What is the severity of CVE-2017-6655?

CVE-2017-6655 is rated as a medium severity vulnerability that can result in a denial of service (DoS) condition.

How do I fix CVE-2017-6655?

To remediate CVE-2017-6655, upgrade Cisco NX-OS Software to the latest version that is not affected by this vulnerability.

Who is affected by CVE-2017-6655?

CVE-2017-6655 affects several versions of Cisco NX-OS Software running on specific hardware including MDS 9000 and Nexus platforms.

Is CVE-2017-6655 remote or local?

CVE-2017-6655 is considered an adjacent attack, which means the attacker must be on the same local network segment.

Vulnerability/
CVE-2017-6655

medium

6.5

CWE

119

13/6/2017

16/12/2021

CVE-2017-6655: Buffer Overflow

First published: Tue Jun 13 2017(Updated: )

A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when an FCoE-related process unexpectedly reloads. This vulnerability affects Cisco NX-OS Software on the following Cisco devices when they are configured for FCoE: Multilayer Director Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches. More Information: CSCvc91729. Known Affected Releases: 8.3(0)CV(0.833). Known Fixed Releases: 8.3(0)ISH(0.62) 8.3(0)CV(0.944) 8.1(1) 8.1(0.8)S0 7.3(2)D1(0.47).

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco MDS 9000 NX-OS	=7.3\(1\)d1\(1\)
Cisco NX-OS for Nexus 5500 Platform Switches	=7.3\(1\)n1\(1\)
Cisco NX-OS for nexus 5600 platform switches	=7.3\(1\)n1\(1\)
Cisco NX-OS for Nexus 7700 Series Switches	=8.0\(1\)\(ed\)
Cisco NX-OS	=8.0\(1\)s2
Cisco NX-OS	=8.3\(0\)cv\(0.833\)

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-6655?
CVE-2017-6655 is rated as a medium severity vulnerability that can result in a denial of service (DoS) condition.
How do I fix CVE-2017-6655?
To remediate CVE-2017-6655, upgrade Cisco NX-OS Software to the latest version that is not affected by this vulnerability.
Who is affected by CVE-2017-6655?
CVE-2017-6655 affects several versions of Cisco NX-OS Software running on specific hardware including MDS 9000 and Nexus platforms.
What type of attack does CVE-2017-6655 enable?
CVE-2017-6655 allows an unauthenticated, adjacent attacker to cause a denial of service (DoS) on affected systems.
Is CVE-2017-6655 remote or local?
CVE-2017-6655 is considered an adjacent attack, which means the attacker must be on the same local network segment.

agent/weakness
agent/type
agent/references
agent/severity
agent/author
agent/event
agent/description
agent/tags
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco mds 9000 nx-os
version/cisco mds 9000 nx-os/7.3\(1\)d1\(1\)
canonical/cisco nx-os for nexus 5500 platform switches
version/cisco nx-os for nexus 5500 platform switches/7.3\(1\)n1\(1\)
canonical/cisco nx-os for nexus 5600 platform switches
version/cisco nx-os for nexus 5600 platform switches/7.3\(1\)n1\(1\)
canonical/cisco nx-os for nexus 7700 series switches
version/cisco nx-os for nexus 7700 series switches/8.0\(1\)\(ed\)
canonical/cisco nx-os
version/cisco nx-os/8.0\(1\)s2
version/cisco nx-os/8.3\(0\)cv\(0.833\)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.