==================================================================== CERT-Renater Note d'Information No. 2020/VULN476 _____________________________________________________________________ DATE : 27/08/2020 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Cisco NX-OS, Cisco FXOS, Cisco UCS Software. ===================================================================== https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dme-rce-cbE3nhZS https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-nxos-cfs-dos-dAmnymbd https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3n9k-priv-escal-3QhXJBC https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-mvpn-dos-K8kbCrJp https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-nlri-dos-458rG2OQ https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-pim-memleak-dos-tC8eP7uw https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-callhome-cmdinj-zkxzSCY _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2020-August-26. The following PSIRT security advisories (7 High) were published at 16:00 UTC today. Table of Contents: 1) Cisco NX-OS Software Data Management Engine Remote Code Execution Vulnerability - SIR: High 2) Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability - SIR: High 3) Cisco Nexus 3000 and 9000 Series Switches Privilege Escalation Vulnerability - SIR: High 4) Cisco NX-OS Software Border Gateway Protocol Multicast VPN Session Denial of Service Vulnerability - SIR: High 5) Cisco NX-OS Software Border Gateway Protocol Multicast VPN Denial of Service Vulnerability - SIR: High 6) Cisco NX-OS Software IPv6 Protocol Independent Multicast Denial of Service Vulnerability - SIR: High 7) Cisco NX-OS Software Call Home Command Injection Vulnerability - SIR: High +-------------------------------------------------------------------- 1) Cisco NX-OS Software Data Management Engine Remote Code Execution Vulnerability CVE-2020-3415 SIR: High CVSS Score v(3.0): 8.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dme-rce-cbE3nhZS ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dme-rce-cbE3nhZS"] +-------------------------------------------------------------------- 2) Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability CVE-2020-3517 SIR: High CVSS Score v(3.0): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-nxos-cfs-dos-dAmnymbd ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-nxos-cfs-dos-dAmnymbd"] +-------------------------------------------------------------------- 3) Cisco Nexus 3000 and 9000 Series Switches Privilege Escalation Vulnerability CVE-2020-3394 SIR: High CVSS Score v(3.0): 7.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3n9k-priv-escal-3QhXJBC ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3n9k-priv-escal-3QhXJBC"] +-------------------------------------------------------------------- 4) Cisco NX-OS Software Border Gateway Protocol Multicast VPN Session Denial of Service Vulnerability CVE-2020-3398 SIR: High CVSS Score v(3.0): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-mvpn-dos-K8kbCrJp ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-mvpn-dos-K8kbCrJp"] +-------------------------------------------------------------------- 5) Cisco NX-OS Software Border Gateway Protocol Multicast VPN Denial of Service Vulnerability CVE-2020-3397 SIR: High CVSS Score v(3.0): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-nlri-dos-458rG2OQ ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxosbgp-nlri-dos-458rG2OQ"] +-------------------------------------------------------------------- 6) Cisco NX-OS Software IPv6 Protocol Independent Multicast Denial of Service Vulnerability CVE-2020-3338 SIR: High CVSS Score v(3.0): 7.5 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-pim-memleak-dos-tC8eP7uw ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-pim-memleak-dos-tC8eP7uw"] +-------------------------------------------------------------------- 7) Cisco NX-OS Software Call Home Command Injection Vulnerability CVE-2020-3454 SIR: High CVSS Score v(3.0): 7.2 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-callhome-cmdinj-zkxzSCY ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-callhome-cmdinj-zkxzSCY"] ========================================================= + CERT-RENATER       |    tel : 01-53-94-20-44          + + 23/25 Rue Daviel   |    fax : 01-53-94-20-41          + + 75013 Paris        |    email:cert@support.renater.fr + =========================================================