The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

security announce CVE-2019-1735

Cisco NX-OS: shell command execution

Synthesis of the vulnerability

An attacker can use a vulnerability of Cisco NX-OS, in order to run code.
Severity of this alert: 2/4.
Creation date: 16/05/2019.
Références of this alert: cisco-sa-20190515-nxos-cmdinj-1735, CVE-2019-1735, VIGILANCE-VUL-29333.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can use a vulnerability of Cisco NX-OS, in order to run code.
Full Vigil@nce bulletin... (Free trial)

This threat impacts software or systems such as Nexus by Cisco, NX-OS, Cisco UCS.

Our Vigil@nce team determined that the severity of this computer threat is medium.

The trust level is of type confirmed by the editor, with an origin of user console.

An attacker with a expert ability can exploit this cybersecurity bulletin.

Solutions for this threat

Cisco NX-OS: solution CSCvj63728 CSCvj63877 CSCvk52969 CSCvk52971 CSCvk52972 CSCvk52975 CSCvk52985 CSCvk52988.
The solution is described on the Cisco site:
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvj63728
  https://tools.cisco.com/bugsearch/bug/CSCvj63728
  https://tools.cisco.com/quickview/bug/CSCvj63728
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvj63877
  https://tools.cisco.com/bugsearch/bug/CSCvj63877
  https://tools.cisco.com/quickview/bug/CSCvj63877
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52969
  https://tools.cisco.com/bugsearch/bug/CSCvk52969
  https://tools.cisco.com/quickview/bug/CSCvk52969
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52971
  https://tools.cisco.com/bugsearch/bug/CSCvk52971
  https://tools.cisco.com/quickview/bug/CSCvk52971
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52972
  https://tools.cisco.com/bugsearch/bug/CSCvk52972
  https://tools.cisco.com/quickview/bug/CSCvk52972
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52975
  https://tools.cisco.com/bugsearch/bug/CSCvk52975
  https://tools.cisco.com/quickview/bug/CSCvk52975
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52985
  https://tools.cisco.com/bugsearch/bug/CSCvk52985
  https://tools.cisco.com/quickview/bug/CSCvk52985
  https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk52988
  https://tools.cisco.com/bugsearch/bug/CSCvk52988
  https://tools.cisco.com/quickview/bug/CSCvk52988
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a software vulnerabilities alert. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce vulnerability database contains several thousand vulnerabilities.