2 matches found
Cisco Nexus 3000 and 9000 Series Switches Privilege Escalation (cisco-sa-n3n9k-priv-escal-3QhXJBC)
According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability in the Enable Secret feature due to a logic error in the implementation of the enable command. An authenticated, local attacker can exploit this, by logging in to the device and issuing the enable command,...
CVE-2020-3394
CVE-2020-3394 affects Cisco Nexus 3000/9000 Series NX-OS in standalone NX-OS mode. A logic error in the Enable Secret/enable command allows an authenticated, local attacker with valid credentials to gain full administrative privileges by issuing the enable command, bypassing the password. The vul...