CVE-2014-3341

Name of the Vulnerable Software and Affected Versions Cisco NX-OS versions 7.0(3)N1(1) and earlier

Description A vulnerability in the Simple Network Management Protocol (SNMP) module of Cisco NX-OS Software could allow an unauthenticated, remote attacker to access sensitive information. The vulnerability is due to a failure to respond to invalid requests in the same manner when specifying a VLAN ID. An attacker could exploit this vulnerability by making a large number of requests to the listening SNMP port of an affected device. A successful exploit could allow the attacker to enumerate VLANs that are configured on the affected device. This issue affects Cisco Nexus 5000 Series and Cisco Nexus 6000 Series devices.

Recommendations For Cisco NX-OS versions 7.0(3)N1(1) and earlier, update to a newer version of Cisco NX-OS Software that includes the fix for this issue. As a temporary workaround, consider restricting access to the SNMP module to minimize the risk of exploitation. Additionally, limit the number of requests to the SNMP port to reduce the likelihood of a successful exploit.