A vulnerability in system resource management in Cisco UCS 6400 and 6500 Series Fabric Interconnects that are in Intersight Managed Mode (IMM) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the Device Console UI of an affected device.

This vulnerability is due to insufficient rate-limiting of TCP connections to an affected device. An attacker could exploit this vulnerability by sending a high number of TCP packets to the Device Console UI. A successful exploit could allow an attacker to cause the Device Console UI process to crash, resulting in a DoS condition. A manual reload of the fabric interconnect is needed to restore complete functionality.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 13 Aug 2025 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Cisco
Cisco imm Management Package
Cisco ucs 64108
Cisco ucs 6454
Cisco ucs 6536
CPEs cpe:2.3:a:cisco:imm_management_package:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ucs_64108:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ucs_6454:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ucs_6536:-:*:*:*:*:*:*:*
Vendors & Products Cisco
Cisco imm Management Package
Cisco ucs 64108
Cisco ucs 6454
Cisco ucs 6536

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2024-08-01T21:59:42.290Z

Reserved: 2023-11-08T15:08:07.643Z

Link: CVE-2024-20344

cve-icon Vulnrichment

Updated: 2024-08-01T21:59:42.290Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-29T01:43:59.613

Modified: 2025-08-13T17:18:26.847

Link: CVE-2024-20344

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.