CVE-2015-4324
Last modified
CVE-2015-4324 is a vulnerability of currently unknown severity. Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote attackers to cause a denial of service (IGMP process restart) via a malformed IGMPv3 packet that is mishandled during memory allocation, aka Bug IDs CSCuv69713, CSCuv69717, CSCuv69723, CSCuv69732, and CSCuv48908.. EPSS estimates a 1.12% chance of exploitation in the next 30 days.
Description
Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote attackers to cause a denial of service (IGMP process restart) via a malformed IGMPv3 packet that is mishandled during memory allocation, aka Bug IDs CSCuv69713, CSCuv69717, CSCuv69723, CSCuv69732, and CSCuv48908.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nx-Os | 7.3\(0\)zn\(0.81\) |
| Cisco | Nx-Os | 4.1\(2\)e1\(1c\) |
| Cisco | Nx-Os | 7.2\(0\)n1\(0.1\) |
References
- http://www.securityfocus.com/bid/76372Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1033327Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/76372Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1033327Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-4324?
How severe is CVE-2015-4324?
How do I fix CVE-2015-4324?
Are you affected by CVE-2015-4324?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST