The vulnerability of the Tetration Analytics network operating system component of Cisco NX-OS in Cisco Nexus series 9000 switches, related to improper handling of permissions, allows a perpetrator to execute arbitrary code with superuser privileges.

🗓️ 22 Mar 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Tetration Analytics OS on Cisco Nexus 9000 switches permits code execution with superuser privileges due to improper permission handling.

Reporter	Title	Published	Views	Family All 9
Cisco	Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution Vulnerability	6 Mar 201916:00	–	cisco
CVE	CVE-2019-1618	11 Mar 201922:00	–	cve
Cvelist	CVE-2019-1618 Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution Vulnerability	11 Mar 201922:00	–	cvelist
EUVD	EUVD-2019-10175	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1618	11 Mar 201921:29	–	nvd
OSV	CVE-2019-1618	11 Mar 201921:29	–	osv
Prion	Code injection	11 Mar 201921:29	–	prion
Tenable Nessus	Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution (CVE-2019-1618)	25 Jul 202300:00	–	nessus
Vulnrichment	CVE-2019-1618 Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution Vulnerability	11 Mar 201922:00	–	vulnrichment

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-tetra-ace
securityfocus	www.securityfocus.com/bid/107322
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 26.8

CVSS 37.8

EPSS0.00188

tetration analytics cisco nexus 9000 permission handling superuser privileges arbitrary code execution