Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Product filter

Nx-os Subscribe

Filter

11 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1808 1 Cisco 1 Nx-os 2019-10-09 2.1
A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software patch on an affected device. The vulnerability...
CVE-2019-1733 1 Cisco 1 Nx-os 2019-10-09 3.5
A vulnerability in the NX API (NX-API) Sandbox interface for Cisco NX-OS Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the NX-API Sandbox interface of an affected device....
CVE-2019-1600 1 Cisco 1 Nx-os 2019-10-09 2.1
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to access sensitive information that is stored in the file system of an affected system. The vulnerability...
CVE-2019-1589 1 Cisco 1 Nx-os 2019-10-09 2.1
A vulnerability in the Trusted Platform Module (TPM) functionality of software for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, local attacker with physical access to...
CVE-2019-1588 1 Cisco 1 Nx-os 2019-10-09 2.1
A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running in Application-Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected device. The vulnerability is due to a lack...
CVE-2018-0395 1 Cisco 2 Fxos, Nx-os 2019-10-09 2.9
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device...
CVE-2018-0092 1 Cisco 1 Nx-os 2019-10-09 3.6
A vulnerability in the network-operator user role implementation for Cisco NX-OS System Software could allow an authenticated, local attacker to improperly delete valid user accounts. The network-operator role should not be able to delete other...
CVE-2017-12338 1 Cisco 3 Unified Computing System, Lan Switch Software, Nx-os 2019-10-09 2.1
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker...
CVE-2019-1731 1 Cisco 1 Nx-os 2019-05-17 2.1
A vulnerability in the SSH CLI key management functionality of Cisco NX-OS Software could allow an authenticated, local attacker to expose a user's private SSH key to all authenticated users on the targeted device. The attacker must authenticate...
CVE-2017-6655 1 Cisco 5 Mds 9000 Nx-os, Nx-os, Nx-os For Nexus 7700 Series Switches and 2 more 2017-07-08 3.3
A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when an FCoE-related process unexpectedly...
CVE-2015-4231 1 Cisco 1 Nx-os 2016-12-28 3.6
The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416.