CVSS: 9.8EPSS: 0%CPEs: 31EXPL: 0CVE-2015-0775
https://notcve.org/view.php?id=CVE-2015-0775
12 Jun 2015 — The banner (aka MOTD) implementation in Cisco NX-OS 4.1(2)E1(1f) on Nexus 4000 devices, 5.2(1)SV3(2.1) on Nexus 1000V devices, 6.0(2)N2(2) on Nexus 5000 devices, 6.2(11) on MDS 9000 devices, 6.2(12) on Nexus 7000 devices, 7.0(3) on Nexus 9000 devices, and 7.2(0)ZN(99.67) on Nexus 3000 devices allows remote attackers to cause a denial of service (login process reset) via an unspecified terminal-session request during TELNET session setup, aka Bug IDs CSCuo10554, CSCuu75466, CSCuu75471, CSCuu75484, CSCuu75498... • http://tools.cisco.com/security/center/viewAlert.x?alertId=39280 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2015-0686
https://notcve.org/view.php?id=CVE-2015-0686
03 Apr 2015 — The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000 devices, when a Reset High Availability (HA) policy is configured, allows remote authenticated users to cause a denial of service (device reload) via unspecified vectors, aka Bug ID CSCuq92240. La implementación SNMP en Cisco NX-OS 6.1(2)I2(3) en los dispositivos Nexus 9000, cuando una política Reset High Availability (HA) está configurada, permite a usuarios remotos autenticados causar una denegación de servicio (recarga de dispositivo) a tra... • http://tools.cisco.com/security/center/viewAlert.x?alertId=38193 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 114EXPL: 0CVE-2015-0658
https://notcve.org/view.php?id=CVE-2015-0658
28 Mar 2015 — The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary commands as root by sending crafted response packets on the local network, aka Bug ID CSCur14589. La implementación DHCP en la característica PowerOn Auto Provisioning (POAP) en Cisco NX-OS no restringe correctamente el proceso de inicialización, lo que permite a atacantes remotos ejecutar comandos arbitrarios como ro... • http://tools.cisco.com/security/center/viewAlert.x?alertId=38062 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 64EXPL: 1CVE-2014-3341
https://notcve.org/view.php?id=CVE-2014-3341
19 Aug 2014 — The SNMP module in Cisco NX-OS 7.0(3)N1(1) and earlier on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote attackers to enumerate VLANs via a series of requests, aka Bug ID CSCup85616. El módulo SNMP en Cisco NX-OS 7.0(3)N1(1) y anteriores en los dispositivos Nexus 5000 y 6000 proporciona mensajes de error diferentes para solicitudes inválidas dependiendo de si existe el ID VLAN, lo que permite a atacantes remotos... • https://github.com/ehabhussein/snmpvlan • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3330
https://notcve.org/view.php?id=CVE-2014-3330
11 Aug 2014 — Cisco NX-OS 6.1(2)I2(1) on Nexus 9000 switches does not properly process packet-drop policy checks for logged packets, which allows remote attackers to bypass intended access restrictions via a flood of packets matching a policy that contains the log keyword, aka Bug ID CSCuo02489. Cisco NX-OS 6.1(2)I2(1) en los switches Nexus 9000 no procesa debidamente las comprobaciones de la política de la descarga de paquetes para los paquetes registrados, lo que permite a atacantes remotos evadir las restricciones de ... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3330 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 34EXPL: 0CVE-2014-3295
https://notcve.org/view.php?id=CVE-2014-3295
14 Jun 2014 — The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309. La implementación HSRP en Cisco NX-OS 6.2(2a) y anteriores permite a atacantes remotos evadir autenticación y causar una denegación de servicio (modificación del estado de pertenencia a un grupo y redirección de trafico hacia un 'agujero negro' -blackhole-) a travé... • http://secunia.com/advisories/59158 • CWE-287: Improper Authentication •
CVSS: 8.8EPSS: 0%CPEs: 34EXPL: 0CVE-2014-2200
https://notcve.org/view.php?id=CVE-2014-2200
24 May 2014 — Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via an SSH session to a management interface, aka Bug ID CSCti11629. Cisco NX-OS 5.0 anterior a 5.0(5) en dispositivos Nexus 7000, cuando autenticación local y múltiples VDCs están habilitadas, permite a usuarios remotos autenticados ganar privilegios dentro de una VDC no intencionado a través de una sesión SSH hacia una i... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 97EXPL: 0CVE-2014-3261
https://notcve.org/view.php?id=CVE-2014-3261
24 May 2014 — Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 before 1.4(1i), NX-OS 5.0 before 5.0(3)U2(2) on Nexus 3000 devices, NX-OS 4.1 before 4.1(2)E1(1l) on Nexus 4000 devices, NX-OS 5.x before 5.1(3)N1(1) on Nexus 5000 devices, NX-OS 5.2 before 5.2(3a) on Nexus 7000 devices, and CG-OS CG4 before CG4(2) on Connected 1000 Connected Grid Routers allows remote SMTP servers to execute arbitrary code via a crafted reply, aka Bug IDs CSCtk... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2014-2201
https://notcve.org/view.php?id=CVE-2014-2201
24 May 2014 — The Message Transfer Service (MTS) in Cisco NX-OS before 6.2(7) on MDS 9000 devices and 6.0 before 6.0(2) on Nexus 7000 devices allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a large volume of crafted traffic, aka Bug ID CSCtw98915. Message Transfer Service (MTS) en Cisco NX-OS anterior a 6.2(7) en dispositivos MDS 9000 y 6.0 anterior a 6.0(2) en dispositivos Nexus 7000 permite a atacantes remotos causar una denegación de servicio (referencia a puntero n... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2013-1191
https://notcve.org/view.php?id=CVE-2013-1191
24 May 2014 — Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400. Cisco NX-OS 6.1 anterior a 6.1(5) en dispositivos Nexus 7000, cuando autenticación local y múltiples VDCs están habilitadas, permite a usuarios remotos autenticados ganar privilegios dentro de una VDC no intencionada a través de da... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos • CWE-264: Permissions, Privileges, and Access Controls •