CVE-2015-4231 — Cisco Nx-os vulnerability

CWE-2644 documents4 sources

Severity

3.6LOWNVD

EPSS

0.1%

top 70.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Nx-os

Timeline

PublishedJul 3

Latest updateMay 17

Description

The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416.

CVSS vector

AV:L/AC:L/C:N/I:P/A:PExploitability: 3.9 | Impact: 4.9

Affected Packages1 packages

▶NVDcisco/nx-os6.2\(8a\)

🔴Vulnerability Details

GHSA

GHSA-pmh9-frrx-c2qm: The Python interpreter in Cisco NX-OS 6↗2022-05-17

▶

CVEList

CVE-2015-4231: The Python interpreter in Cisco NX-OS 6↗2015-07-03

▶

📋Vendor Advisories

Cisco

Cisco Nexus 7000 Devices Virtual Device Context Privilege Escalation Vulnerability↗2015-06-30

▶