A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute commands at the privilege level of a network-admin user outside of the Guest Shell. The attacker must authenticate with valid administrator device credentials. The vulnerability is due to the incorrect implementation of a CLI command that allows a Bash command to be incorrectly invoked on the Guest Shell CLI. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the Guest Shell prompt. A successful exploit could allow the attacker to issue commands that should be restricted by a Guest Shell account.
2019-05-15T17:29:01.717
2024-11-21T04:37:11.850
Modified
CVSSv3.1: 6.7 (MEDIUM)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | cisco | nx-os | < 7.0\(3\)i4\(9\) | Yes |
| Operating System | cisco | nx-os | < 7.0\(3\)i7\(4\) | Yes |
| Hardware | cisco | nexus_3000 | - | No |
| Hardware | cisco | nexus_3100 | - | No |
| Hardware | cisco | nexus_3100-z | - | No |
| Hardware | cisco | nexus_3100v | - | No |
| Hardware | cisco | nexus_3200 | - | No |
| Hardware | cisco | nexus_3400 | - | No |
| Hardware | cisco | nexus_3500 | - | No |
| Hardware | cisco | nexus_3524-x | - | No |
| Hardware | cisco | nexus_3524-xl | - | No |
| Hardware | cisco | nexus_3548-x | - | No |
| Hardware | cisco | nexus_3548-xl | - | No |
| Hardware | cisco | nexus_9000v | - | No |
| Hardware | cisco | nexus_92160yc-x | - | No |
| Hardware | cisco | nexus_92300yc | - | No |
| Hardware | cisco | nexus_92304qc | - | No |
| Hardware | cisco | nexus_92348gc-x | - | No |
| Hardware | cisco | nexus_9236c | - | No |
| Hardware | cisco | nexus_9272q | - | No |
| Hardware | cisco | nexus_93108tc-ex | - | No |
| Hardware | cisco | nexus_93108tc-fx | - | No |
| Hardware | cisco | nexus_93120tx | - | No |
| Hardware | cisco | nexus_93128tx | - | No |
| Hardware | cisco | nexus_93180lc-ex | - | No |
| Hardware | cisco | nexus_93180yc-ex | - | No |
| Hardware | cisco | nexus_93180yc-fx | - | No |
| Hardware | cisco | nexus_93216tc-fx2 | - | No |
| Hardware | cisco | nexus_93240yc-fx2 | - | No |
| Hardware | cisco | nexus_9332c | - | No |
| Hardware | cisco | nexus_9332pq | - | No |
| Hardware | cisco | nexus_93360yc-fx2 | - | No |
| Hardware | cisco | nexus_9336c-fx2 | - | No |
| Hardware | cisco | nexus_9336pq_aci_spine | - | No |
| Hardware | cisco | nexus_9348gc-fxp | - | No |
| Hardware | cisco | nexus_9364c | - | No |
| Hardware | cisco | nexus_9372px | - | No |
| Hardware | cisco | nexus_9372px-e | - | No |
| Hardware | cisco | nexus_9372tx | - | No |
| Hardware | cisco | nexus_9372tx-e | - | No |
| Hardware | cisco | nexus_9396px | - | No |
| Hardware | cisco | nexus_9396tx | - | No |
| Operating System | cisco | nx-os | < 8.3\(1\) | Yes |
| Hardware | cisco | nexus_7000 | - | No |
| Hardware | cisco | nexus_7700 | - | No |
| Operating System | cisco | nx-os | < 7.0\(3\)f3\(5\) | Yes |
| Hardware | cisco | nexus_36180yc-r | - | No |
| Hardware | cisco | nexus_3636c-r | - | No |
| Hardware | cisco | nexus_9504 | - | No |
| Hardware | cisco | nexus_9508 | - | No |
| Hardware | cisco | nexus_9516 | - | No |