日本語による情報は、英語による原文の非公式な翻訳であり、英語原文との間で内容の齟齬がある場合には、英語原文が優先します。
要約
該当製品
詳細
脆弱性スコア詳細
影響
ソフトウェア バージョンおよび修正
回避策
修正済みソフトウェアの入手
不正利用事例と公式発表
この通知のステータス:FINAL
情報配信
更新履歴
シスコ セキュリティ手順
|
Cisco Nexus 7000 | Cisco Nexus 5000 |
Cisco Nexus 5500 | Cisco Nexus 4000 | Cisco Nexus 3000 | Cisco Nexus 1000V | Cisco MDS 9000 | Cisco UCS 6100 |
Cisco UCS 6200 |
Cisco CGR 1000 |
Multiple CDP Buffer Overflow CVE-2013-1178 |
X |
X |
X | X | X | X | X | X | X | X |
SNMP & License Manager Buffer Overflow CVE-2013-1179 |
X | |
|
|
|
X | |
|
||
SNMP Buffer Overflow CVE-2013-1180 |
X | |
|
|
|
X | |
|
||
Jumbo Frame Denial of Service CVE-2013-1181 |
X | |
X |
|
|
X | |
|||
Recommended Software |
5.2(9)/6.1(1) |
5.2(1)N1(4) |
5.2(1)N1(4) | 4.1(2)E1(1j) | 5.0(3)U5(1e) | 4.2(1)SV2(1.1) | 5.2(8) |
2.1.1e |
2.1.1e |
CG4(1) |
http://tools.cisco.com/security/center/cvssCalculator.x/
CSCtu10630, CSCtu10551, CSCtu10550, CSCtu10548, CSCtu10544, CSCtw56581, CSCuf61275 - Multiple Cisco Discovery Protocol Vulnerabilities in Cisco NX-OS-Based Products Calculate the environmental score of |
||||||
---|---|---|---|---|---|---|
CVSS Base Score - 8.3 |
||||||
Access Vector |
Access Complexity |
Authentication |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
Adjacent Network |
Low |
None |
Complete |
Complete |
Complete |
|
CVSS Temporal Score - 6.9 |
||||||
Exploitability |
Remediation Level |
Report Confidence |
||||
Functional |
Official-Fix |
Confirmed |
CSCtx54830 - Cisco NX-OS Software SNMP and License Manager Buffer Overflow Vulnerability Calculate the environmental score of |
||||||
---|---|---|---|---|---|---|
CVSS Base Score - 9.0 |
||||||
Access Vector |
Access Complexity |
Authentication |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
Network |
Low |
Single |
Complete |
Complete |
Complete |
|
CVSS Temporal Score - 7.4 |
||||||
Exploitability |
Remediation Level |
Report Confidence |
||||
Functional |
Official-Fix |
Confirmed |
CSCtx54822 - Cisco NX-OS Software SNMP Buffer Overflow Vulnerability Calculate the environmental score of |
||||||
---|---|---|---|---|---|---|
CVSS Base Score - 9.0 |
||||||
Access Vector |
Access Complexity |
Authentication |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
Network |
Low |
Single |
Complete |
Complete |
Complete |
|
CVSS Temporal Score - 7.4 |
||||||
Exploitability |
Remediation Level |
Report Confidence |
||||
Functional |
Official-Fix |
Confirmed |
CSCts10593, CSCtx95389, CSCtx17544 - Cisco NX-OS Software Jumbo Packet Denial of Service Vulnerability Calculate the environmental score of |
||||||
---|---|---|---|---|---|---|
CVSS Base Score - 7.8 |
||||||
Access Vector |
Access Complexity |
Authentication |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
Network |
Low |
None |
None |
None |
Complete |
|
CVSS Temporal Score - 6.4 |
||||||
Exploitability |
Remediation Level |
Report Confidence |
||||
Functional |
Official-Fix |
Confirmed |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
4.1(x) 4.2(x) 5.0(x) 5.1(x) 5.2(3a) and Prior 6.0(x) |
5.2(4) 6.1(1) |
5.2(9) 6.1(1) |
SNMP & License Manager CVE-2013-1179 |
4.1(x) 4.2(x) 5.0(x) 5.1(x) 5.2(4) and Prior 6.0(x) |
5.2(5) 6.1(1) |
5.2(9) 6.1(1) |
SNMP CVE-2013-1180 |
4.1(x) 4.2(x) 5.0(x) 5.1(x) 5.2(4) and Prior 6.0(x) |
5.2(5) 6.1(1) |
5.2(9) 6.1(1) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
4.0(x) 4.1(x) 4.2(x) 5.0(x) |
5.1(3)N1(1) |
5.2(1)N1(4) |
Jumbo Frame - Nexus 5500 CVE-2013-1181 |
4.0(x) 4.1(x) 4.2(x) 5.0(3)N2(1) and Prior |
5.0(3)N2(2) |
5.2(1)N1(4) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
4.1(2)E1(1g) and Prior |
4.1(2)E1(1h) |
4.1(2)E1(1j) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
5.0(3)U1(1x) 5.0(3)U1(2x) 5.0(3)U2(1) 5.0(3)U2(2x) |
5.0(3)U3(1) |
5.0(3)U5(1e) |
Jumbo Frame CVE-2013-1181 |
5.0(3)U1(1x) 5.0(3)U1(2x) 5.0(3)U2(1) 5.0(3)U2(2x) 5.0(3)U3(1) |
5.0(3)U3(2) |
5.0(3)U5(1e) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
4.0(x) 4.2(1)SV1(4b) and Prior |
4.2(1)SV1(5.1) |
4.2(1)SV2(1.1) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
4.1(x) 4.2(x) 5.0(x) 5.2(3) and Prior |
5.2(4) |
5.2(8) |
SNMP & License Manager CVE-2013-1179 |
4.1(x) 4.2(x) 5.0(x) 5.2(4) and Prior |
5.2(5) |
5.2(8) |
SNMP CVE-2013-1180 |
4.1(x) 4.2(x) 5.0(x) 5.2(4) and Prior |
5.2(5) |
5.2(8) |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
1.0(x) 1.1(x) 1.2(x) 1.3(x) 1.4(x) 2.0(1x) and Prior |
2.0(2m) 2.1(1a) |
2.1.1e |
Jumbo Frame - UCS 6200 CVE-2013-1181 |
1.0(x) 1.1(x) 1.2(x) 1.3(x) 1.4(x) 2.0(1t) and prior |
2.0(1w) |
2.1.1e |
|
Affected | First Fixed | Recommended |
Multiple CDP CVE-2013-1178 |
CG1(4) CG1(5) CG3(1) CG3(2) CG3(3) |
CG4(1) |
CG4(1) |
本アドバイザリは無保証のものとしてご提供しており、いかなる種類の保証を示唆するものでもありません。本アドバイザリの情報およびリンクの使用に関する責任の一切はそれらの使用者にあるものとします。またシスコはいつでも本ドキュメントの変更や更新を実施する権利を有します。
後述する情報配信の URL を省略し、本アドバイザリの記述内容に関して単独の転載や意訳を実施した場合には、事実誤認ないし重要な情報の欠落を含む統制不可能な情報の伝搬が行われる可能性があります。
Revision 1.2 | 2013-April-26 | Updated summary table in Affected Products for clarification. Corrected UCS 6100/6200 information for jumbo frame vulnerability in summary table. |
Revision 1.1 | 2013-April-24 | Clarified affected platforms for certain vulnerabilities. |
Revision 1.0 | 2013-April-24 | Initial public release. |