CVE-2023-20169: Input Validation
First published: Wed Aug 23 2023(Updated: )
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS Software for the Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly restart, which could cause an affected device to reload. This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to the unexpected restart of the IS-IS process, which could cause the affected device to reload. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2 adjacent to the affected device.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Nx-os | =10.3\(2\) | |
| Cisco Nexus 3048 | ||
| Cisco Nexus 31108pc-v | ||
| Cisco Nexus 31108tc-v | ||
| Cisco Nexus 31128pq | ||
| Cisco Nexus 3132c-z | ||
| Cisco Nexus 3132q-v | ||
| Cisco Nexus 3132q-xl | ||
| Cisco Nexus 3164q | ||
| Cisco Nexus 3172pq | ||
| Cisco Nexus 3172pq-xl | ||
| Cisco Nexus 3172tq | ||
| Cisco Nexus 3172tq-32t | ||
| Cisco Nexus 3172tq-xl | ||
| Cisco Nexus 3232 | ||
| Cisco Nexus 3264c-e | ||
| Cisco Nexus 3264q | ||
| Cisco Nexus 3408-s | ||
| Cisco Nexus 34180yc | ||
| Cisco Nexus 34200yc-sm | ||
| Cisco Nexus 3432d-s | ||
| Cisco Nexus 3464c | ||
| Cisco Nexus 3524 | ||
| Cisco Nexus 3524-x | ||
| Cisco Nexus 3524-xl | ||
| Cisco Nexus 3548 | ||
| Cisco Nexus 3548-x | ||
| Cisco Nexus 3548-xl | ||
| Cisco Nexus 36180yc-r | ||
| Cisco Nexus 9232e | ||
| Cisco Nexus 92348gc-x | ||
| Cisco Nexus 9408 | ||
| Cisco Nexus 9504 | ||
| Cisco Nexus 9508 | ||
| Cisco Nexus 9516 | ||
| All of | ||
| Cisco Nx-os | =10.3\(2\) | |
| Any of | ||
| Cisco Nexus 3048 | ||
| Cisco Nexus 31108pc-v | ||
| Cisco Nexus 31108tc-v | ||
| Cisco Nexus 31128pq | ||
| Cisco Nexus 3132c-z | ||
| Cisco Nexus 3132q-v | ||
| Cisco Nexus 3132q-xl | ||
| Cisco Nexus 3164q | ||
| Cisco Nexus 3172pq | ||
| Cisco Nexus 3172pq-xl | ||
| Cisco Nexus 3172tq | ||
| Cisco Nexus 3172tq-32t | ||
| Cisco Nexus 3172tq-xl | ||
| Cisco Nexus 3232 | ||
| Cisco Nexus 3264c-e | ||
| Cisco Nexus 3264q | ||
| Cisco Nexus 3408-s | ||
| Cisco Nexus 34180yc | ||
| Cisco Nexus 34200yc-sm | ||
| Cisco Nexus 3432d-s | ||
| Cisco Nexus 3464c | ||
| Cisco Nexus 3524 | ||
| Cisco Nexus 3524-x | ||
| Cisco Nexus 3524-xl | ||
| Cisco Nexus 3548 | ||
| Cisco Nexus 3548-x | ||
| Cisco Nexus 3548-xl | ||
| Cisco Nexus 36180yc-r | ||
| Cisco Nexus 9232e | ||
| Cisco Nexus 92348gc-x | ||
| Cisco Nexus 9408 | ||
| Cisco Nexus 9504 | ||
| Cisco Nexus 9508 | ||
| Cisco Nexus 9516 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-20169?
The severity of CVE-2023-20169 is high with a severity value of 6.5.
What is the affected software of CVE-2023-20169?
The affected software of CVE-2023-20169 is Cisco NX-OS version 10.3(2) on Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode.
How does CVE-2023-20169 affect Cisco Nexus 3048?
CVE-2023-20169 is not applicable to Cisco Nexus 3048 as it is not vulnerable.
How do I fix CVE-2023-20169?
To fix CVE-2023-20169, it is recommended to apply the necessary updates provided by Cisco.
Where can I find more information about CVE-2023-20169?
You can find more information about CVE-2023-20169 on the Cisco Security Advisory website.
- collector/nvd-index
- agent/type
- agent/author
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/10.3\(2\)
- canonical/cisco nexus 3048
- canonical/cisco nexus 31108pc-v
- canonical/cisco nexus 31108tc-v
- canonical/cisco nexus 31128pq
- canonical/cisco nexus 3132c-z
- canonical/cisco nexus 3132q-v
- canonical/cisco nexus 3132q-xl
- canonical/cisco nexus 3164q
- canonical/cisco nexus 3172pq
- canonical/cisco nexus 3172pq-xl
- canonical/cisco nexus 3172tq
- canonical/cisco nexus 3172tq-32t
- canonical/cisco nexus 3172tq-xl
- canonical/cisco nexus 3232
- canonical/cisco nexus 3264c-e
- canonical/cisco nexus 3264q
- canonical/cisco nexus 3408-s
- canonical/cisco nexus 34180yc
- canonical/cisco nexus 34200yc-sm
- canonical/cisco nexus 3432d-s
- canonical/cisco nexus 3464c
- canonical/cisco nexus 3524
- canonical/cisco nexus 3524-x
- canonical/cisco nexus 3524-xl
- canonical/cisco nexus 3548
- canonical/cisco nexus 3548-x
- canonical/cisco nexus 3548-xl
- canonical/cisco nexus 36180yc-r
- canonical/cisco nexus 9232e
- canonical/cisco nexus 92348gc-x
- canonical/cisco nexus 9408
- canonical/cisco nexus 9504
- canonical/cisco nexus 9508
- canonical/cisco nexus 9516