VulnerabilitiesCisco Patches Multiple NX-OS Software Vulnerabilitie
29-August-24
Cisco has released NX-OS software updates addressing multiple vulnerabilities, including a high-severity DoS flaw (CVE-2024-20446) in the DHCPv6 relay agent that could be exploited by remote attackers to cause a device reload. The patches also fix several medium-severity issues, including a command injection flaw, privilege escalation vulnerabilities, and sandbox escape bugs in the Python interpreter. Additionally, updates were issued for two medium-severity flaws in the Application Policy Infrastructure Controller (APIC). Cisco reports no known exploitation of these vulnerabilities in the wild.
