Detections
Analytics
Cisco NX-OS Software Link Layer Discovery Protocol DoS (cisco-sa-nxos-lldp-dos-z7PncTgt)
medium Nessus Plugin ID 191647
Language:
Synopsis
The remote device is missing a vendor-supplied security patchDescription
According to its self-reported version, Cisco NX-OS System Software is affected by a denial of service (DoS) vulnerability. The vulnerability lies in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software and could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device and having an authenticated user retrieve LLDP statistics from the affected device through CLI show commands or Simple Network Management Protocol (SNMP) requests. A successful exploit could allow the attacker to cause the LLDP service to crash and stop running on the affected device. In certain situations, the LLDP crash may result in a reload of the affected device. Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
Please see the included Cisco BIDs and Cisco Security Advisory for more information.
Solution
Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCwe86457, CSCwf67408, CSCwf67409, CSCwf67411, CSCwf67412, CSCwf67468, CSCwi29934, CSCwi31871See Also
http://www.nessus.org/u?789ffa5c
http://www.nessus.org/u?e327a04a
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwe86457
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf67408
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf67409
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf67411
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf67412
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf67468
Plugin Details
Severity: Medium
ID: 191647
File Name: cisco-sa-nxos-lldp-dos-z7PncTgt.nasl
Version: 1.2
Type: combined
Family: CISCO
Published: 3/6/2024
Updated: 3/8/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 6.1
Temporal Score: 4.5
Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C
CVSS Score Source: CVE-2024-20294
CVSS v3
Risk Factor: Medium
Base Score: 6.6
Temporal Score: 5.8
Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:cisco:nx-os
Required KB Items: Host/Cisco/NX-OS/Version, Host/Cisco/NX-OS/Model, Host/Cisco/NX-OS/Device
Exploit Ease: No known exploits are available
Patch Publication Date: 2/28/2024
Vulnerability Publication Date: 2/28/2024
Reference Information
CVE: CVE-2024-20294
CWE: 805
CISCO-SA: cisco-sa-nxos-lldp-dos-z7PncTgt
IAVA: 2024-A-0129
CISCO-BUG-ID: CSCwe86457, CSCwf67408, CSCwf67409, CSCwf67411, CSCwf67412, CSCwf67468, CSCwi29934, CSCwi31871