CVE-2019-1605

🗓️ 08 Mar 2019 20:00:00Reported by ciscoType

A vulnerability in Cisco NX-OS Software allows executing arbitrary code as root

Reporter	Title	Published	Views	Family All 8
Cisco	Cisco NX-OS Software NX-API Arbitrary Code Execution Vulnerability	6 Mar 201916:00	–	cisco
Tenable Nessus	Cisco NX-OS Software NX-API Arbitrary Code Execution Vulnerability	20 Dec 201900:00	–	nessus
Tenable Nessus	Cisco NX-OS Software NX-API Arbitrary Code Execution (CVE-2019-1605)	25 Jul 202300:00	–	nessus
Cvelist	CVE-2019-1605 Cisco NX-OS Software NX-API Arbitrary Code Execution Vulnerability	8 Mar 201920:00	–	cvelist
EUVD	EUVD-2019-10162	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1605	8 Mar 201920:29	–	nvd
Prion	Buffer overflow	8 Mar 201920:29	–	prion
Vulnrichment	CVE-2019-1605 Cisco NX-OS Software NX-API Arbitrary Code Execution Vulnerability	8 Mar 201920:00	–	vulnrichment

NVD

Vulners

Node

cisco nx-osRange7.3–8.1(1)

AND

cisco mds_9000Match-

Node

cisco nx-osRange<6.0(2)a8(8)

AND

cisco nexus_3500Match-

Node

cisco nx-osRange7.0(3)i5–7.0(3)i7(1)

AND

cisco nexus_3000Match-

Node

cisco nx-osRange7.0(3)f3–7.0(3)f3(5)

AND

cisco nexus_3600Match-

Node

cisco nx-osRange7.2–7.3(3)d1(1)

AND

cisco nexus_7000Match-

cisco nexus_7700Match-

Node

cisco nx-osRange<7.0(3)i4(8)

cisco nx-osRange7.0(3)i5–7.0(3)i7(1)

AND

cisco nexus_9000Match-

Node

cisco nx-osRange7.0(3)f1–7.0(3)f3(5)

AND

cisco nexus_9500Match-

Node

cisco nx-osRange<7.0(3)i4(8)

AND

cisco nexus_3000Match-

Node

cisco nx-osRange<7.0(3)i4(8)

AND

cisco nexus_9000Match-

Node

cisco nx-osRange7.3–7.3(2)n1(1)

AND

cisco nexus_2000Match-

cisco nexus_5500Match-

cisco nexus_5600Match-

cisco nexus_6000Match-

[
  {
    "product": "MDS 9000 Series Multilayer Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "8.1(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 3000 Series Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.0(3)I4(8)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "7.0(3)I7(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 3500 Platform Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "6.0(2)A8(8)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 3600 Platform Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.0(3)F3(5)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 2000, 5500, 5600, and 6000 Series Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.3(2)N1(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 7000 and 7700 Series Switches",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.3(3)D1(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.0(3)I4(8)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "7.0(3)I7(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Nexus 9500 R-Series Line Cards and Fabric Modules",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "7.0(3)F3(5)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/107313
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-api-ex

21 Nov 2024 04:36Current

7.9High risk

Vulners AI Score7.9

CVSS 27.2

CVSS 3.17.8

CVSS 37.8

EPSS0.0019

SSVC