Severity Rating: HIGH
Component Affected
•MDS 9100 Series Multilayer Fabric Switches
•MDS 9250i Multiservice Fabric Switches
•MDS 9300 Series Multilayer Fabric Switches.
Overview
Vulnerability has been reported in the resource handling system of Cisco
NX-OS Software for Cisco MDS 9000 Series Multilayer Switches which could
allow an unauthenticated, remote attacker to cause a denial of service
(DoS) condition on an affected device.
Description
A Vulnerability exists in the resource handling system of Cisco NX-OS
Software for Cisco MDS 9000 Series Multilayer Switches due to improper
resource usage control that could allow the attacker to cause a denial of
service (DoS) condition. An attacker could exploit this vulnerability by
sending traffic to the management interface (mgmt0) of an affected device
at very high rates and this could allow the attacker to cause unexpected
behaviors such as high CPU usage, process crashes, or even full system
reboots of an affected device.
Successful exploitation of this vulnerability could allow the attacker to
cause a denial of service (DoS) condition.
Solution
Apply appropriate updates as mentioned in:
- -sa-20200226-mds-ovrld-dos
Vendor Information
CISCO
- -sa-20200226-mds-ovrld-dos
References
CISCO
- -sa-20200226-mds-ovrld-dos
CVE Name
CVE-2020-3175
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.
![Fwd: [CIVN-2020-0206] Denial of Service Vulnerability in Docker Engine](http://3.bp.blogspot.com/-ZRo8fwgs65M/UZC2jMJpcLI/AAAAAAAAC5Y/EfoFQsr1wzU/s1600/BS+No+Image.gif )