A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on an affected device. The vulnerability exists because of insufficiently validated Cisco Discovery Protocol packet headers. An attacker could exploit this vulnerability by sending a crafted Cisco Discovery Protocol packet to a Layer 2-adjacent affected device. A successful exploit could allow the attacker to cause a buffer overflow that could allow the attacker to execute arbitrary code as root or cause a DoS condition on the affected device. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). Note: This vulnerability is different from the following Cisco FXOS and NX-OS Software Cisco Discovery Protocol vulnerabilities that Cisco announced on Feb. 5, 2020: Cisco FXOS, IOS XR, and NX-OS Software Cisco Discovery Protocol Denial of Service Vulnerability and Cisco NX-OS Software Cisco Discovery Protocol Remote Code Execution Vulnerability.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Cisco | Cisco Unified Computing System (Managed) | affected |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
No data.
No data.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Cisco
Subscribe
|
Firepower 4110
Subscribe
Firepower 4115
Subscribe
Firepower 4120
Subscribe
Firepower 4125
Subscribe
Firepower 4140
Subscribe
Firepower 4145
Subscribe
Firepower 4150
Subscribe
Firepower 9300
Subscribe
Firepower Extensible Operating System
Subscribe
Mds 9132t
Subscribe
Mds 9148s
Subscribe
Mds 9148t
Subscribe
Mds 9216
Subscribe
Mds 9216a
Subscribe
Mds 9216i
Subscribe
Mds 9222i
Subscribe
Mds 9506
Subscribe
Mds 9509
Subscribe
Mds 9513
Subscribe
Mds 9706
Subscribe
Mds 9710
Subscribe
Mds 9718
Subscribe
Nexus 1000v
Subscribe
Nexus 1000ve
Subscribe
Nexus 3016
Subscribe
Nexus 3048
Subscribe
Nexus 3064
Subscribe
Nexus 3064-t
Subscribe
Nexus 31108pc-v
Subscribe
Nexus 31108tc-v
Subscribe
Nexus 31128pq
Subscribe
Nexus 3132c-z
Subscribe
Nexus 3132q
Subscribe
Nexus 3132q-v
Subscribe
Nexus 3132q-xl
Subscribe
Nexus 3164q
Subscribe
Nexus 3172
Subscribe
Nexus 3172pq-xl
Subscribe
Nexus 3172tq
Subscribe
Nexus 3172tq-32t
Subscribe
Nexus 3172tq-xl
Subscribe
Nexus 3232c
Subscribe
Nexus 3264c-e
Subscribe
Nexus 3264q
Subscribe
Nexus 3408-s
Subscribe
Nexus 34180yc
Subscribe
Nexus 3432d-s
Subscribe
Nexus 3464c
Subscribe
Nexus 3524
Subscribe
Nexus 3524-x
Subscribe
Nexus 3524-xl
Subscribe
Nexus 3548
Subscribe
Nexus 3548-x
Subscribe
Nexus 3548-xl
Subscribe
Nexus 36180yc-r
Subscribe
Nexus 3636c-r
Subscribe
Nexus 5010
Subscribe
Nexus 5020
Subscribe
Nexus 5548p
Subscribe
Nexus 5548up
Subscribe
Nexus 5596t
Subscribe
Nexus 5596up
Subscribe
Nexus 56128p
Subscribe
Nexus 5624q
Subscribe
Nexus 5648q
Subscribe
Nexus 5672up
Subscribe
Nexus 5696q
Subscribe
Nexus 6001
Subscribe
Nexus 6004
Subscribe
Nexus 7000
Subscribe
Nexus 7700
Subscribe
Nexus 92304qc
Subscribe
Nexus 92348gc-x
Subscribe
Nexus 9236c
Subscribe
Nexus 9272q
Subscribe
Nexus 93108tc-ex
Subscribe
Nexus 93108tc-fx
Subscribe
Nexus 93120tx
Subscribe
Nexus 93128tx
Subscribe
Nexus 93180lc-ex
Subscribe
Nexus 93180yc-ex
Subscribe
Nexus 93180yc-fx
Subscribe
Nexus 93216tc-fx2
Subscribe
Nexus 93240yc-fx2
Subscribe
Nexus 9332c
Subscribe
Nexus 9332pq
Subscribe
Nexus 93360yc-fx2
Subscribe
Nexus 9336c-fx2
Subscribe
Nexus 9336pq Aci Spine
Subscribe
Nexus 9348gc-fxp
Subscribe
Nexus 9364c
Subscribe
Nexus 9372px
Subscribe
Nexus 9372px-e
Subscribe
Nexus 9372tx
Subscribe
Nexus 9372tx-e
Subscribe
Nexus 9396px
Subscribe
Nexus 9396tx
Subscribe
Nexus 9504
Subscribe
Nexus 9508
Subscribe
Nexus 9516
Subscribe
Nx-os
Subscribe
Ucs 6248up
Subscribe
Ucs 6296up
Subscribe
Ucs 6324
Subscribe
Ucs 6332
Subscribe
Ucs 6332-16up
Subscribe
Ucs Manager
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2020-24443 | A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code as root or cause a denial of service (DoS) condition on an affected device. The vulnerability exists because of insufficiently validated Cisco Discovery Protocol packet headers. An attacker could exploit this vulnerability by sending a crafted Cisco Discovery Protocol packet to a Layer 2-adjacent affected device. A successful exploit could allow the attacker to cause a buffer overflow that could allow the attacker to execute arbitrary code as root or cause a DoS condition on the affected device. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). Note: This vulnerability is different from the following Cisco FXOS and NX-OS Software Cisco Discovery Protocol vulnerabilities that Cisco announced on Feb. 5, 2020: Cisco FXOS, IOS XR, and NX-OS Software Cisco Discovery Protocol Denial of Service Vulnerability and Cisco NX-OS Software Cisco Discovery Protocol Remote Code Execution Vulnerability. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Fri, 15 Nov 2024 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2024-11-15T17:38:15.493Z
Reserved: 2019-12-12T00:00:00
Link: CVE-2020-3172
Vulnrichment
Updated: 2024-08-04T07:24:00.791Z
NVD
Status : Modified
Published: 2020-02-26T17:15:13.343
Modified: 2024-11-21T05:30:28.670
Link: CVE-2020-3172
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses