2 matches found
Cisco NX-OS Software CLI Arbitrary Command Injection (cisco-sa-20180620-nx-os-cli-injection)
A command injection vulnerability exists in the CLI of Cisco NX-OS Software due to insufficient input validation of command arguments. An authenticated, local attacker can exploit this, via a vulnerable CLI command to execute arbitrary commands. Cisco BIDs and Cisco Security Advisory for more...
CVE-2018-0307
CVE-2018-0307 is Cisco NX-OS CLI Arbitrary Command Injection due to insufficient input validation of CLI command arguments. An authenticated, local attacker could exploit this vulnerability to execute arbitrary commands with root privileges, potentially accessing files across VDC contexts. Affect...