How severe is CVE-2021-1587?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.6 out of 10.

What type of vulnerability is CVE-2021-1587?

This is classified as CWE-115, which is a common weakness in software security.

CVE-2021-1587 - HIGH Severity | CVSS 8.6

Vulnerability Description

A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software, known as NGOAM, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific packets with a Transparent Interconnection of Lots of Links (TRILL) OAM EtherType. An attacker could exploit this vulnerability by sending crafted packets, including the TRILL OAM EtherType of 0x8902, to a device that is part of a VXLAN Ethernet VPN (EVPN) fabric. A successful exploit could allow the attacker to cause an affected device to experience high CPU usage and consume excessive system resources, which may result in overall control plane instability and cause the affected device to reload. Note: The NGOAM feature is disabled by default.

Related Vulnerabilities

CVE-2022-3224

CRITICAL

CVSS:9.4(Critical)

Misinterpretation of Input in GitHub repository ionicabizau/parse-url prior to 8.1.0.

CWE-1152022

CVE-2018-12116

HIGH

CVSS:7.5(High)

Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, th...

CWE-1152018

CVE-2021-0207

HIGH

CVSS:7.5(High)

An improper interpretation conflict of certain data between certain software components within the Juniper Networks Junos OS devices does not allow certain traffic to pass through the device upon rece...

CWE-1152021

CVE-2024-11169

HIGH

CVSS:7.5(High)

An unhandled exception in danny-avila/librechat version 3c94ff2 can lead to a server crash. The issue occurs when the fs module throws an exception while handling file uploads. An unauthenticated user...

CWE-1152024

CVE-2025-32908

HIGH

CVSS:7.5(High)

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service (DoS).

CWE-1152025

CVE-2022-20915

HIGH

CVSS:7.4(High)

A vulnerability in the implementation of IPv6 VPN over MPLS (6VPE) with Zone-Based Firewall (ZBFW) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of servi...

CWE-1152022