The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service (tmp/*config file creation, memory consumption, and device hang) via unspecified vectors, aka Bug ID CSCut93842.
2015-08-19T18:59:00.123
2025-04-12T10:46:40.837
Deferred
CVSSv2: 4.9 (MEDIUM)
AV:L/AC:L/Au:N/C:N/I:N/A:C
3.9
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | cisco | nx-os | 5.1.3 | Yes |
| Operating System | cisco | nx-os | 5.3.0 | Yes |
| Hardware | cisco | nexus_93120tx | - | No |
| Hardware | cisco | nexus_93128tx | - | No |
| Hardware | cisco | nexus_9332pq | - | No |
| Hardware | cisco | nexus_9336pq_aci_spine | - | No |
| Hardware | cisco | nexus_9372px | - | No |
| Hardware | cisco | nexus_9372tx | - | No |
| Hardware | cisco | nexus_9396px | - | No |
| Hardware | cisco | nexus_9396tx | - | No |
| Hardware | cisco | nexus_9504 | - | No |
| Hardware | cisco | nexus_9508 | - | No |
| Hardware | cisco | nexus_9516 | - | No |