Detections
Analytics
Cisco NX-OS Improper Input Validation (CVE-2012-4091)
medium Tenable OT Security Plugin ID 502773
Synopsis
The remote OT asset is affected by a vulnerability.Description
The RIP service engine in Cisco NX-OS allows remote attackers to cause a denial of service (engine restart) via a malformed (1) RIPv4 or (2) RIPv6 message, aka Bug ID CSCtj73415.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
http://www.nessus.org/u?41dac69a
http://www.securityfocus.com/bid/62838
Plugin Details
Severity: Medium
ID: 502773
Version: 1.2
Type: remote
Family: Tenable.ot
Published: 12/4/2024
Updated: 12/5/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS Score Source: CVE-2012-4091
Vulnerability Information
CPE: cpe:/o:cisco:nx-os:-
Required KB Items: Tenable.ot/Cisco
Exploit Ease: No known exploits are available
Patch Publication Date: 10/5/2013
Vulnerability Publication Date: 10/5/2013
Reference Information
CVE: CVE-2012-4091
CWE: 20