Cisco NX-OS Software和Cisco FXOS Software 输入验证错误漏洞

CNNVD-ID编号	CNNVD-201908-2147
CVE编号	CVE-2019-1963
发布时间	2019-08-28
更新时间	2019-10-10
漏洞类型	输入验证错误
漏洞来源	The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
危险等级	中危
威胁类型	远程
厂商	N/A

漏洞介绍

Cisco Firepower 4100 Series等都是美国思科（Cisco）公司的产品。Cisco Firepower 4100 Series是一款4100系列的防火墙设备。Cisco FXOS Software是一套运行在思科安全设备中的防火墙软件。Cisco Nexus 3000 Series Switches是一款3000系列交换机。Cisco MDS 9000 Series Multilayer Switches是一款MDS 9000系列多层交换机。Cisco NX-OS Software是一套交换机使用的数据中心级操作系统软件。

Cisco FXOS Software和Cisco NX-OS Software中的Simple Network Management Protocol (SNMP) 输入数据包处理器存在输入验证错误漏洞，该漏洞源于程序没有正确验证SNMP数据包中的变量。远程攻击者可通过发送特制的SNMP数据包利用该漏洞造成该SNMP应用程序重启。以下产品及版本受到影响：Cisco Firepower 4100 Series；Firepower 9300 Security Appliances；MDS 9000 Series Multilayer Switches；Nexus 1000 Virtual Edge for VMware vSphere；Nexus 1000V Switch for Microsoft Hyper-V；Nexus 1000V Switch for VMware vSphere；Nexus 3000 Series Switches；Nexus 3500 Platform Switches；Nexus 3600 Platform Switches；Nexus 5500 Platform Switches；Nexus 5600 Platform Switches；Nexus 6000 Series Switches；Nexus 7000 Series Switches；Nexus 7700 Series Switches；Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode；Nexus 9000 Series Switches in standalone NX-OS mode；Nexus 9500 R-Series Switching Platform；UCS 6200 Series Fabric Interconnects；UCS 6300 Series Fabric Interconnects；UCS 6400 Series Fabric Interconnects。

漏洞补丁

目前厂商已发布升级了Cisco NX-OS Software和Cisco FXOS Software 输入验证错误漏洞的补丁，Cisco NX-OS Software和Cisco FXOS Software 输入验证错误漏洞的补丁获取链接：

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-fxnxos-snmp-dos?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20FXOS%20and%20NX-OS%20Software%20Authenticated%20Simple%20Network%20Management%20Protocol%20Denial%20of%20Service%20Vulnerability&vs_k=1

参考网址

来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-snmp-bypass
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-memleak-dos
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-ntp-dos
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-api-dos
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-ipv6-dos
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-fsip-dos
来源:tools.cisco.com

链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-fxnxos-snmp-dos
来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2019.3276.2/
来源:nvd.nist.gov

链接：https://nvd.nist.gov/vuln/detail/CVE-2019-1963

受影响实体

暂无

信息来源

http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201908-2147