CVE-2015-6277
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
02/09/2015
Last modified:
12/04/2025
Description
The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus 4000 devices 4.1(2)E1, Nexus 9000 devices 7.3(0)ZD(0.61), and MDS 9000 devices 7.0(0)HSK(0.353) and SAN-OS NX-OS on MDS 9000 devices 7.0(0)HSK(0.353) allows remote attackers to cause a denial of service (ARP process restart) via crafted packet-header fields, aka Bug ID CSCut25292.
Impact
Base Score 2.0
6.10
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:nx-os:7.3\(0\)zd\(0.47\):*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_3000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:4.1\(2\)e1:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_4000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:7.0\(0\)hsk\(0.353\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:san-os:7.0\(0\)hsk\(0.353\):*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:mds_9000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:7.3\(0\)zd\(0.61\):*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:nexus_9000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:1000v:5.2\(1\)sv3\(1.4\):-:*:*:*:vmware_vsphere:*:* |
To consult the complete list of CPE names with products and versions, see this page