3 matches found
Cisco NX-OS Software NX-API Command Injection (CVE-2022-20650)
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker could exploit thi...
CVE-2022-20650
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker could exploit thi...
CVE-2022-20650
CVE-2022-20650 affects Cisco NX-OS NX-API Command Injection. The issue arises from insufficient input validation in the NX-API, enabling an authenticated remote attacker to send a crafted HTTP POST to the NX-API and execute arbitrary commands with root privileges on the underlying OS. Impact is o...