The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco Nexus

vulnerability CVE-2019-1965

Cisco NX-OS: memory leak via VSH

Synthesis of the vulnerability

An attacker can create a memory leak via VSH of Cisco NX-OS, in order to trigger a denial of service.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: user account.
Creation date: 29/08/2019.
Identifiers: CERTFR-2019-AVI-414, cisco-sa-20190828-nxos-memleak-dos, CSCvi15409, CSCvn50393, CSCvn50443, CSCvn50446, CSCvn52167, CVE-2019-1965, VIGILANCE-VUL-30190.

Description of the vulnerability

An attacker can create a memory leak via VSH of Cisco NX-OS, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2019-1890

Cisco Nexus 9000: privilege escalation via VLAN

Synthesis of the vulnerability

An attacker can bypass restrictions via VLAN of Cisco Nexus 9000, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: data flow.
Provenance: LAN.
Creation date: 04/07/2019.
Identifiers: CERTFR-2019-AVI-304, cisco-sa-20190703-n9kaci-bypass, CSCvp64280, CVE-2019-1890, VIGILANCE-VUL-29692.

Description of the vulnerability

An attacker can bypass restrictions via VLAN of Cisco Nexus 9000, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2019-1779 CVE-2019-1780 CVE-2019-1781

Cisco NX-OS: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Number of vulnerabilities in this bulletin: 9.
Creation date: 16/05/2019.
Revision date: 17/05/2019.
Identifiers: cisco-sa-20190515-fxos-nxos-cmdinj-1781-1782, cisco-sa-20190515-nxos-cmdinj-1783, cisco-sa-20190515-nxos-cmdinj-1790, cisco-sa-20190515-nxos-cmdinj-1791, cisco-sa-20190515-nxos-cmdinj-1795, cisco-sa-20190515-nxos-cmd-inject-1784, cisco-sa-20190515-nxos-fxos-cmdinj-1779, cisco-sa-20190515-nxos-fxos-cmdinj-1780, CVE-2019-1779, CVE-2019-1780, CVE-2019-1781, CVE-2019-1782, CVE-2019-1783, CVE-2019-1784, CVE-2019-1790, CVE-2019-1791, CVE-2019-1795, VIGILANCE-VUL-29340.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2019-1808 CVE-2019-1809 CVE-2019-1810

Cisco Nexus: multiple vulnerabilities via signature

Synthesis of the vulnerability

An attacker can use several vulnerabilities via signature of Cisco Nexus.
Impacted products: Nexus by Cisco, NX-OS, Cisco UCS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: privileged account.
Number of vulnerabilities in this bulletin: 6.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-psvb, cisco-sa-20190515-nxos-sisv, cisco-sa-20190515-nxos-sisv2, cisco-sa-20190515-nxos-spsv, CVE-2019-1808, CVE-2019-1809, CVE-2019-1810, CVE-2019-1811, CVE-2019-1812, CVE-2019-1813, VIGILANCE-VUL-29341.

Description of the vulnerability

An attacker can use several vulnerabilities via signature of Cisco Nexus.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2019-1778

Cisco NX-OS: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-cmdinj-1778, cisco-sa-20190515-nxos-fxos-cmdinj-1779, CVE-2019-1778, VIGILANCE-VUL-29339.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2019-1776

Cisco NX-OS: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS, Cisco UCS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-cmdinj-1776, CVE-2019-1776, VIGILANCE-VUL-29338.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2019-1774 CVE-2019-1775

Cisco NX-OS: multiple vulnerabilities via CLI

Synthesis of the vulnerability

An attacker can use several vulnerabilities via CLI of Cisco NX-OS.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Number of vulnerabilities in this bulletin: 2.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-cmdinj-1774-1775, CVE-2019-1774, CVE-2019-1775, VIGILANCE-VUL-29337.

Description of the vulnerability

An attacker can use several vulnerabilities via CLI of Cisco NX-OS.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2019-1770

Cisco NX-OS: shell command execution via CLI

Synthesis of the vulnerability

An attacker can use a vulnerability via CLI of Cisco NX-OS, in order to run code.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-cmdinj-1770, CVE-2019-1770, VIGILANCE-VUL-29336.

Description of the vulnerability

An attacker can use a vulnerability via CLI of Cisco NX-OS, in order to run code.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2019-1769

Cisco NX-OS: shell command execution via Line Card

Synthesis of the vulnerability

An attacker can use a vulnerability via Line Card of Cisco NX-OS, in order to run code.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user console.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-linecardinj-1769, CVE-2019-1769, VIGILANCE-VUL-29335.

Description of the vulnerability

An attacker can use a vulnerability via Line Card of Cisco NX-OS, in order to run code.
Full Vigil@nce bulletin... (Free trial)

vulnerability note CVE-2019-1767 CVE-2019-1768

Cisco NX-OS: buffer overflow via CLI

Synthesis of the vulnerability

An attacker can trigger a buffer overflow via CLI of Cisco NX-OS, in order to trigger a denial of service, and possibly to run code.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 1/4.
Consequences: administrator access/rights, privileged access/rights, denial of service on server, denial of service on service.
Provenance: privileged console.
Number of vulnerabilities in this bulletin: 2.
Creation date: 16/05/2019.
Identifiers: cisco-sa-20190515-nxos-overflow-inj, CVE-2019-1767, CVE-2019-1768, VIGILANCE-VUL-29334.

Description of the vulnerability

An attacker can trigger a buffer overflow via CLI of Cisco NX-OS, in order to trigger a denial of service, and possibly to run code.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Nexus: