CVSS: 9.8EPSS: 0%CPEs: 35EXPL: 0CVE-2015-4323
https://notcve.org/view.php?id=CVE-2015-4323
19 Aug 2015 — Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 devices 6.0(2)U5(1.41), 7.0(3)I2(0.373), and 7.3(0)ZN(0.83); Nexus 4000 devices 4.1(2)E1(1b); Nexus 7000 devices 6.2(14)S1; Nexus 9000 devices 7.3(0)ZN(0.9); and MDS 9000 devices 6.2 (13) and 7.1(0)ZN(91.99) and MDS SAN-OS 7.1(0)ZN(91.99) allows remote attackers to cause a denial of service (device outage) via a crafted ARP packet, related to incorrect MTU validation, aka Bug IDs CSCuv71933, CSCuv61341, CSCuv6... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40469 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2015-4277
https://notcve.org/view.php?id=CVE-2015-4277
19 Aug 2015 — The global-configuration implementation on Cisco ASR 9000 devices with software 5.1.3 and 5.3.0 improperly closes vty sessions after a commit/end operation, which allows local users to cause a denial of service (tmp/*config file creation, memory consumption, and device hang) via unspecified vectors, aka Bug ID CSCut93842. Vulnerabilidad en la implementación de la configuración global en los dispositivos Cisco ASR 9000 con versiones de software 5.1.3 y 5.3.0, causa un cierre de las sesiones vty después de un... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39939 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 31EXPL: 0CVE-2015-4324
https://notcve.org/view.php?id=CVE-2015-4324
19 Aug 2015 — Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote attackers to cause a denial of service (IGMP process restart) via a malformed IGMPv3 packet that is mishandled during memory allocation, aka Bug IDs CSCuv69713, CSCuv69717, CSCuv69723, CSCuv69732, and CSCuv48908. Desbordamiento de búffer en Cisco NX-OS en dispositivos ... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40470 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 44EXPL: 0CVE-2015-4237
https://notcve.org/view.php?id=CVE-2015-4237
03 Jul 2015 — The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and 9.1(1)SV1(3.1.8) on Nexus devices allows local users to execute arbitrary OS commands via crafted characters in a filename, aka Bug IDs CSCuv08491, CSCuv08443, CSCuv08480, CSCuv08448, CSCuu99291, CSCuv08434, and CSCuv08436. El analizador sintáctico CLI en Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), y 9.1(1)SV1(3.1.8) en los dispositivos Nexus permite a usuarios locales ejecutar c... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39583 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2015-4231
https://notcve.org/view.php?id=CVE-2015-4231
03 Jul 2015 — The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416. El interprete Python en Cisco NX-OS 6.2(8a) en los dispositivos Nexus 7000 permite a usuarios locales evadir las restricciones de acceso y eliminar los ficheros de un VDC arbitrario mediante el aprovechamiento de privilegios de administración en un VDC, también conocido como... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39568 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2015-4232
https://notcve.org/view.php?id=CVE-2015-4232
03 Jul 2015 — Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856. Cisco NX-OS 6.2(10) en los dispositivos Nexus y MDS 9000 permite a usuarios locales ejecutar comandos del sistema operativo arbitrarios mediante la entrada de parámetro tar manipulados en la interfaz líneas de comando, también conocido como Bug ID CSCus44856. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39569 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-4234
https://notcve.org/view.php?id=CVE-2015-4234
03 Jul 2015 — Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887, CSCur00115, and CSCur00127. Cisco NX-OS 6.0(2) y 6.2(2) en los dispositivos Nexus tiene una configuración del sistema operativo incorrecta, lo que permite a usuarios locales obtener el acceso root a través de entradas no especificadas en el interprete Python, también conocido como Bug IDs CSCun02887, CSCur0011... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39571 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2015-4225
https://notcve.org/view.php?id=CVE-2015-4225
27 Jun 2015 — Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuq77485. Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) y 1.0(1e) en los dispositivos Nexus 9000 no implementa correctamente la puntuación de salud RBAC, lo que permite a usuarios remotos autenticados obtener información sens... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39529 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 12EXPL: 0CVE-2015-4213
https://notcve.org/view.php?id=CVE-2015-4213
24 Jun 2015 — Cisco NX-OS 1.1(1g) on Nexus 9000 devices allows remote authenticated users to discover cleartext passwords by leveraging the existence of a decryption mechanism, aka Bug ID CSCuu84391. Cisco NX-OS 1.1(1g) en los dispositivos Nexus 9000 permite a usuarios remotos autenticados descubrir contraseñas en texto claro mediante el aprovechamiento de la existencia de un mecanismo de descifrado, también conocido como Bug ID CSCuu84391. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39469 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2015-4197
https://notcve.org/view.php?id=CVE-2015-4197
20 Jun 2015 — Cisco NX-OS 5.2(5) on Nexus 7000 devices allows remote attackers to cause a denial of service (device crash) by sending a malformed LLDP packet on the local network, aka Bug ID CSCud89415. Cisco NX-OS 5.2(5) en los dispositivos Nexus 7000 permite a atacantes remotos causar una denegación de servicio (caída de dispositivo) mediante el envío de un paquete LLDP malformado en la red local, también conocido como Bug ID CSCud89415. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39421 • CWE-20: Improper Input Validation •