漏洞标题
Cisco Nexus 9000 Series交换机独立NX-OS模式下的Tetration Analytics Agent任意代码执行漏洞
漏洞描述信息
Cisco Nexus 9000系列交换机独立NX-OS模式下的Tetration Analytics代理任意代码执行漏洞
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution Vulnerability
漏洞描述信息
A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to execute arbitrary code as root. The vulnerability is due to an incorrect permissions setting. An attacker could exploit this vulnerability by replacing valid agent files with malicious code. A successful exploit could result in the execution of code supplied by the attacker. Nexus 9000 Series Switches in Standalone NX-OS Mode are affected running versions prior to 7.0(3)I7(5).
CVSS信息
N/A
漏洞类别
Permission Issues
漏洞标题
Cisco Nexus 9000 Series Switches 授权问题漏洞
漏洞描述信息
Cisco Nexus 9000 Series Switches是美国思科(Cisco)公司的一款9000系列交换机。Cisco NX-OS Software是一套交换机使用的数据中心级操作系统软件。 Cisco Nexus 9000 Series Switches(处于standalone NX-OS模式)的Cisco NX-OS Software的Tetration Analytics代理存在安全漏洞,该漏洞源于不正确的权限设置。攻击者可通过用恶意代码替换有效的代理文件利用该漏洞以root用户身份执行
CVSS信息
N/A
漏洞类别
授权问题