What is CVE-2021-1387?

A high-severity vulnerability in Cisco NX-OS Software could allow unauthenticated remote attackers to cause a denial of service (DoS) condition. Organizations must address this vulnerability promptly to maintain network stability.

What is the severity of CVE-2021-1387?

CVE-2021-1387 has a severity rating of HIGH with a CVSS base score of 8.6.

CVE-2021-1387 | High Vulnerability in Cisco NX-OS Software

CVE-2021-1387 is a high-severity vulnerability affecting Cisco NX-OS Software. This vulnerability allows an unauthenticated, remote attacker to exploit the network stack of the software, potentially leading to a denial of service (DoS) condition on affected devices. The issue arises from improper resource management when processing specific IPv6 packets.

The CVSS score for this vulnerability is 8.6, indicating a high level of severity. This is crucial for organizations utilizing Cisco NX-OS Software, as the potential impact on network operations can be significant. Attackers may leverage this vulnerability to exhaust available buffers, disrupting control and management plane protocols, which necessitates manual intervention to restore normal operations.

Organizations should prioritize patching immediately. The urgency in addressing this vulnerability cannot be overstated, given the potential for serious operational disruptions.

For further details on the specifics of this vulnerability, including its impact and recommended actions, refer to the advisory from Cisco.

Vulnerability Details

This vulnerability allows an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability exists because the software improperly releases resources when processing certain IPv6 packets.

The vulnerability is classified under CWE-401, indicating an issue of resource exhaustion. The CVSS score of 8.6 further reinforces the need for immediate action. Affected products include various versions of Cisco NX-OS and the Unified Computing System.

Technical Analysis

The root cause of this vulnerability stems from the network stack's inability to properly manage resources when dealing with crafted IPv6 packets. The attack vector is network-based, with low complexity and no required user interaction, making this vulnerability particularly concerning.

Successful exploitation could lead to a high impact on availability, as the network stack could run out of buffers, disrupting normal operations. This vulnerability requires no privileges, making it accessible to unauthenticated remote attackers.

Risk & Impact Analysis

Risk to organizations includes potential operational disruptions that may require manual intervention to mitigate. The vulnerability's prevalence within Cisco's products means that organizations must remain vigilant in monitoring and addressing this issue promptly.

With the CVSS score indicating high severity, organizations should address this vulnerability in their priority patch cycle. Failure to act could lead to significant downtime and resource loss.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions prior to vendor patch are affected. Specific vulnerable products include various iterations of Cisco NX-OS and the Unified Computing System.

Mitigation & Remediation

Organizations should prioritize patching immediately. Ensure that systems are updated to the latest version of Cisco NX-OS Software to remediate this vulnerability. If immediate patching is not feasible, consider applying configuration hardening measures and network controls to mitigate the risk.

For further assistance in validating the effectiveness of your security measures, organizations can leverage penetration testing services.

Detection Guidance

Monitor logs for indicators of unusual network traffic, particularly those involving malformed IPv6 packets. Behavioral anomalies in network performance may also signify attempts to exploit this vulnerability.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2021-1387 highlights the necessity for robust patch management and proactive security measures within organizations. Security teams should recognize patterns in vulnerabilities like these to reinforce their defensive strategies.

For more insights into maintaining a secure environment, refer to our comprehensive penetration testing methodology and explore best practices for application security assessments.

Additionally, organizations should consider engaging in vulnerability management programs to systematically address such vulnerabilities and enhance their overall security posture.

Finally, it is essential for organizations to stay informed about similar vulnerabilities and trends in the cybersecurity landscape.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2021-1387: High Vulnerability in Cisco NX-OS Software