CVE-2015-6277

The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus 4000 devices 4.1(2)E1, Nexus 9000 devices 7.3(0)ZD(0.61), and MDS 9000 devices 7.0(0)HSK(0.353) and SAN-OS NX-OS on MDS 9000 devices 7.0(0)HSK(0.353) allows remote attackers to cause a denial of service (ARP process restart) via crafted packet-header fields, aka Bug ID CSCut25292.

Published: Sep 2, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-6277
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.1
AV:A/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / nx-os	7.3(0)zd(0.47)	7.3(0)zd(0.47).x
cisco / nx-os	4.1(2)e1	4.1(2)e1.x
cisco / nx-os	7.0(0)hsk(0.353)	7.0(0)hsk(0.353).x
cisco / san-os	7.0(0)hsk(0.353)	7.0(0)hsk(0.353).x
cisco / nx-os	7.3(0)zd(0.61)	7.3(0)zd(0.61).x
cisco / 1000v	5.2(1)sv3(1.4)	5.2(1)sv3(1.4).x

http://tools.cisco.com/security/center/viewAlert.x?alertId=40748
http://www.securitytracker.com/id/1033443

Vulnerability Database

289,599

CVE-2015-6277