CVE-2015-6393

Name of the Vulnerable Software and Affected Versions Cisco NX-OS versions 4.1 through 7.3 Cisco NX-OS versions 11.0 through 11.2

Description A vulnerability in the implementation of the DHCPv4 relay agent could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to improper validation of malformed DHCPv4 packets. An attacker could exploit this by sending malformed DHCPv4 packets to an affected device, potentially causing the DHCP process or device to crash. This can be triggered by malformed DHCP packets processed by a DHCP relay agent listening on the device, using the IPv4 broadcast address or IPv4 unicast address of any interface configured on a device.

Recommendations For Cisco NX-OS versions 4.1 through 7.3, update to a fixed version to address the vulnerability. For Cisco NX-OS versions 11.0 through 11.2, update to a fixed version to address the vulnerability.