CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1212
https://notcve.org/view.php?id=CVE-2013-1212
29 May 2013 — The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof servers, and intercept or modify Virtual Supervisor Module (VSM) to VMware vCenter communication, via a crafted certificate, aka Bug ID CSCud14837. La funcionalidad SSL Cisco NX-OS en Nexus 1000V no verifica adecuadamente los certificados X.509, lo que permite a atacantes MiTM suplantar a los servidores, e interceptar o modificar el modulo Virtual Supervisor ... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1212 • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1213
https://notcve.org/view.php?id=CVE-2013-1213
29 May 2013 — Cisco NX-OS on the Nexus 1000V does not assign the proper priority to heartbeat messages from a Virtual Ethernet Module (VEM) to a Virtual Supervisor Module (VSM), which allows remote attackers to cause a denial of service (false VEM unavailability report) via a flood of UDP packets, aka Bug ID CSCud14840. Cisco NX-OS sobre the Nexus 1000V no asignan la prioridad adecuada a los mensajes "heartbeat" desde un módulo (VSM), lo que permite a atacantes remotos provocar una denegación de servicio (informe falso d... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1213 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 1%CPEs: 319EXPL: 0CVE-2013-1178
https://notcve.org/view.php?id=CVE-2013-1178
25 Apr 2013 — Multiple buffer overflows in the Cisco Discovery Protocol (CDP) implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(4) and 6.x before 6.1(1), Nexus 5000 and 5500 devices 4.x and 5.x before 5.1(3)N1(1), Nexus 4000 devices before 4.1(2)E1(1h), Nexus 3000 devices 5.x before 5.0(3)U3(1), Nexus 1000V devices 4.x before 4.2(1)SV1(5.1), MDS 9000 devices 4.x and 5.x before 5.2(4), Unified Computing System (UCS) 6100 and 6200 devices before 2.0(2m), and Connected Grid Router (CGR) 1000 devices... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-nxosmulti • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 66EXPL: 0CVE-2012-0352
https://notcve.org/view.php?id=CVE-2012-0352
16 Feb 2012 — Cisco NX-OS 4.2.x before 4.2(1)SV1(5.1) on Nexus 1000v series switches; 4.x and 5.0.x before 5.0(2)N1(1) on Nexus 5000 series switches; and 4.2.x before 4.2.8, 5.0.x before 5.0.5, and 5.1.x before 5.1.1 on Nexus 7000 series switches allows remote attackers to cause a denial of service (netstack process crash and device reload) via a malformed IP packet, aka Bug IDs CSCti23447, CSCti49507, and CSCtj01991. Cisco NX-OS v4.2.x antes de v4.2(1)SV1(5.1) en los switches de la serie Nexus 1000v, v4.x y v5.0.x antes... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120215-nxos • CWE-399: Resource Management Errors •