Cisco Patches Critical Vulnerabilities in the Data Center Operating System


Cisco released its semiannual FXOS and NX-OS security advisory bundle on Wednesday, which includes information on four vulnerabilities, two of which are critical flaws in NX-OS software.

The first of the high-severity bugs, CVE-2024-20321, exists because External Border Gateway Protocol (eBGP) traffic “is mapped to a shared hardware rate-limiter queue”, allowing an unauthenticated, remote attacker to send large amounts of traffic and cause a denial-of-service (DoS) condition.

Under certain conditions, Cisco claims that the security flaw affects Nexus 3600 series switches and Nexus 9500 R-series line cards, including the following product IDs: N3K-C36180YC-R, N3K-C3636C-R, N9K-X9624D-R2, N9K-X9636C-R, N9K-X9636C-RX, N9K-X9636Q-R, and N9K-X96136YC-R.

Read More: Cisco Patches High-Severity Vulnerabilities in Data Center OS

Check Out The New ITsecuritywire Podcast. For more such updates follow us on Google News ITsecuritywire News.