The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

vulnerability announce CVE-2019-1590

Cisco Nexus 9000 ACI: privilege escalation via Insecure Fabric Authentication

Synthesis of the vulnerability

An attacker can bypass restrictions via Insecure Fabric Authentication of Cisco Nexus 9000 ACI, in order to escalate his privileges.
Impacted software: Nexus by Cisco, NX-OS.
Severity of this computer vulnerability: 3/4.
Consequences of a hack: administrator access/rights, privileged access/rights.
Attacker's origin: intranet client.
Creation date: 02/05/2019.
Références of this announce: cisco-sa-20190501-aci-insecure-fabric, CSCvn09791, CVE-2019-1590, VIGILANCE-VUL-29182.

Description of the vulnerability

An attacker can bypass restrictions via Insecure Fabric Authentication of Cisco ...
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides an application vulnerability database. The technology watch team tracks security threats targeting the computer system. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.