CVE-2013-1191

2014-05-2600:25:31

CWE-264

[email protected]

web.nvd.nist.gov

cve-2013-1191

cisco

nx-os

nexus 7000

bug id cscud88400

ssh

vdc

authentication

privilege escalation

6.7 Medium

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

43.9%

JSON

Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400.

Affected configurations

NVD

Node

cisconx-osMatch6.1

cisconx-osMatch6.1\(1\)

cisconx-osMatch6.1\(2\)

cisconx-osMatch6.1\(3\)

cisconx-osMatch6.1\(4\)

cisconx-osMatch6.1\(4a\)

AND

cisconexus_7000Match-

cisconexus_7000_10-slotMatch-

cisconexus_7000_18-slotMatch-

cisconexus_7000_9-slotMatch-

CPENameOperatorVersion
cisco:nx-oscisco nx-oseq6.1
cisco:nx-oscisco nx-oseq6.1\(1\)
cisco:nx-oscisco nx-oseq6.1\(2\)
cisco:nx-oscisco nx-oseq6.1\(3\)
cisco:nx-oscisco nx-oseq6.1\(4\)
cisco:nx-oscisco nx-oseq6.1\(4a\)
cisco:nexus_7000cisco nexus 7000eq-
cisco:nexus_7000_10-slotcisco nexus 7000 10-sloteq-
cisco:nexus_7000_18-slotcisco nexus 7000 18-sloteq-
cisco:nexus_7000_9-slotcisco nexus 7000 9-sloteq-

CPE	Name	Operator	Version
cisco:nx-os	cisco nx-os	eq	6.1
cisco:nx-os	cisco nx-os	eq	6.1\(1\)
cisco:nx-os	cisco nx-os	eq	6.1\(2\)
cisco:nx-os	cisco nx-os	eq	6.1\(3\)
cisco:nx-os	cisco nx-os	eq	6.1\(4\)
cisco:nx-os	cisco nx-os	eq	6.1\(4a\)
cisco:nexus_7000	cisco nexus 7000	eq	-
cisco:nexus_7000_10-slot	cisco nexus 7000 10-slot	eq	-
cisco:nexus_7000_18-slot	cisco nexus 7000 18-slot	eq	-
cisco:nexus_7000_9-slot	cisco nexus 7000 9-slot	eq	-