Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
Cisco NX-OS Software LLDP Restart Vulnerability: Unexpected Device Reload
CVE-2026-20010
Summary
A hacker on the same network can send a malicious packet to your Cisco device, causing it to restart and lose its connection. This can happen without needing a password, and it's a denial of service attack, meaning it won't allow you to use your device until you fix it. To protect your device, update to the latest version of Cisco NX-OS Software.
Original title
A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause...
Original description
A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP process to restart, which could cause an affected device to reload unexpectedly.
This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.
Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
This vulnerability is due to improper handling of specific fields in an LLDP frame. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.
Note: LLDP is a Layer 2 link protocol. To exploit this vulnerability, an attacker would need to be directly connected to an interface of an affected device, either physically or logically (for example, through a Layer 2 Tunnel configured to transport the LLDP protocol).
nvd CVSS3.1
7.4
Vulnerability type
CWE-805
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026