exploitDog

GHSA-4cq8-34fv-5935

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cisco NX-OS on the Nexus 1000V does not properly handle authentication for Virtual Ethernet Module (VEM) to Virtual Supervisor Module (VSM) communication, which allows remote attackers to obtain VEM access via (1) spoofed STUN packets or (2) a crafted VMware ESXi instance, aka Bug ID CSCud14832.

Cisco NX-OS on the Nexus 1000V does not properly handle authentication for Virtual Ethernet Module (VEM) to Virtual Supervisor Module (VSM) communication, which allows remote attackers to obtain VEM access via (1) spoofed STUN packets or (2) a crafted VMware ESXi instance, aka Bug ID CSCud14832.

Ссылки

EPSS

Процентиль: 57%

0.00353

Низкий

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2013-1211

nvd

больше 12 лет назад

Cisco NX-OS on the Nexus 1000V does not properly handle authentication for Virtual Ethernet Module (VEM) to Virtual Supervisor Module (VSM) communication, which allows remote attackers to obtain VEM access via (1) spoofed STUN packets or (2) a crafted VMware ESXi instance, aka Bug ID CSCud14832.

EPSS

Процентиль: 57%

0.00353

Низкий

CVE ID

Дефекты

CWE-287