Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Product filter

Nx-os Subscribe

Filter

218 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-0102 1 Cisco 1 Nx-os 2019-10-09 6.1
A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected...
CVE-2018-0092 1 Cisco 1 Nx-os 2019-10-09 3.6
A vulnerability in the network-operator user role implementation for Cisco NX-OS System Software could allow an authenticated, local attacker to improperly delete valid user accounts. The network-operator role should not be able to delete other...
CVE-2018-0090 1 Cisco 1 Nx-os 2019-10-09 5.0
A vulnerability in management interface access control list (ACL) configuration of Cisco NX-OS System Software could allow an unauthenticated, remote attacker to bypass configured ACLs on the management interface. This could allow traffic to be...
CVE-2017-6770 1 Cisco 7 Adaptive Security Appliance Software, Ios, Nx-os and 4 more 2019-10-09 4.3
Cisco IOS 12.0 through 15.6, Adaptive Security Appliance (ASA) Software 7.0.1 through 9.7.1.2, NX-OS 4.0 through 12.0, and IOS XE 3.6 through 3.18 are affected by a vulnerability involving the Open Shortest Path First (OSPF) Routing Protocol Link...
CVE-2017-12351 1 Cisco 1 Nx-os 2019-10-09 4.6
A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local attacker to read and send packets outside the scope of the guest shell container. An attacker would need valid administrator credentials...
CVE-2017-12342 1 Cisco 1 Nx-os 2019-10-09 4.6
A vulnerability in the Open Agent Container (OAC) feature of Cisco Nexus Series Switches could allow an unauthenticated, local attacker to read and send packets outside the scope of the OAC. The vulnerability is due to insufficient internal...
CVE-2017-12341 1 Cisco 2 Unified Computing System, Nx-os 2019-10-09 7.2
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due...
CVE-2017-12338 1 Cisco 3 Unified Computing System, Lan Switch Software, Nx-os 2019-10-09 2.1
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker...
CVE-2017-12330 1 Cisco 1 Nx-os 2019-10-09 4.6
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments to the CLI parser. An...
CVE-2017-12329 1 Cisco 3 Unified Computing System, Firepower Extensible Operating System, Nx-os 2019-10-09 4.6
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input...
CVE-2017-12301 1 Cisco 1 Nx-os 2019-10-09 7.2
A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and gain unauthorized access to the underlying operating system of the device. The vulnerability...
CVE-2017-3804 1 Cisco 1 Nx-os 2019-10-03 5.7
A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected...
CVE-2017-6650 1 Cisco 1 Nx-os 2019-10-03 4.6
A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to...
CVE-2017-12340 1 Cisco 1 Nx-os 2019-10-03 4.6
A vulnerability in Cisco NX-OS System Software running on Cisco MDS Multilayer Director Switches, Cisco Nexus 7000 Series Switches, and Cisco Nexus 7700 Series Switches could allow an authenticated, local attacker to access the Bash shell of an...
CVE-2017-6649 1 Cisco 1 Nx-os 2019-10-03 4.6
A vulnerability in the CLI of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input...
CVE-2017-12335 1 Cisco 2 Unified Computing System, Nx-os 2019-10-03 4.6
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments. An attacker could...
CVE-2017-3883 1 Cisco 2 Fxos, Nx-os 2019-10-03 5.0
A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an unauthenticated, remote attacker to cause an affected device...
CVE-2019-1795 1 Cisco 1 Nx-os 2019-05-28 7.2
A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is...
CVE-2019-1810 1 Cisco 1 Nx-os 2019-05-23 4.6
A vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches could allow an authenticated, local attacker with administrator-level credentials to install a malicious...
CVE-2019-1813 1 Cisco 1 Nx-os 2019-05-23 7.2
A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability...