Cisco NX-OS Software Python Parser Escape Vulnerability

According to its self-reported version, the Cisco NX-OS Software is affected by one or more vulnerabilities. Please see the included Cisco BIDs and the Cisco Security Advisory for more information. TRUSTED...

CVE-2017-12301

CVE-2017-12301 describes a vulnerability in the Python scripting subsystem of Cisco NX-OS Software. An authenticated, local attacker can escape the Python parser’s sandbox by exploiting insufficient sanitization of user-provided parameters passed to Python functions, potentially executing arbitra...