Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856.
2015-07-03T10:59:01.343
2025-04-12T10:46:40.837
Deferred
CVSSv2: 4.6 (MEDIUM)
AV:L/AC:L/Au:N/C:P/I:P/A:P
3.9
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | cisco | nx-os | 6.2\(10\) | Yes |
| Hardware | cisco | mds_9100 | - | No |
| Hardware | cisco | mds_9200 | - | No |
| Hardware | cisco | mds_9500 | - | No |
| Hardware | cisco | mds_9700 | - | No |
| Hardware | cisco | nexus_93120tx | - | No |
| Hardware | cisco | nexus_93128tx | - | No |
| Hardware | cisco | nexus_9332pq | - | No |
| Hardware | cisco | nexus_9336pq_aci_spine | - | No |
| Hardware | cisco | nexus_9372px | - | No |
| Hardware | cisco | nexus_9372tx | - | No |
| Hardware | cisco | nexus_9396px | - | No |
| Hardware | cisco | nexus_9396tx | - | No |
| Hardware | cisco | nexus_9504 | - | No |
| Hardware | cisco | nexus_9508 | - | No |
| Hardware | cisco | nexus_9516 | - | No |