CVE-2019-1732OS Command Injection in Cisco Nx-os Software

CWE-78OS Command InjectionCWE-667Improper Locking4 documents4 sources
Severity
6.4MEDIUMNVD
EPSS
0.3%
top 47.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cisco Nx-os SoftwareCisco Nx-osCisco NX OS
Timeline
PublishedMay 15
Latest updateMay 24

Description

A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to leverage a time-of-check, time-of-use (TOCTOU) race condition to corrupt local variables, which could lead to arbitrary command injection. The vulnerability is due to the lack of a proper locking mechanism on critical variables that need to stay static until used. An attacker could exploit this vulnerability by authenticating to an a

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.5 | Impact: 5.9

Affected Packages3 packages

CVEListV5cisco/cisco_nx-os_softwareunspecified8.3(1)
NVDcisco/nx-os7.0\(3\)i47.0\(3\)i7\(4\)
NVDcisco/nx_os7.0\(3\)7.0\(3\)f3\(5\)

🔴Vulnerability Details

2
GHSA
GHSA-p72g-8563-4jg8: A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow an authenticated, local attacker with administrator2022-05-24
CVEList
Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability2019-05-15

📋Vendor Advisories

1
Cisco
Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability2019-05-15
CVE-2019-1732 — OS Command Injection in Cisco | cvebase