ID
VAR-201311-0237
CVE
CVE-2013-6683
TITLE
Cisco NX-OS of IPv6 Service disruption in implementations (DoS) Vulnerabilities
Trust: 0.8
DESCRIPTION
The IPv6 implementation in Cisco NX-OS does not properly handle neighbor-table adjacencies, which allows remote attackers to cause a denial of service (NS processing outage) via a series of malformed packets, aka Bug ID CSCtd15904. The Cisco Nexus Series switches are data center switches. Adopt the Cisco Nexus OS operating system. A denial of service vulnerability exists in the Cisco NX-OS Software for Nexus 4000 Series. Successful exploits may cause the device to stop responding to NS requests, resulting in denial-of-service conditions. This issue is being tracked by Cisco bug ID CSCtd15904. There is a security loophole in the IPv6 implementation process in Cisco NX-OS software. The loophole is caused by the program not correctly handling the connection relationship of the neighbor table
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | nx-os | scope: | eq | version: | - | Trust: 1.6 |
| vendor: | cisco | model: | nx-os | scope: | lte | version: | 4.1(2)e1(1j) | Trust: 0.8 |
| vendor: | cisco | model: | nx-os | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
THREAT TYPE
specific network environment
Trust: 0.6
TYPE
input validation
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | Cisco Nexus 4000 Series Switches IPv6 Denial of Service Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6683 | Trust: 0.8 |
| title: | 31740 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=31740 | Trust: 0.8 |
| title: | Patch for Cisco NX-OS Software for Nexus 4000 Series Denial of Service Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/41129 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2013-6683 | Trust: 3.4 |
| db: | BID | id: | 63685 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2013-005109 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201311-200 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2013-14474 | Trust: 0.6 |
| db: | CISCO | id: | 20131112 CISCO NEXUS 4000 SERIES SWITCHES IPV6 DENIAL OF SERVICE VULNERABILITY | Trust: 0.6 |
| db: | VULHUB | id: | VHN-66685 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-6683 | Trust: 2.3 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-6683 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-6683 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2013-14474 |
| db: | VULHUB | id: | VHN-66685 |
| db: | BID | id: | 63685 |
| db: | JVNDB | id: | JVNDB-2013-005109 |
| db: | CNNVD | id: | CNNVD-201311-200 |
| db: | NVD | id: | CVE-2013-6683 |
LAST UPDATE DATE
2024-11-23T23:09:55.417000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-14474 | date: | 2013-11-15T00:00:00 |
| db: | VULHUB | id: | VHN-66685 | date: | 2013-11-14T00:00:00 |
| db: | BID | id: | 63685 | date: | 2013-11-15T00:53:00 |
| db: | JVNDB | id: | JVNDB-2013-005109 | date: | 2013-11-15T00:00:00 |
| db: | CNNVD | id: | CNNVD-201311-200 | date: | 2013-11-14T00:00:00 |
| db: | NVD | id: | CVE-2013-6683 | date: | 2024-11-21T01:59:32.867 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2013-14474 | date: | 2013-11-15T00:00:00 |
| db: | VULHUB | id: | VHN-66685 | date: | 2013-11-13T00:00:00 |
| db: | BID | id: | 63685 | date: | 2013-11-12T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-005109 | date: | 2013-11-15T00:00:00 |
| db: | CNNVD | id: | CNNVD-201311-200 | date: | 2013-11-14T00:00:00 |
| db: | NVD | id: | CVE-2013-6683 | date: | 2013-11-13T15:55:04.487 |