-
vendor=cisco AND product=n9k-c93600cd-gx AND version=-
vendor=cisco AND product=n9k-c9364d-gx2a AND version=-
vendor=cisco AND product=nexus_3048 AND version=-
vendor=cisco AND product=nexus_31108pc-v AND version=-
vendor=cisco AND product=nexus_31108tc-v AND version=-
vendor=cisco AND product=nexus_31128pq AND version=-
vendor=cisco AND product=nexus_3132c-z AND version=-
vendor=cisco AND product=nexus_3132q-v AND version=-
vendor=cisco AND product=nexus_3132q-x AND version=-
vendor=cisco AND product=nexus_3132q-xl AND version=-
vendor=cisco AND product=nexus_3164q AND version=-
vendor=cisco AND product=nexus_3172pq AND version=-
vendor=cisco AND product=nexus_3172pq-xl AND version=-
vendor=cisco AND product=nexus_3172tq-xl AND version=-
vendor=cisco AND product=nexus_3232c AND version=-
vendor=cisco AND product=nexus_3264c-e AND version=-
vendor=cisco AND product=nexus_3264q AND version=-
vendor=cisco AND product=nexus_3408-s AND version=-
vendor=cisco AND product=nexus_34180yc AND version=-
vendor=cisco AND product=nexus_3432d-s AND version=-
vendor=cisco AND product=nexus_3464c AND version=-
vendor=cisco AND product=nexus_3524-x AND version=-
vendor=cisco AND product=nexus_3524-xl AND version=-
vendor=cisco AND product=nexus_3548-x AND version=-
vendor=cisco AND product=nexus_3548-xl AND version=-
vendor=cisco AND product=nexus_36180yc-r AND version=-
vendor=cisco AND product=nexus_3636c-r AND version=-
vendor=cisco AND product=nexus_92160yc-x AND version=-
vendor=cisco AND product=nexus_92300yc AND version=-
vendor=cisco AND product=nexus_92304qc AND version=-
vendor=cisco AND product=nexus_92348gc-x AND version=-
vendor=cisco AND product=nexus_9236c AND version=-
vendor=cisco AND product=nexus_9272q AND version=-
vendor=cisco AND product=nexus_9504 AND version=-
vendor=cisco AND product=nexus_9508 AND version=-
vendor=cisco AND product=nexus_9516 AND version=-
AND
OR
vendor=cisco AND product=nx-os AND version=4.1\(1a\)a
vendor=cisco AND product=nx-os AND version=7.0\(3\)
OR
vendor=cisco AND product=ucs_64108 AND version=-
vendor=cisco AND product=ucs_6454 AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2022-20624

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.