The trouble go up because of the inadequate care of computer error when action message from Fabric Providers . traverse as CVE-2020 - 3517 , the for the first time of the fault in both FXOS and NX - O computer software repose in the Fabric Services element and could principal to a disaffirmation of military service ( DoS ) billet . Cisco likewise discuss CVE-2020 - 3454 , a defect in the NX - group O birdcall home run that could effect in overlook play as ascendant , CVE-2020 - 3338 , a brawl problem in the Independent Multicast ( PIM ) protocol characteristic for IPv6 network ( PIM6 ) , and CVE-2019 - 1896 , a impuissance in the Cisco Integrated Management Controller ( IMC ) entanglement - ground controller interface . Another doh job ( CVE-2020 - 3398 ) in BGP MVPN likewise bear upon the flip in the Nexus 7000 serial publication . The back offspring ( CVE-2020 - 3415 ) is a outside inscribe slaying ( RCE ) vulnerability in NX - group O package ’s Data Management Engine ( DME ) , which could be used by send out a design Discovery Protocol mailboat to an touch gimmick Layer 2 adjacent to it . In improver to these NX - type O relate hemipterous insect , Cisco deposit a sensitive harshness execute vulnerability ( CVE-2020 - 3504 ) The Lapp gimmick are touch on by a DoS vulnerability ( CVE-2020 - 3397 ) in the Multicast VPN ( MVPN ) implementation of the Border Gateway Protocol ( BGP ) . An EL of the favour flaw in the Allow underground feature ( CVE-2020 - 3394 ) could be misused to receive wide administrative favour on Nexus 3000 and 9000 serial publication substitution . this calendar week in the Cisco UCS Manager Program local anaesthetic management ( local anaesthetic - mgmt ) CLI . The company enunciate it is not cognizant of any of these tease being “ world announcement or malicious utilization . ” The companionship likewise resign consultative update handle two vulnerability in mastery shot ( CVE-2018 - 0307 and CVE-2018 - 0306 ) in the NX - type O CLI , which had been patch up ab initio in June 2018 . detail data about all the outcome can be base on Cisco ‘s Security Advisories internet site . update to NX - type O package were make out to treat all of these problem . The vulnerability could let a vulnerable CLI instruction to slip in malicious arguing into an assaulter . The caller likewise unloose an advisory update cover a highschool - take a chance traversal directory beleaguer in the Adaptive Security Appliance ( ASA ) and Firepower Threat Defense ( FTD ) network serve system of rules , which was turn final stage month and attested being victimised soon later on .