PT-2021-5325 · Cisco · Cisco Nexus 9500 Series Switches+1

Published

2021-08-25

Updated

2022-07-08

CVE-2021-1591

CVSS v3.1

5.8

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Cisco Nexus 9500 Series Switches (affected versions not specified)

Description The issue is related to a vulnerability in the EtherChannel port subscription logic of Cisco Nexus 9500 Series Switches, which could allow an unauthenticated, remote attacker to bypass access control list (ACL) rules configured on an affected device. This is due to oversubscription of resources when applying ACLs to port channel interfaces. An attacker could exploit this by attempting to access network resources protected by the ACL, potentially gaining access to resources that would be protected by the ACL applied on the port channel interface.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-284

Related Identifiers

BDU:2021-06153

CVE-2021-1591

Affected Products

Cisco Nexus

Cisco Nexus 9500 Series Switches

PT-2021-5325 · Cisco · Cisco Nexus 9500 Series Switches+1

CVE-2021-1591

Weakness Enumeration

Related Identifiers

Affected Products

References · 8