Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Cisco NX-OS Software Arbitrary File Read Vulnerability

Information

Severity

Severity

Medium

Family

Family

CISCO

CVSSv2 Base

CVSSv2 Base

4.6

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:L/Au:S/C:C/I:N/A:N

Solution Type

Solution Type

Vendor Patch

Created

Created

8 years ago

Modified

Modified

4 years ago

Summary

A vulnerability in the command-line interface (CLI) of Cisco NX-OS Software could allow an authenticated, local attacker to access the contents of arbitrary files on the affected device.

Insight

Insight

This issue is being tracked by Cisco Bug ID CSCul05217 and CSCul23419

Affected Software

Affected Software

This vulnerability affects the following platforms which are based on Cisco NX-OS: Cisco Nexus 7000 Cisco MDS 9000 Cisco Nexus 6000 Cisco Nexus 5500 Cisco Nexus 5000 Cisco Nexus 4000 Cisco Nexus 3500 Cisco Nexus 3000 Cisco Nexus 1000V Cisco Connected Grid Router 1000 Series Cisco Unified Computing System Fabric Interconnect 6200 Cisco Unified Computing System Fabric Interconnect 6100

Detection Method

Detection Method

Check the NX OS version.

Solution

Solution

Updates are available.

Common Vulnerabilities and Exposures (CVE)