Vulnerability CVE-2019-1614


Published: 2019-03-11

Description:
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to incorrect input validation of user-supplied data by the NX-API subsystem. An attacker could exploit this vulnerability by sending malicious HTTP or HTTPS packets to the management interface of an affected system that has the NX-API feature enabled. A successful exploit could allow the attacker to perform a command-injection attack and execute arbitrary commands with root privileges. Note: NX-API is disabled by default. MDS 9000 Series Multilayer Switches are affected running software versions prior to 8.1(1b) and 8.2(3). Nexus 3000 Series Switches are affected running software versions prior to 7.0(3)I4(9) and 7.0(3)I7(4). Nexus 3500 Platform Switches are affected running software versions prior to 7.0(3)I7(4). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected running software versions prior to 7.3(4)N1(1). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected running software versions prior to 7.0(3)I4(9) and 7.0(3)I7(4). Nexus 7000 and 7700 Series Switches are affected running software versions prior to 7.3(3)D1(1) and 8.2(3).

Vendor: Cisco
Product: Nx-os 
Version:
8.3(0)cv(0.345)
8.3(0)cv(0.342)
8.1(1)s5
8.1(1)
8.1(0.59)s0
8.1(0.2)s0
8.1(0.112)s0
8.0(1)s2
7.3(2)n1(0.395)
7.3(2)n1(0.296)
7.3(0)zn(0.9)
7.3(0)zn(0.83)
7.3(0)zn(0.81)
7.3(0)n1(1)
7.2(1)n1(1)
7.2(0)zz(99.3)
7.2(0)zz(99.1)
7.2(0)n1(1)
7.2(0)n1(0.1)
7.1(4)n1(1)
7.1(3)n1(3.12)
7.1(3)n1(2.1)
7.1(3)n1(2)
7.1(3)n1(1)
7.1(2)n1(1)
7.1(1)n1(1)
7.1(0)n1(1b)
7.1(0)n1(1a)
7.0(8)n1(1)
7.0(7)n1(1)
7.0(6)n1(1)
7.0(5)n1(1a)
7.0(5)n1(1)
7.0(4)n1(1)
7.0(3)n1(1)
7.0(3)i7
7.0(3)i2(0.373)
7.0(3)i1(2)
7.0(3)i1(1b)
7.0(3)i1(1a)
7.0(3)
7.0(2)n1(1)
7.0(1)n1(3)
7.0(1)n1(1)
7.0(0)n1(1)
6.2(8b)
6.2(8a)
6.2(8)
6.2(7)
6.2(6b)
6.2(6)
6.2(5a)
6.2(5)
6.2(3n)
6.2(3)
6.2(2a)
6.2(2)
6.2(1n)
6.2(14)s1
6.2(12)
6.2(11b)
6.2(10)
6.2(1)
6.1(5)
6.1(4a)
6.1(4)
6.1(3)
6.1(2)i3(4)
6.1(2)i3(3.78)
6.1(2)i3(3)
6.1(2)i3(2)
6.1(2)i3(1)
6.1(2)i2(3)
6.1(2)i2(2b)
6.1(2)i2(2a)
6.1(2)i2(2)
6.1(2)
6.1(1)
6.1
6.0(4)
6.0(3)
6.0(2)u6(8)
6.0(2)u6(7)
6.0(2)u6(6)
6.0(2)u6(5)
6.0(2)u6(4)
6.0(2)u6(3)
6.0(2)u6(2)
6.0(2)u6(1)
6.0(2)u5(4)
6.0(2)u5(3)
6.0(2)u5(2)
6.0(2)u5(1.41)
6.0(2)u5(1)
6.0(2)u4(3)
6.0(2)u4(2)
6.0(2)u4(1)
6.0(2)u3(5)
6.0(2)u3(4)
6.0(2)u3(3)
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9/10
10/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://www.securityfocus.com/bid/107339
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-NXAPI-cmdinj

Related CVE
CVE-2019-1711
A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling o...
CVE-2018-7340
Duo Network Gateway 1.2.9 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing...
CVE-2019-1786
A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...
CVE-2019-1762
A vulnerability in the Secure Storage feature of Cisco IOS and IOS XE Software could allow an authenticated, local attacker to access sensitive system information on an affected device. The vulnerability is due to improper memory operations performed...
CVE-2019-1761
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to receive potentially sensitive information from an affected device. The vulnerability is due to i...
CVE-2019-1760
A vulnerability in Performance Routing Version 3 (PfRv3) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload. The vulnerability is due to the processing of malformed smart probe packets. An ...
CVE-2019-1759
A vulnerability in access control list (ACL) functionality of the Gigabit Ethernet Management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to reach the configured IP addresses on the Gigabit Ethernet Management i...
CVE-2019-1758
A vulnerability in 802.1x function of Cisco IOS Software on the Catalyst 6500 Series Switches could allow an unauthenticated, adjacent attacker to access the network prior to authentication. The vulnerability is due to how the 802.1x packets are hand...

Copyright 2019, cxsecurity.com

 

Back to Top