Lucene search
CiscoCISCO-SA-20190515-NXOS-CLI-BYPASSHistoryMay 16, 2019 - 4:00 p.m.
Cisco NX-OS Software CLI Bypass to Internal Service Vulnerability
2019-05-1616:00:00
tools.cisco.com
33
EPSS
0
Percentile
5.2%
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to access internal services that should be restricted on an affected device, such as the NX-API.
The vulnerability is due to insufficient validation of arguments passed to a certain CLI command. An attacker could exploit this vulnerability by including malicious input as the argument to the affected command. A successful exploit could allow the attacker to bypass intended restrictions and access internal services of the device. An attacker would need valid device credentials to exploit this vulnerability.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-nxos-cli-bypass [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-nxos-cli-bypass”]
Affected configurations
Node
ciscocisco_nx-os_softwareMatch6.0
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1
ORciscocisco_nx-os_softwareMatch6.0\(2\)a3
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6
ORciscocisco_nx-os_softwareMatch6.0\(2\)a7
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8
ORciscocisco_nx-os_softwareMatch6.2
ORciscocisco_nx-os_softwareMatch7.0
ORciscocisco_nx-os_softwareMatch7.0\(0\)n1
ORciscocisco_nx-os_softwareMatch7.0\(1\)n1
ORciscocisco_nx-os_softwareMatch7.0\(2\)i2
ORciscocisco_nx-os_softwareMatch7.0\(2\)n1
ORciscocisco_nx-os_softwareMatch7.0\(3\)f1
ORciscocisco_nx-os_softwareMatch7.0\(3\)f2
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2
ORciscocisco_nx-os_softwareMatch7.0\(3\)i3
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4
ORciscocisco_nx-os_softwareMatch7.0\(3\)i5
ORciscocisco_nx-os_softwareMatch7.0\(3\)i6
ORciscocisco_nx-os_softwareMatch7.0\(3\)i7
ORciscocisco_nx-os_softwareMatch7.3
ORciscocisco_nx-os_softwareMatch7.3\(0\)d1
ORciscocisco_nx-os_softwareMatch7.3\(0\)dx
ORciscocisco_nx-os_softwareMatch7.3\(0\)dy
ORciscocisco_nx-os_softwareMatch7.3\(0\)n1
ORciscocisco_nx-os_softwareMatch7.3\(1\)d1
ORciscocisco_nx-os_softwareMatch7.3\(1\)dy
ORciscocisco_nx-os_softwareMatch7.3\(1\)n1
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1
ORciscocisco_nx-os_softwareMatch7.3\(2\)n1
ORciscocisco_nx-os_softwareMatch7.3\(3\)n1
ORciscocisco_nx-os_softwareMatch8.3
ORciscounified_computing_systemMatchany
ORciscocisco_nx-os_softwareMatch6.0\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(3\)
ORciscocisco_nx-os_softwareMatch6.0\(4\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1b\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1c\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1d\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1e\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(1f\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a1\(2d\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a3\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a3\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a3\(4\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(3\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(4\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(5\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a4\(6\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(1a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(2a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(3\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(3a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(4\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(4a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(5\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(5a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(5b\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(6\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(7\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a6\(8\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a7\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a7\(1a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a7\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a7\(2a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(1\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(2\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(3\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(4\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(4a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(5\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(6\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(7\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(7a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(7b\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(8\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(9\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(10a\)
ORciscocisco_nx-os_softwareMatch6.0\(2\)a8\(10\)
ORciscocisco_nx-os_softwareMatch6.2\(2\)
ORciscocisco_nx-os_softwareMatch6.2\(2a\)
ORciscocisco_nx-os_softwareMatch6.2\(6\)
ORciscocisco_nx-os_softwareMatch6.2\(6b\)
ORciscocisco_nx-os_softwareMatch6.2\(8\)
ORciscocisco_nx-os_softwareMatch6.2\(8a\)
ORciscocisco_nx-os_softwareMatch6.2\(8b\)
ORciscocisco_nx-os_softwareMatch6.2\(10\)
ORciscocisco_nx-os_softwareMatch6.2\(12\)
ORciscocisco_nx-os_softwareMatch6.2\(18\)
ORciscocisco_nx-os_softwareMatch6.2\(16\)
ORciscocisco_nx-os_softwareMatch6.2\(14b\)
ORciscocisco_nx-os_softwareMatch6.2\(14\)
ORciscocisco_nx-os_softwareMatch6.2\(14a\)
ORciscocisco_nx-os_softwareMatch6.2\(6a\)
ORciscocisco_nx-os_softwareMatch6.2\(20\)
ORciscocisco_nx-os_softwareMatch6.2\(1\)
ORciscocisco_nx-os_softwareMatch6.2\(3\)
ORciscocisco_nx-os_softwareMatch6.2\(5\)
ORciscocisco_nx-os_softwareMatch6.2\(5a\)
ORciscocisco_nx-os_softwareMatch6.2\(5b\)
ORciscocisco_nx-os_softwareMatch6.2\(7\)
ORciscocisco_nx-os_softwareMatch6.2\(9\)
ORciscocisco_nx-os_softwareMatch6.2\(9a\)
ORciscocisco_nx-os_softwareMatch6.2\(9b\)
ORciscocisco_nx-os_softwareMatch6.2\(9c\)
ORciscocisco_nx-os_softwareMatch6.2\(11\)
ORciscocisco_nx-os_softwareMatch6.2\(11b\)
ORciscocisco_nx-os_softwareMatch6.2\(11c\)
ORciscocisco_nx-os_softwareMatch6.2\(11d\)
ORciscocisco_nx-os_softwareMatch6.2\(11e\)
ORciscocisco_nx-os_softwareMatch6.2\(13\)
ORciscocisco_nx-os_softwareMatch6.2\(13a\)
ORciscocisco_nx-os_softwareMatch6.2\(13b\)
ORciscocisco_nx-os_softwareMatch6.2\(15\)
ORciscocisco_nx-os_softwareMatch6.2\(17\)
ORciscocisco_nx-os_softwareMatch6.2\(19\)
ORciscocisco_nx-os_softwareMatch6.2\(21\)
ORciscocisco_nx-os_softwareMatch6.2\(23\)
ORciscocisco_nx-os_softwareMatch6.2\(20a\)
ORciscocisco_nx-os_softwareMatch6.2\(25\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(0\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(1\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(1\)n1\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(2\)i2\(2c\)
ORciscocisco_nx-os_softwareMatch7.0\(2\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(2\)n1\(1a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f1\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f2\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f2\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(3a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(4\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(3c\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(3b\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)f3\(5\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(1a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(1b\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(3a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i1\(3b\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2b\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2c\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2d\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2e\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(4\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(5\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(1a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i2\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i3\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(3\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(4\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(5\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(6\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(7\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(8\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(8a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(8b\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i4\(8z\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i7\(5a\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i5\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i5\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i6\(1\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i6\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i7\(2\)
ORciscocisco_nx-os_softwareMatch7.0\(3\)i7\(5a\)
ORciscocisco_nx-os_softwareMatch7.3\(0.2\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)d1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)dx\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)dy\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)n1\(1b\)
ORciscocisco_nx-os_softwareMatch7.3\(0\)n1\(1a\)
ORciscocisco_nx-os_softwareMatch7.3\(1\)d1\(1b\)
ORciscocisco_nx-os_softwareMatch7.3\(1\)d1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(1\)dy\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(1\)n1\(0.1\)
ORciscocisco_nx-os_softwareMatch7.3\(1\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1\(1a\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1\(2\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1\(3\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)d1\(3a\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)n1\(0.296\)
ORciscocisco_nx-os_softwareMatch7.3\(2\)n1\(1\)
ORciscocisco_nx-os_softwareMatch7.3\(3\)n1\(1\)
ORciscocisco_nx-os_softwareMatch8.3\(1\)
ORciscounified_computing_systemMatchany
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | cisco_nx-os_software | 6.0 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a1 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a1:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a3 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a3:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a4 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a4:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a6 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a6:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a7 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a7:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.0(2)a8 | cpe:2.3:a:cisco:cisco_nx-os_software:6.0\(2\)a8:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 6.2 | cpe:2.3:a:cisco:cisco_nx-os_software:6.2:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 7.0 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0:*:*:*:*:*:*:* |
| cisco | cisco_nx-os_software | 7.0(0)n1 | cpe:2.3:a:cisco:cisco_nx-os_software:7.0\(0\)n1:*:*:*:*:*:*:* |
Related
nessus
nessus
cvelist
cvelist
nvd
nvd
CVE-2019-1726
2019-05-15 17:29:01
cve
cve
CVE-2019-1726
2019-05-15 17:29:01
prion
prion
Input validation
2019-05-15 17:29:00