How severe is CVE-2021-1387?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.6 out of 10.

What type of vulnerability is CVE-2021-1387?

This is classified as CWE-401, which is a common weakness in software security.

CVE-2021-1387 - HIGH Severity | CVSS 8.6

Vulnerability Description

A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because the software improperly releases resources when it processes certain IPv6 packets that are destined to an affected device. An attacker could exploit this vulnerability by sending multiple crafted IPv6 packets to an affected device. A successful exploit could cause the network stack to run out of available buffers, impairing operations of control plane and management plane protocols and resulting in a DoS condition. Manual intervention would be required to restore normal operations on the affected device. For more information about the impact of this vulnerability, see the Details section of this advisory.

Related Vulnerabilities

CVE-2021-1353

HIGH

CVSS:8.6(High)

A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is d...

CWE-4012021

CVE-2019-17340

HIGH

CVSS:8.8(High)

An issue was discovered in Xen through 4.11.x allowing x86 guest OS users to cause a denial of service or gain privileges because grant-table transfer requests are mishandled.

CWE-4012019

CVE-2019-6128

HIGH

CVSS:8.8(High)

The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb.

CWE-4012019

CVE-2021-40633

HIGH

CVSS:8.8(High)

A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.

CWE-4012021

CVE-2023-33718

HIGH

CVSS:8.8(High)

mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp

CWE-4012023

CVE-2022-1012

HIGH

CVSS:8.2(High)

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a d...

CWE-4012022