4 matches found
Cisco FXOS and NX-OS Software Unauthorized Administrator Account (CVE-2018-0294)
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not properly delete...
Cisco FXOS Software Unauthorized Administrator Account (cisco-sa-20180620-nxosadmin)
According to its self-reported version, a improper file handling vulnerability exists in Cisco FX-OS Software. Therefore, an authenticated, local attacker can exploit this via CLI commands to create a unauthorized account with administrator privilages that does not require a password for...
CVE-2018-0294
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not properly delete...
CVE-2018-0294
The CVE-2018-0294 issue is a local-authenticated vulnerability in Cisco FXOS/NX-OS write-erase handling. The affected software may fail to delete sensitive files when clearing device configuration and reloading, enabling an authenticated administrator to create an unauthorized admin account that ...