CVE-2019-1595

Name of the Vulnerable Software and Affected Versions Cisco NX-OS Software versions prior to 7.3(5)N1(1)

Description The issue is related to an incorrect allocation of an internal interface index in the Fibre Channel over Ethernet (FCoE) protocol implementation. This could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device by submitting a crafted FCoE packet that crosses affected interfaces, potentially triggering a packet loop and high throughput on the affected interfaces.

Recommendations For versions prior to 7.3(5)N1(1), update to version 7.3(5)N1(1) or later to resolve the issue. As a temporary workaround, consider restricting access to the affected interfaces to minimize the risk of exploitation. Avoid using crafted FCoE packets that could trigger the vulnerability until the issue is resolved.