CVE-2020-3175— Cisco MDS 9000 Series Multilayer Switches Denial of Service Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-3175
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco MDS 9000 Series Multilayer Switches Denial of Service Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource usage control. An attacker could exploit this vulnerability by sending traffic to the management interface (mgmt0) of an affected device at very high rates. An exploit could allow the attacker to cause unexpected behaviors such as high CPU usage, process crashes, or even full system reboots of an affected device.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
在生命周期中对资源的控制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco MDS 9000 Series Multilayer Switches NX-OS Software 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco MDS 9000 Series Multilayer Switches是美国思科(Cisco)公司的一款MDS 9000系列多层交换机。Cisco NX-OS Software是一套交换机使用的数据中心级操作系统软件。 Cisco MDS 9000 Series Multilayer Switches中的NX-OS Software的资源处理系统存在安全漏洞,该漏洞源于程序没有正确控制资源的使用。远程攻击者可通过快速向管理接口发送流量利用该漏洞造成拒绝服务(大量占用CPU、进程崩溃或重启系统)
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco NX-OS Software 5.0(1a) | unspecified ~ n/a | - |
II. Public POCs for CVE-2020-3175
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-3175
请登录查看更多情报信息。
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200226-mds-ovrld-dosvendor-advisoryx_refsource_CISCO
- https://nvd.nist.gov/vuln/detail/CVE-2020-3175
Same Patch Batch · Cisco · 2020-02-26 · 11 CVEs total
| CVE-2020-3165 | Cisco NX-OS Software Border Gateway Protocol MD5 Authentication Bypass Vulnerability | |
| CVE-2020-3174 | Cisco NX-OS Software Anycast Gateway Invalid ARP Vulnerability | |
| CVE-2020-3173 | Cisco UCS Manager Software Local Management CLI Command Injection Vulnerability | |
| CVE-2020-3172 | Cisco FXOS and NX-OS Software Cisco Discovery Protocol Arbitrary Code Execution and Denial | |
| CVE-2020-3171 | Cisco FXOS and UCS Manager Software Local Management CLI Command Injection Vulnerability | |
| CVE-2020-3170 | Cisco NX-OS Software NX-API Denial of Service Vulnerability | |
| CVE-2020-3169 | Cisco FXOS Software CLI Command Injection Vulnerability | |
| CVE-2020-3168 | Cisco Nexus 1000V Switch for VMware vSphere Secure Login Enhancements Denial of Service Vu | |
| CVE-2020-3167 | Cisco FXOS and UCS Manager Software CLI Command Injection Vulnerability | |
| CVE-2020-3166 | Cisco FXOS Software CLI Arbitrary File Read and Write Vulnerability |
IV. Related Vulnerabilities
Same vendor: Cisco
- CVE-2026-20224
Cisco Catalyst SD-WAN Manager XML External Entity Injection - CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20209
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20182
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulne - CVE-2026-20219
Cisco Slido 安全漏洞
V. Comments for CVE-2020-3175
No comments yet