Cisco

Nx-os

221 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2012-4076

  • EPSS 0.12%
  • Published 14.10.2013 03:34:51
  • Last modified 11.04.2025 00:51:21

Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in a command that calls the system library function, aka Bug IDs CSCtf23559 and CSCtf27780.

7.2

CVE-2012-4075

  • EPSS 0.22%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in unspecified command parameters, aka Bug IDs CSCtf19827 and CSCtf27788.

4

CVE-2012-4090

  • EPSS 0.51%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

The management interface in Cisco NX-OS on Nexus 7000 devices allows remote authenticated users to obtain sensitive configuration-file information by leveraging the network-operator role, aka Bug ID CSCti09089.

5

CVE-2012-4091

  • EPSS 1.14%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

The RIP service engine in Cisco NX-OS allows remote attackers to cause a denial of service (engine restart) via a malformed (1) RIPv4 or (2) RIPv6 message, aka Bug ID CSCtj73415.

5

CVE-2012-4098

  • EPSS 0.54%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

The BGP implementation in Cisco NX-OS does not properly filter AS paths, which allows remote attackers to cause a denial of service (BGP service reset and resync) via a malformed UPDATE message, aka Bug ID CSCtn13055.

6.2

CVE-2012-4122

  • EPSS 0.12%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

The CLI parser in Cisco NX-OS allows local users to bypass intended access restrictions, and overwrite or create arbitrary files, via shell output redirection, aka Bug IDs CSCts56672 and CSCts56669.

6.2

CVE-2012-4141

  • EPSS 0.23%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551.

5.4

CVE-2013-1121

  • EPSS 0.43%
  • Published 19.09.2013 18:55:05
  • Last modified 11.04.2025 00:51:21

The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service (device reload) via a crafted AS path set, aka Bug ID CSCuf49554.

6.3

CVE-2013-5496

  • EPSS 0.2%
  • Published 16.09.2013 13:02:35
  • Last modified 11.04.2025 00:51:21

Open Network Environment Platform (ONEP) in Cisco NX-OS allows remote authenticated users to cause a denial of service (network-element reload) via a crafted packet, aka Bug ID CSCui51551.

5.8

CVE-2013-0149

  • EPSS 0.94%
  • Published 05.08.2013 13:22:47
  • Last modified 11.04.2025 00:51:21

The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly validate Link State Advertisement (LSA) type 1 packets b...