CVE-2020-3174

Name of the Vulnerable Software and Affected Versions Cisco NX-OS Software (affected versions not specified)

Description The issue is related to insufficient data authentication in the anycast gateway feature of Cisco NX-OS Software. This could allow an unauthenticated, adjacent attacker to cause a device to learn invalid Address Resolution Protocol (ARP) entries for nonlocal IP addresses on the subnet. The vulnerability is due to improper validation of a received gratuitous ARP (GARP) request. An attacker could exploit this by sending a malicious GARP packet on the local subnet, causing the ARP table on the device to become corrupted. This could lead to traffic disruptions by allowing the attacker to populate the ARP table with incorrect entries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.