CVE-2024-20321
Severity Score
8.6
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue. An attacker could exploit this vulnerability by sending large amounts of network traffic with certain characteristics through an affected device. A successful exploit could allow the attacker to cause eBGP neighbor sessions to be dropped, leading to a DoS condition in the network.
Una vulnerabilidad en la implementación del protocolo de puerta de enlace de frontera externa (eBGP) del software Cisco NX-OS podría permitir que un atacante remoto no autenticado cause una condición de denegación de servicio (DoS) en un dispositivo afectado. Esta vulnerabilidad existe porque el tráfico eBGP está asignado a una cola limitadora de velocidad de hardware compartida. Un atacante podría aprovechar esta vulnerabilidad enviando grandes cantidades de tráfico de red con determinadas características a través de un dispositivo afectado. Un exploit exitoso podría permitir al atacante provocar la caída de las sesiones vecinas de eBGP, lo que provocaría una condición DoS en la red.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-11-08 CVE Reserved
- 2024-02-28 CVE Published
- 2024-08-16 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
- CWE-770: Allocation of Resources Without Limits or Throttling
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f1\(1\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f1\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f2\(1\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f2\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f2\(2\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f2\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(1\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(2\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(3\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(3\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(3a\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(3a\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(3c\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(3c\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(4\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(4\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 7.0\(3\)f3\(5\) Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)f3\(5\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(1\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(2\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(2t\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(2t\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(2v\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(2v\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(3\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(3\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.2\(4\) Search vendor "Cisco" for product "Nx-os" and version "9.2\(4\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(1\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(2\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(3\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(3\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(4\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(4\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(5\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(5\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(6\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(6\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(7\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(7\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(7a\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(7a\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(8\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(8\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(9\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(9\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(10\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(10\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(11\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(11\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 9.3\(12\) Search vendor "Cisco" for product "Nx-os" and version "9.3\(12\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.1\(1\) Search vendor "Cisco" for product "Nx-os" and version "10.1\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.1\(2\) Search vendor "Cisco" for product "Nx-os" and version "10.1\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.1\(2t\) Search vendor "Cisco" for product "Nx-os" and version "10.1\(2t\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(1\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(1q\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(1q\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(2\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(3\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(3\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(3t\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(3t\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(3v\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(3v\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(4\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(4\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(5\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(5\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.2\(6\) Search vendor "Cisco" for product "Nx-os" and version "10.2\(6\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(1\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(1\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(2\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(2\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(3\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(3\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(4a\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(4a\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(99w\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(99w\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.3\(99x\) Search vendor "Cisco" for product "Nx-os" and version "10.3\(99x\)" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 10.4\(1\) Search vendor "Cisco" for product "Nx-os" and version "10.4\(1\)" | - |
Affected
| ||||||