CVE-2015-4213 — Sensitive Information Exposure in Cisco Nx-os

CWE-200 — Sensitive Information Exposure4 documents4 sources

Severity

4.0MEDIUMNVD

EPSS

0.7%

top 27.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Nx-os

Timeline

PublishedJun 24

Latest updateMay 17

Description

Cisco NX-OS 1.1(1g) on Nexus 9000 devices allows remote authenticated users to discover cleartext passwords by leveraging the existence of a decryption mechanism, aka Bug ID CSCuu84391.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/nx-os1.1\(1g\)

🔴Vulnerability Details

GHSA

GHSA-xj7r-q24h-7jww: Cisco NX-OS 1↗2022-05-17

▶

CVEList

CVE-2015-4213: Cisco NX-OS 1↗2015-06-24

▶

📋Vendor Advisories

Cisco

Cisco Nexus 9000 Series Software Password Exposure Vulnerability↗2015-06-23

▶