The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

vulnerability note CVE-2019-1803

Cisco Nexus 9000 ACI: privilege escalation via Permissive File Permissions

Synthesis of the vulnerability

An attacker can bypass restrictions via Permissive File Permissions of Cisco Nexus 9000 ACI, in order to escalate his privileges.
Vulnerable products: Nexus by Cisco, NX-OS.
Severity of this weakness: 2/4.
Consequences of an attack: administrator access/rights, privileged access/rights.
Hacker's origin: user account.
Creation date: 02/05/2019.
Références of this bulletin: CERTFR-2019-AVI-193, cisco-sa-20190501-nexus9k-rpe, CSCvo72253, CVE-2019-1803, VIGILANCE-VUL-29184.

Description of the vulnerability

An attacker can bypass restrictions via Permissive File Permissions of Cisco Nexus 9000 ACI, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a software vulnerabilities alert. The Vigil@nce vulnerability database contains several thousand vulnerabilities. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.