A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could exploit this vulnerability by sending a crafted HTTP request to the NX-API on an affected device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition in the NX-API service; however, the NX-OS device itself would still be available and passing network traffic. Note: The NX-API feature is disabled by default.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
21 Nov 2024, 04:37
Type | Values Removed | Values Added |
---|---|---|
References | () https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-api-dosĀ - Vendor Advisory |
Information
Published : 2019-08-30 09:15
Updated : 2024-11-21 04:37
NVD link : CVE-2019-1968
Mitre link : CVE-2019-1968
CVE.ORG link : CVE-2019-1968
JSON object : View
Products Affected
cisco
- nexus_9348gc-fxp
- nexus_3064-t
- nexus_9516
- nexus_5596t
- nexus_9332c
- nexus_5548p
- nexus_92160yc-x
- nexus_7700_18-slot
- nx-os
- nexus_3172
- nexus_93240yc-fx2
- nexus_3464c
- nexus_7000_10-slot
- nexus_9372px-e
- nexus_92300yc
- nexus_7700
- nexus_7000_9-slot
- nexus_3432d-s
- nexus_9372px
- nexus_3548-x
- nexus_34180yc
- nexus_36180yc-r
- nexus_9504
- nexus_3264q
- mds_9200
- nexus_9372tx-e
- nexus_3524-x
- nexus_7700_10-slot
- nexus_3548-xl
- nexus_31128pq
- nexus_93360yc-fx2
- nexus_9396tx
- nexus_3636c-r
- nexus_9000v
- nexus_5548up
- nexus_3548
- nexus_9364c
- nexus_7000_4-slot
- nexus_9508
- nexus_6004
- nexus_7700_2-slot
- nexus_3172tq
- nexus_93120tx
- nexus_92348gc-x
- nexus_92304qc
- nexus_5596up
- nexus_3132q-v
- nexus_9336c-fx2
- mds_9100
- nexus_5672up
- nexus_7000
- nexus_93216tc-fx2
- mds_9700
- nexus_3264c-e
- nexus_93108tc-fx
- nexus_93180lc-ex
- nexus_3408-s
- nexus_31108pc-v
- nexus_93180yc-ex
- nexus_3132q
- nexus_5648q
- nexus_9396px
- nexus_93128tx
- nexus_93108tc-ex
- nexus_3016
- nexus_9236c
- nexus_3524-xl
- nexus_3232c
- nexus_7000_18-slot
- nexus_56128p
- nexus_5696q
- nexus_3172pq-xl
- nexus_3048
- nexus_93180yc-fx
- mds_9500
- nexus_31108tc-v
- nexus_3164q
- nexus_3524
- nexus_3132q-xl
- nexus_6001
- mds_9000
- nexus_3064
- nexus_3132c-z
- nexus_5624q
- nexus_3172tq-32t
- mds_9140
- nexus_3172tq-xl
- nexus_9372tx
- nexus_7700_6-slot
- nexus_9332pq
- nexus_9336pq_aci_spine
- nexus_9272q