Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-0718

Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WAIT TCP session, aka Bug ID CSCub70579.

Security Impact Summary

This vulnerability carries a HIGH severity rating with a CVSS v3.1 score of 7.5, indicating it can be exploited remotely over the network with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts and availability (service disruption) for affected systems. Impacting 7 products from cisco, from cisco, from netgear and 4 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

First disclosed in 2016, this vulnerability was reported during a period defined by widespread IoT adoption challenges, mobile security concerns, and the emergence of advanced persistent threat (APT) techniques. Contemporary mitigation strategies focused on secure development practices and third-party component vetting.

Published

2016-03-03T22:59:02.707

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

6.9

Weaknesses

Type: Primary
CWE-399

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	unified_computing_system	1.4_1i	Yes
Application	cisco	unified_computing_system	1.4_1j	Yes
Application	cisco	unified_computing_system	1.4_1m	Yes
Application	cisco	unified_computing_system	1.4_3i	Yes
Application	cisco	unified_computing_system	1.4_3l	Yes
Application	cisco	unified_computing_system	1.4_3m	Yes
Application	cisco	unified_computing_system	1.4_3q	Yes
Application	cisco	unified_computing_system	1.4_3s	Yes
Application	cisco	unified_computing_system	1.4_3u	Yes
Application	cisco	unified_computing_system	1.4_3y	Yes
Application	cisco	unified_computing_system	1.4_4f	Yes
Application	cisco	unified_computing_system	1.4_4g	Yes
Application	cisco	unified_computing_system	1.4_4i	Yes
Application	cisco	unified_computing_system	1.4_4j	Yes
Application	cisco	unified_computing_system	1.4_4k	Yes
Application	cisco	unified_computing_system	1.4_4l	Yes
Application	cisco	unified_computing_system	1.5_base	Yes
Application	cisco	unified_computing_system	1.6_base	Yes
Application	cisco	unified_computing_system	2.0_1q	Yes
Application	cisco	unified_computing_system	2.0_1s	Yes
Application	cisco	unified_computing_system	2.0_1t	Yes
Application	cisco	unified_computing_system	2.0_1w	Yes
Application	cisco	unified_computing_system	2.0_1x	Yes
Application	cisco	unified_computing_system	2.0_2m	Yes
Application	cisco	unified_computing_system	2.0_2q	Yes
Application	cisco	unified_computing_system	2.0_2r	Yes
Application	cisco	unified_computing_system	2.0_3a	Yes
Application	cisco	unified_computing_system	2.0_3b	Yes
Application	cisco	unified_computing_system	2.0_3c	Yes
Application	cisco	unified_computing_system	2.0_4a	Yes
Application	cisco	unified_computing_system	2.0_4b	Yes
Application	cisco	unified_computing_system	2.0_4d	Yes
Application	cisco	unified_computing_system	2.0_5a	Yes
Application	cisco	unified_computing_system	2.0_5b	Yes
Application	cisco	unified_computing_system	2.0_5c	Yes
Application	cisco	unified_computing_system	2.0_5d	Yes
Application	cisco	unified_computing_system	2.0_5e	Yes
Application	cisco	unified_computing_system	2.0_5f	Yes
Application	cisco	unified_computing_system	2.1_1a	Yes
Application	cisco	unified_computing_system	2.1_1b	Yes
Application	cisco	unified_computing_system	2.1_1d	Yes
Application	cisco	unified_computing_system	2.1_1e	Yes
Application	cisco	unified_computing_system	2.1_1f	Yes
Application	cisco	unified_computing_system	2.1_2a	Yes
Application	cisco	unified_computing_system	2.1_2c	Yes
Application	cisco	unified_computing_system	2.1_2d	Yes
Application	cisco	unified_computing_system	2.1_3a	Yes
Application	cisco	unified_computing_system	2.1_3b	Yes
Application	cisco	unified_computing_system	2.1_3c	Yes
Application	cisco	unified_computing_system	2.1_3d	Yes
Application	cisco	unified_computing_system	2.1_3e	Yes
Application	cisco	unified_computing_system	2.1_3f	Yes
Application	cisco	unified_computing_system	2.2_1b	Yes
Application	cisco	unified_computing_system	2.2_1c	Yes
Application	cisco	unified_computing_system	2.2_1d	Yes
Application	cisco	unified_computing_system	2.2_1e	Yes
Application	cisco	unified_computing_system	2.2_2c	Yes
Application	cisco	unified_computing_system	2.2_2d	Yes
Application	cisco	unified_computing_system	2.2_2e	Yes
Operating System	cisco	nx-os	base	Yes
Operating System	netgear	jr6150_firmware	< 2017-01-06	Yes
Operating System	samsung	x14j_firmware	t-ms14jakucb-1102.5	Yes
Operating System	sun	opensolaris	snv_124	Yes
Operating System	zyxel	gs1900-10hp_firmware	< 2.50\(aazi.0\)c0	Yes
Operating System	zzinc	keymouse_firmware	3.08	Yes

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-netstack Vendor Advisory ([email protected])
http://www.securitytracker.com/id/1035159 ([email protected])
http://www.securitytracker.com/id/1035160 ([email protected])
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-netstack Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035159 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035160 (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For cisco's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.