Vulnerability in Cisco Nexus_9000
CVE-2014-3330
Cisco NX-OS 6.1(2)I2(1) on Nexus 9000 switches does not properly process packet-drop policy checks for logged packets, which allows remote attackers to bypass intended access restrictions via a flood of packets matching a policy that conta…
EPSS: 0.001 (32.3th percentile) — read the EPSS interpretation.
Affected products
- Cisco Nexus_9000
- Cisco Nx-os — versions 6.1\(2\)i2\(1\)
- N/a — versions n/a
Weakness classification (CWE)
References
- 1030676 (vdb-entry, x_refsource_SECTRACK)
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- 20140805 Cisco Nexus 9000 Series Switches Access List Bypass Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
- cisco-nexus-cve20143330-sec-bypass(95122) (vdb-entry, x_refsource_XF)
- 69057 (vdb-entry, x_refsource_BID)