A vulnerability in the TACACS+ command authorization code of Cisco NX-OS Software could allow an authenticated, local attacker to execute certain commands without TACACS+ server authorization.
The vulnerability is due to the processing of certain commands when executed in a sequence. An attacker could exploit this vulnerability by executing multiple commands in a sequence. A successful exploit could allow the attacker to execute certain commands without TACACS+ server authorization.
Cisco has confirmed the vulnerability in a security notice; however, software updates are not available.
To exploit this vulnerability, an attacker must have local access to an affected device. This access requirement reduces the possibility of a successful exploit.
Cisco indicates through the CVSS score that proof-of-concept exploit code exists; however, the code is not known to be publicly available.