3 matches found
Cisco NX-OS Software Python Parser Escape Vulnerability
According to its self-reported version, the Cisco NX-OS Software is affected by one or more vulnerabilities. Please see the included Cisco BIDs and the Cisco Security Advisory for more information. TRUSTED...
CVE-2017-12301
A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and gain unauthorized access to the underlying operating system of the device. The vulnerability exists due to insufficient sanitization of...
CVE-2017-12301
CVE-2017-12301 describes a vulnerability in the Python scripting subsystem of Cisco NX-OS Software. An authenticated, local attacker can escape the Python parser’s sandbox by exploiting insufficient sanitization of user-provided parameters passed to Python functions, potentially executing arbitra...