The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of NX-OS

vulnerability bulletin CVE-2017-12340

Cisco NX-OS: privilege escalation via Bash Shell

Synthesis of the vulnerability

An attacker can bypass restrictions via Bash Shell of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-switch, CSCvd86513, CVE-2017-12340, VIGILANCE-VUL-24593.

Description of the vulnerability

An attacker can bypass restrictions via Bash Shell of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2017-12351

Cisco NX-OS: privilege escalation via Guest Shell

Synthesis of the vulnerability

An attacker can bypass restrictions via Guest Shell of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user shell.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos10, CSCvf33038, CVE-2017-12351, VIGILANCE-VUL-24592.

Description of the vulnerability

An attacker can bypass restrictions via Guest Shell of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2017-12342

Cisco NX-OS: privilege escalation via Open Agent Container

Synthesis of the vulnerability

An attacker can bypass restrictions via Open Agent Container of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: data flow.
Provenance: intranet client.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos9, CSCve53542, CSCvf36621, CVE-2017-12342, VIGILANCE-VUL-24591.

Description of the vulnerability

An attacker can bypass restrictions via Open Agent Container of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2017-12341

Cisco NX-OS: privilege escalation via Software Patch Installation

Synthesis of the vulnerability

An attacker can bypass restrictions via Software Patch Installation of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: internet server.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos8, CSCvf23735, CSCvg04072, CVE-2017-12341, VIGILANCE-VUL-24590.

Description of the vulnerability

An attacker can bypass restrictions via Software Patch Installation of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2017-12339

Cisco NX-OS: privilege escalation via CLI Command Injection

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos7, CSCve99925, CSCvf15164, CSCvf15167, CSCvf15170, CSCvf15173, CVE-2017-12339, VIGILANCE-VUL-24589.

Description of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2017-12338

Cisco NX-OS: file reading via CLI

Synthesis of the vulnerability

A local attacker can read a file via CLI of Cisco NX-OS, in order to obtain sensitive information.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: data reading.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos6, CSCve51707, CSCve93961, CSCve93964, CSCve93965, CSCve93968, CSCve93974, CSCve93976, CVE-2017-12338, VIGILANCE-VUL-24588.

Description of the vulnerability

A local attacker can read a file via CLI of Cisco NX-OS, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2017-12336

Cisco NX-OS: privilege escalation via Interactive TCL Shell Escape

Synthesis of the vulnerability

An attacker can bypass restrictions via Interactive TCL Shell Escape of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos5, CSCve93750, CSCve93762, CSCve93763, CSCvg04127, CVE-2017-12336, VIGILANCE-VUL-24587.

Description of the vulnerability

An attacker can bypass restrictions via Interactive TCL Shell Escape of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2017-12335

Cisco NX-OS: privilege escalation via CLI Command Injection

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos4, CSCvf14923, CSCvf14926, CSCvg04095, CVE-2017-12335, VIGILANCE-VUL-24586.

Description of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2017-12334

Cisco NX-OS: privilege escalation via CLI Command Injection

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos3, CSCvf15113, CSCvf15122, CSCvf15125, CSCvf15131, CSCvf15143, CSCvg04088, CVE-2017-12334, VIGILANCE-VUL-24585.

Description of the vulnerability

An attacker can bypass restrictions via CLI Command Injection of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability note CVE-2017-12333

Cisco NX-OS: privilege escalation via Software Image Signature

Synthesis of the vulnerability

An attacker can bypass restrictions via Software Image Signature of Cisco NX-OS, in order to escalate his privileges.
Impacted products: Nexus by Cisco, NX-OS.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: internet server.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-nxos2, CSCvf25045, CSCvf31495, CVE-2017-12333, VIGILANCE-VUL-24584.

Description of the vulnerability

An attacker can bypass restrictions via Software Image Signature of Cisco NX-OS, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about NX-OS: