Cisco Event Response Page
Cisco Event Response: August 2023 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication
-
Cisco released its semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication on August 23, 2023. In direct response to customer feedback, Cisco releases bundles of Cisco FXOS and NX-OS Software Security Advisories on the fourth Wednesday of the month in February and August of each calendar year.
The Aug 23, 2023, release of the Cisco FXOS and NX-OS Software Security Advisory Bundled Publication includes five Cisco Security Advisories that describe five vulnerabilities in Cisco FXOS Software, Cisco NX-OS Software, and Cisco UCS Software. Cisco has released software updates that address these vulnerabilities.
-
The following table identifies Cisco Security content that is associated with this bundled publication:
Cisco Security Advisory CVE ID Security Impact Rating CVSS Base Score Affected Software Affected Hardware Platforms Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects SNMP Denial of Service Vulnerability CVE-2023-20200High7.7FXOS Software, UCS Software (Managed) Cisco Firepower 4100 Series, Cisco Firepower 9000 Series, Cisco UCS 6300 Series Fabric Interconnects Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability CVE-2023-20169High7.4NX-OS Software Cisco Nexus 3000 Series Switches, Cisco Nexus 9000 Series Switches Cisco NX-OS Software TACACS+ or RADIUS Remote Authentication Directed Request Denial of Service Vulnerability CVE-2023-20168High7.1NX-OS Software Cisco MDS 9000 Multilayer Directors and Fabric Switches, Cisco Nexus 1000V Series Switches, Cisco Nexus 3000 Series Switches, Cisco Nexus 5000 Series Switches, Cisco Nexus 6000 Series Switches, Cisco Nexus 7000 Series Switches, Cisco Nexus 9000 Series Switches Cisco Nexus 3000 and 9000 Series Switches SFTP Server File Access Vulnerability CVE-2023-20115Medium5.4NX-OS Software Cisco Nexus 3000 Series Switches, Cisco Nexus 9000 Series Switches Cisco FXOS Software Arbitrary File Write Vulnerability CVE-2023-20234Medium4.4FXOS Software Cisco Firepower 1000 Series, Cisco Firepower 2100 Series, Cisco Secure Firewall 3100 Series, Cisco Firepower 4100 Series, Cisco Firepower 9000 Series Related Resources
Cisco Security Vulnerability Policy
MITRE Common Vulnerabilities and Exposures
Common Vulnerability Scoring System and the Security Impact Rating
Common Vulnerability Scoring System Q & A