CVE-2023-20169

Name of the Vulnerable Software and Affected Versions Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode (affected versions not specified)

Description The issue is related to insufficient input validation when parsing an ingress IS-IS packet, which could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly restart, leading to a denial of service (DoS) condition and potentially causing the affected device to reload. The IS-IS protocol is a routing protocol, and to exploit this vulnerability, an attacker must be Layer 2 adjacent to the affected device.

Recommendations For Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode, update to a version that includes the fix for this issue, as Cisco has released software updates that address this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability, however, it is known that Cisco has released software updates that address this vulnerability.