CVE-2015-4232
4.6
Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 3.9 / Impact: 6.4
Source: NVD
Description
Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856.
Affected (1)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 6.2(10) |
| Running on/with | Platform Versions |
|---|---|
Cisco Mds 9100 | All versions |
Cisco Mds 9200 | All versions |
Cisco Mds 9500 | All versions |
Cisco Mds 9700 | All versions |
Cisco Nexus 93120tx | All versions |
Cisco Nexus 93128tx | All versions |
Cisco Nexus 9332pq | All versions |
Cisco Nexus 9336pq Aci Spine | All versions |
Cisco Nexus 9372px | All versions |
Cisco Nexus 9372tx | All versions |
Cisco Nexus 9396px | All versions |
Cisco Nexus 9396tx | All versions |
Cisco Nexus 9504 | All versions |
Cisco Nexus 9508 | All versions |
Cisco Nexus 9516 | All versions |
Related CWEs
References (6)
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Timeline
No history available yet.