CVE-2021-1590: Cisco NX-OS Software system login block-for Denial of Service Vulnerability
First published: Wed Aug 25 2021(Updated: )
A vulnerability in the implementation of the system login block-for command for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a login process to unexpectedly restart, causing a denial of service (DoS) condition. This vulnerability is due to a logic error in the implementation of the system login block-for command when an attack is detected and acted upon. An attacker could exploit this vulnerability by performing a brute-force login attack on an affected device. A successful exploit could allow the attacker to cause a login process to reload, which could result in a delay during authentication to the affected device.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco NX-OS | =7.0\(3\)i4\(0.116\) | |
| Cisco NX-OS | =7.3\(7\)n1\(1b\) | |
| Cisco Nexus 3000 | ||
| Cisco Nexus 3048 Firmware | ||
| Cisco Nexus 31108PC-V Firmware | ||
| Cisco Nexus 31108TC-V Firmware | ||
| Cisco Nexus 31128PQ | ||
| Cisco Nexus 3132C-Z Firmware | ||
| Cisco Nexus 3132Q-V Firmware | ||
| Cisco Nexus 3132Q-X/3132Q-XL | ||
| Cisco Nexus 3164Q Firmware | ||
| Cisco Nexus 3172PQ/PQ-XL | ||
| Cisco Nexus 3172TQ-XL Firmware | ||
| Cisco Nexus 3232C | ||
| Cisco Nexus 3264C-E Firmware | ||
| Cisco Nexus 3264Q Firmware | ||
| Cisco Nexus 3408-S Firmware | ||
| Cisco Nexus 34180YC Firmware | ||
| Cisco Nexus 3432D-S Firmware | ||
| Cisco Nexus 3464C Firmware | ||
| Cisco Nexus 3524-x/xl | ||
| Cisco Nexus 3548-x/xl | ||
| Cisco Nexus 36180YC-R Firmware | ||
| Cisco Nexus 3636C-R Firmware | ||
| Cisco Nexus 5548P Firmware | ||
| Cisco Nexus 5548UP Firmware | ||
| Cisco Nexus 5596T Firmware | ||
| Cisco Nexus 5596UP Firmware | ||
| Cisco 56128p | ||
| Cisco Nexus 5624Q Firmware | ||
| Cisco Nexus 5648Q Firmware | ||
| Cisco Nexus 5672UP-16G | ||
| Cisco Nexus 5672UP-16G Firmware | ||
| Cisco Nexus 5696Q Firmware | ||
| Cisco Nexus 6001 Firmware | ||
| Cisco Nexus 6004 Firmware | ||
| Cisco Nexus 7000 | ||
| Cisco Nexus 7000 | ||
| Cisco Nexus 7000 | ||
| Cisco Nexus 7000 9-Slot Firmware | ||
| Cisco Nexus 7000 Supervisor 1 Firmware | ||
| Cisco Nexus 7000 Supervisor 2E | ||
| Cisco Nexus 7000 Supervisor 2E Firmware | ||
| Cisco Nexus 7004 Firmware | ||
| Cisco Nexus 7009 Firmware | ||
| Cisco Nexus 7010 Firmware | ||
| Cisco Nexus 7018 Firmware | ||
| Cisco Nexus 7700 series | ||
| Cisco Nexus 7700 series | ||
| Cisco Nexus 7700 series | ||
| Cisco Nexus 7700 series | ||
| Cisco Nexus 7700 6-slot | ||
| Cisco Nexus 7700 Supervisor 2E Firmware | ||
| Cisco Nexus 7700 Supervisor 3E Firmware | ||
| Cisco Nexus 7702 firmware | ||
| Cisco Nexus 7706 firmware | ||
| Cisco Nexus 7710 Firmware | ||
| Cisco Nexus 7718 firmware | ||
| Cisco NX-OS Nexus 9000 Series | ||
| Cisco Nexus 92160YC Switch | ||
| Cisco Nexus 92300YC Firmware | ||
| Cisco Nexus 92304QC Switch | ||
| Cisco Nexus 92348GC-X Switch | ||
| Cisco Nexus 9236C Switch | ||
| Cisco Nexus 9272Q Switch | ||
| Cisco Nexus | ||
| Cisco Nexus 93108TC-EX-24 Firmware | ||
| Cisco Nexus 93108TC-FX Switch | ||
| Cisco Nexus 93108TC-FX Switch | ||
| Cisco Nexus 93108TC-FX3P Firmware | ||
| Cisco Nexus 93120TX Firmware | ||
| Cisco Nexus 93128 Firmware | ||
| Cisco Nexus 9316D-GX Firmware | ||
| Cisco Nexus 93180LC-EX Switch | ||
| Cisco Nexus 93180YC-EX-24 | ||
| Cisco Nexus 93180YC-EX-24 Firmware | ||
| Cisco Nexus 93180YC-FX Firmware | ||
| Cisco Nexus 93180YC-FX-24 Firmware | ||
| Cisco Nexus 93180YC-FX3 Firmware | ||
| Cisco Nexus 93180YC-FX3S Firmware | ||
| Cisco Nexus 93216TC-FX2 Firmware | ||
| Cisco Nexus 93240YC-FX2 Firmware | ||
| Cisco Nexus 9332C Firmware | ||
| Cisco Nexus 9332PQ Firmware | ||
| Cisco Nexus 93360YC-FX2 | ||
| Cisco Nexus 9336C-FX2 Firmware | ||
| Cisco Nexus 9336C-FX2-E Firmware | ||
| Cisco Nexus 9348GC-FXP Firmware | ||
| Cisco Nexus 93600CD-GX Firmware | ||
| Cisco Nexus 9364c-h1 | ||
| Cisco Nexus 9364C-GX Firmware | ||
| Cisco Nexus 9372PX-E | ||
| Cisco Nexus 9372PX-E Firmware | ||
| Cisco Nexus 9372TX | ||
| Cisco Nexus 9372TX-E Switch | ||
| Cisco Nexus 9396PX Firmware | ||
| Cisco Nexus 9396TX Firmware | ||
| Cisco Nexus 9508 | ||
| Cisco Unified Computing System software | <4.0\(4m\) | |
| Cisco Unified Computing System software | >=4.1<4.1\(3d\) | |
| Cisco Unified Computing System software | ||
| Cisco Unified Computing System 6296UP | ||
| Cisco Unified Computing System | ||
| Cisco Unified Computing System 6332 | ||
| Cisco Unified Computing System software |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-1590?
CVE-2021-1590 has been rated as a high severity vulnerability due to its potential to cause a denial of service (DoS).
How do I fix CVE-2021-1590?
To fix CVE-2021-1590, update your Cisco NX-OS to the latest patched version as recommended by Cisco's advisory.
Which Cisco NX-OS versions are affected by CVE-2021-1590?
CVE-2021-1590 affects Cisco NX-OS versions 7.0(3)i4(0.116) and 7.3(7)n1(1b).
Is there any workaround for CVE-2021-1590?
No specific workaround is provided for CVE-2021-1590; applying the latest updates is the best course of action.
Can CVE-2021-1590 be exploited remotely?
Yes, CVE-2021-1590 can be exploited by an unauthenticated remote attacker.
- agent/type
- agent/remedy
- agent/severity
- agent/references
- agent/author
- agent/title
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/7.0\(3\)i4\(0.116\)
- version/cisco nx-os/7.3\(7\)n1\(1b\)
- canonical/cisco nexus 3000
- canonical/cisco nexus 3048 firmware
- canonical/cisco nexus 31108pc-v firmware
- canonical/cisco nexus 31108tc-v firmware
- canonical/cisco nexus 31128pq
- canonical/cisco nexus 3132c-z firmware
- canonical/cisco nexus 3132q-v firmware
- canonical/cisco nexus 3132q-x/3132q-xl
- canonical/cisco nexus 3164q firmware
- canonical/cisco nexus 3172pq/pq-xl
- canonical/cisco nexus 3172tq-xl firmware
- canonical/cisco nexus 3232c
- canonical/cisco nexus 3264c-e firmware
- canonical/cisco nexus 3264q firmware
- canonical/cisco nexus 3408-s firmware
- canonical/cisco nexus 34180yc firmware
- canonical/cisco nexus 3432d-s firmware
- canonical/cisco nexus 3464c firmware
- canonical/cisco nexus 3524-x/xl
- canonical/cisco nexus 3548-x/xl
- canonical/cisco nexus 36180yc-r firmware
- canonical/cisco nexus 3636c-r firmware
- canonical/cisco nexus 5548p firmware
- canonical/cisco nexus 5548up firmware
- canonical/cisco nexus 5596t firmware
- canonical/cisco nexus 5596up firmware
- canonical/cisco 56128p
- canonical/cisco nexus 5624q firmware
- canonical/cisco nexus 5648q firmware
- canonical/cisco nexus 5672up-16g
- canonical/cisco nexus 5672up-16g firmware
- canonical/cisco nexus 5696q firmware
- canonical/cisco nexus 6001 firmware
- canonical/cisco nexus 6004 firmware
- canonical/cisco nexus 7000
- canonical/cisco nexus 7000 9-slot firmware
- canonical/cisco nexus 7000 supervisor 1 firmware
- canonical/cisco nexus 7000 supervisor 2e
- canonical/cisco nexus 7000 supervisor 2e firmware
- canonical/cisco nexus 7004 firmware
- canonical/cisco nexus 7009 firmware
- canonical/cisco nexus 7010 firmware
- canonical/cisco nexus 7018 firmware
- canonical/cisco nexus 7700 series
- canonical/cisco nexus 7700 6-slot
- canonical/cisco nexus 7700 supervisor 2e firmware
- canonical/cisco nexus 7700 supervisor 3e firmware
- canonical/cisco nexus 7702 firmware
- canonical/cisco nexus 7706 firmware
- canonical/cisco nexus 7710 firmware
- canonical/cisco nexus 7718 firmware
- canonical/cisco nx-os nexus 9000 series
- canonical/cisco nexus 92160yc switch
- canonical/cisco nexus 92300yc firmware
- canonical/cisco nexus 92304qc switch
- canonical/cisco nexus 92348gc-x switch
- canonical/cisco nexus 9236c switch
- canonical/cisco nexus 9272q switch
- canonical/cisco nexus
- canonical/cisco nexus 93108tc-ex-24 firmware
- canonical/cisco nexus 93108tc-fx switch
- canonical/cisco nexus 93108tc-fx3p firmware
- canonical/cisco nexus 93120tx firmware
- canonical/cisco nexus 93128 firmware
- canonical/cisco nexus 9316d-gx firmware
- canonical/cisco nexus 93180lc-ex switch
- canonical/cisco nexus 93180yc-ex-24
- canonical/cisco nexus 93180yc-ex-24 firmware
- canonical/cisco nexus 93180yc-fx firmware
- canonical/cisco nexus 93180yc-fx-24 firmware
- canonical/cisco nexus 93180yc-fx3 firmware
- canonical/cisco nexus 93180yc-fx3s firmware
- canonical/cisco nexus 93216tc-fx2 firmware
- canonical/cisco nexus 93240yc-fx2 firmware
- canonical/cisco nexus 9332c firmware
- canonical/cisco nexus 9332pq firmware
- canonical/cisco nexus 93360yc-fx2
- canonical/cisco nexus 9336c-fx2 firmware
- canonical/cisco nexus 9336c-fx2-e firmware
- canonical/cisco nexus 9348gc-fxp firmware
- canonical/cisco nexus 93600cd-gx firmware
- canonical/cisco nexus 9364c-h1
- canonical/cisco nexus 9364c-gx firmware
- canonical/cisco nexus 9372px-e
- canonical/cisco nexus 9372px-e firmware
- canonical/cisco nexus 9372tx
- canonical/cisco nexus 9372tx-e switch
- canonical/cisco nexus 9396px firmware
- canonical/cisco nexus 9396tx firmware
- canonical/cisco nexus 9508
- canonical/cisco unified computing system software
- version/cisco unified computing system software/4.1
- canonical/cisco unified computing system 6296up
- canonical/cisco unified computing system
- canonical/cisco unified computing system 6332