CVE-2017-6633

Name of the Vulnerable Software and Affected Versions Cisco UCS C-Series Rack Servers version 3.0(0.234)

Description A vulnerability in the TCP throttling process could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to insufficient rate-limiting protection. An attacker could exploit this by sending a high rate of TCP SYN packets to a specific TCP listening port, causing it to stop accepting new connections.

Recommendations For Cisco UCS C-Series Rack Servers version 3.0(0.234), consider implementing rate-limiting measures on TCP SYN packets to prevent excessive connection requests until a fix is available. As a temporary workaround, restrict access to specific TCP listening ports to minimize the risk of exploitation.