CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2016-1455
https://notcve.org/view.php?id=CVE-2016-1455
05 Oct 2016 — Cisco NX-OS before 7.0(3)I2(2e) and 7.0(3)I4 before 7.0(3)I4(1) has an incorrect iptables local-interface configuration, which allows remote attackers to obtain sensitive information via TCP or UDP traffic, aka Bug ID CSCuz05365. Cisco NX-OS en versiones anteriores a 7.0(3)I2(2e) y 7.0(3)I4 en versiones anteriores a 7.0(3)I4(1) tiene una configuración de la interfaz local de iptables incorrecta, lo que permite a atacantes remotos obtener información sensible a través del tráfico TCP o UDP, vulnerabilidad ta... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-n9kinfo • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 2%CPEs: 4891EXPL: 0CVE-2016-1409
https://notcve.org/view.php?id=CVE-2016-1409
29 May 2016 — The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in May 2016. El protocolo de implementación Neighbor Discovery (ND) en la pila IPv6 en Cisco IOS XE 2.1 hasta la versión 3.17S, IOS XR 2.0.0 hasta la versión 5.3.2 y NX-OS permite a atacantes remotos provocar una den... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 2%CPEs: 59EXPL: 0CVE-2016-1351
https://notcve.org/view.php?id=CVE-2016-1351
26 Mar 2016 — The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to cause a denial of service (device reload) via a crafted header in a packet, aka Bug ID CSCuu64279. La implemetación de Locator/ID Separation Protocol (LISP) en Cisco IOS 15.1 y 15.2 y NX-OS 4.1 hasta la versión 6.2 permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de una cabecera manipulada en un paquete, también conocido com... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-lisp • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-1341
https://notcve.org/view.php?id=CVE-2016-1341
24 Feb 2016 — Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3), and 7.0(4)N1(1) on Nexus 2000 Fabric Extender devices has a blank root password, which allows local users to gain privileges via unspecified vectors, aka Bug ID CSCur22079. Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3) y 7.0(4)N1(1) en dispositivos Nexus 2000 Fabric Extender tiene una contraseña de root en blanco, lo que permite a usuarios locales obtener privilegios a través de vectores no especificados, también conocida como Bug ID CSCur22079. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160223-nx2000 • CWE-255: Credentials Management Errors CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2015-6295
https://notcve.org/view.php?id=CVE-2015-6295
20 Sep 2015 — Cisco NX-OS 6.1(2)I3(4) and 7.0(3)I1(1) on Nexus 9000 (N9K) devices allows remote attackers to cause a denial of service (CPU consumption or control-plane instability) or trigger unintended traffic forwarding via a Layer 2 packet with a reserved VLAN number, aka Bug ID CSCuw13560. Vulnerabilidad en Cisco NX-OS 6.1(2)I3(4) y 7.0(3)I1(1) en dispositivos Nexus 9000 (N9K), permite a atacantes remotos provocar una denegación de servicio (consumo de CPU o inestabilidad en el plano de control) o desencadenar reenv... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40990 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2015-6277
https://notcve.org/view.php?id=CVE-2015-6277
02 Sep 2015 — The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus 4000 devices 4.1(2)E1, Nexus 9000 devices 7.3(0)ZD(0.61), and MDS 9000 devices 7.0(0)HSK(0.353) and SAN-OS NX-OS on MDS 9000 devices 7.0(0)HSK(0.353) allows remote attackers to cause a denial of service (ARP process restart) via crafted packet-header fields, aka Bug ID CSCut25292. Vulnerabilidad en la implementación ARP en Cisco NX-OS en dispositivos Nexus 1000V para VMwar... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40748 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 35EXPL: 0CVE-2015-4323
https://notcve.org/view.php?id=CVE-2015-4323
19 Aug 2015 — Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 devices 6.0(2)U5(1.41), 7.0(3)I2(0.373), and 7.3(0)ZN(0.83); Nexus 4000 devices 4.1(2)E1(1b); Nexus 7000 devices 6.2(14)S1; Nexus 9000 devices 7.3(0)ZN(0.9); and MDS 9000 devices 6.2 (13) and 7.1(0)ZN(91.99) and MDS SAN-OS 7.1(0)ZN(91.99) allows remote attackers to cause a denial of service (device outage) via a crafted ARP packet, related to incorrect MTU validation, aka Bug IDs CSCuv71933, CSCuv61341, CSCuv6... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40469 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 31EXPL: 0CVE-2015-4324
https://notcve.org/view.php?id=CVE-2015-4324
19 Aug 2015 — Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote attackers to cause a denial of service (IGMP process restart) via a malformed IGMPv3 packet that is mishandled during memory allocation, aka Bug IDs CSCuv69713, CSCuv69717, CSCuv69723, CSCuv69732, and CSCuv48908. Desbordamiento de búffer en Cisco NX-OS en dispositivos ... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40470 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2015-4231
https://notcve.org/view.php?id=CVE-2015-4231
03 Jul 2015 — The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416. El interprete Python en Cisco NX-OS 6.2(8a) en los dispositivos Nexus 7000 permite a usuarios locales evadir las restricciones de acceso y eliminar los ficheros de un VDC arbitrario mediante el aprovechamiento de privilegios de administración en un VDC, también conocido como... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39568 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2015-4232
https://notcve.org/view.php?id=CVE-2015-4232
03 Jul 2015 — Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856. Cisco NX-OS 6.2(10) en los dispositivos Nexus y MDS 9000 permite a usuarios locales ejecutar comandos del sistema operativo arbitrarios mediante la entrada de parámetro tar manipulados en la interfaz líneas de comando, también conocido como Bug ID CSCus44856. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39569 • CWE-264: Permissions, Privileges, and Access Controls •