var-201405-0055
Vulnerability from variot
Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400. Cisco NX-OS is a data center-class operating system that embodies modular design, resiliency, and maintainability. Tampering with the login information of the SSH key file to obtain administrative rights on another VDC. Cisco NX-OS is prone to a remote privilege-escalation vulnerability. This issue is being tracked by Cisco Bug ID CSCud88400. Cisco NX-OS on Nexus 7000 devices is a set of operating systems run by Cisco on Nexus 7000 series devices. An elevation of privilege vulnerability exists in Cisco NX-OS versions 6.1 prior to 6.1(5) on Nexus 7000 devices
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201405-0055", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1\\(2\\)", }, { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1\\(3\\)", }, { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1", }, { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1\\(4a\\)", }, { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1\\(1\\)", }, { model: "nx-os", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1\\(4\\)", }, { model: "nexus 7000 9-slot", scope: "eq", trust: 1, vendor: "cisco", version: null, }, { model: "nexus 7000", scope: "eq", trust: 1, vendor: "cisco", version: null, }, { model: "nexus 7000 18-slot", scope: "eq", trust: 1, vendor: "cisco", version: null, }, { model: "nexus 7000 10-slot", scope: "eq", trust: 1, vendor: "cisco", version: null, }, { model: "nx-os", scope: "eq", trust: 0.9, vendor: "cisco", version: "4.2(4)", }, { model: "nx-os", scope: "eq", trust: 0.9, vendor: "cisco", version: "4.2(3)", }, { model: "nx-os", scope: "eq", trust: 0.9, vendor: "cisco", version: "4.2(6)", }, { model: "nexus 7000 10 slot switch", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "nexus 7000 18 slot switch", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "nexus 7000 9 slot switch", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "nexus 7000 series switch", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "nx-os", scope: "lt", trust: 0.8, vendor: "cisco", version: "6.1 thats all 6.1(5)", }, { model: "nx-os", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "nx-os for nexus series", scope: "eq", trust: 0.3, vendor: "cisco", version: "70000", }, { model: "nx-os 5.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "nx-os 4.2.", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "nx-os", scope: "eq", trust: 0.3, vendor: "cisco", version: "4.2(8)", }, { model: "nx-os", scope: "eq", trust: 0.3, vendor: "cisco", version: "4.1.(5)", }, { model: "nx-os", scope: "eq", trust: 0.3, vendor: "cisco", version: "4.1.(4)", }, { model: "nx-os", scope: "eq", trust: 0.3, vendor: "cisco", version: "4.1.(3)", }, { model: "nx-os", scope: "eq", trust: 0.3, vendor: "cisco", version: "4.1.(2)", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "BID", id: "67574", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, { db: "CNNVD", id: "CNNVD-201405-477", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1\\(4a\\):*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1\\(4\\):*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1\\(1\\):*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1\\(3\\):*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:nx-os:6.1\\(2\\):*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:cisco:nexus_7000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:cisco:nexus_7000_10-slot:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:cisco:nexus_7000_18-slot:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:h:cisco:nexus_7000_9-slot:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2013-1191", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "The vendor reported this issue.", sources: [ { db: "BID", id: "67574", }, ], trust: 0.3, }, cve: "CVE-2013-1191", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", author: "NVD", availabilityImpact: "COMPLETE", baseScore: 7.1, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, impactScore: 10, integrityImpact: "COMPLETE", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "HIGH", trust: 1, userInteractionRequired: false, vectorString: "AV:N/AC:H/Au:S/C:C/I:C/A:C", version: "2.0", }, { acInsufInfo: null, accessComplexity: "High", accessVector: "Network", authentication: "Single", author: "NVD", availabilityImpact: "Complete", baseScore: 7.1, confidentialityImpact: "Complete", exploitabilityScore: null, id: "CVE-2013-1191", impactScore: null, integrityImpact: "Complete", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "High", trust: 0.8, userInteractionRequired: null, vectorString: "AV:N/AC:H/Au:S/C:C/I:C/A:C", version: "2.0", }, { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", author: "CNVD", availabilityImpact: "COMPLETE", baseScore: 7.1, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, id: "CNVD-2014-03252", impactScore: 10, integrityImpact: "COMPLETE", severity: "HIGH", trust: 0.6, vectorString: "AV:N/AC:H/Au:S/C:C/I:C/A:C", version: "2.0", }, { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", author: "VULHUB", availabilityImpact: "COMPLETE", baseScore: 7.1, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, id: "VHN-61193", impactScore: 10, integrityImpact: "COMPLETE", severity: "HIGH", trust: 0.1, vectorString: "AV:N/AC:H/AU:S/C:C/I:C/A:C", version: "2.0", }, ], cvssV3: [], severity: [ { author: "NVD", id: "CVE-2013-1191", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2014-03252", trust: 0.6, value: "HIGH", }, { author: "CNNVD", id: "CNNVD-201405-477", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-61193", trust: 0.1, value: "HIGH", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "VULHUB", id: "VHN-61193", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, { db: "CNNVD", id: "CNNVD-201405-477", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud88400. Cisco NX-OS is a data center-class operating system that embodies modular design, resiliency, and maintainability. Tampering with the login information of the SSH key file to obtain administrative rights on another VDC. Cisco NX-OS is prone to a remote privilege-escalation vulnerability. \nThis issue is being tracked by Cisco Bug ID CSCud88400. Cisco NX-OS on Nexus 7000 devices is a set of operating systems run by Cisco on Nexus 7000 series devices. An elevation of privilege vulnerability exists in Cisco NX-OS versions 6.1 prior to 6.1(5) on Nexus 7000 devices", sources: [ { db: "NVD", id: "CVE-2013-1191", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "CNVD", id: "CNVD-2014-03252", }, { db: "BID", id: "67574", }, { db: "VULHUB", id: "VHN-61193", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2013-1191", trust: 3.4, }, { db: "BID", id: "67574", trust: 1, }, { db: "JVNDB", id: "JVNDB-2013-006519", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201405-477", trust: 0.7, }, { db: "CNVD", id: "CNVD-2014-03252", trust: 0.6, }, { db: "CISCO", id: "20140521 MULTIPLE VULNERABILITIES IN CISCO NX-OS-BASED PRODUCTS", trust: 0.6, }, { db: "VULHUB", id: "VHN-61193", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "VULHUB", id: "VHN-61193", }, { db: "BID", id: "67574", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, { db: "CNNVD", id: "CNNVD-201405-477", }, ], }, id: "VAR-201405-0055", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "VULHUB", id: "VHN-61193", }, ], trust: 0.06999999999999999, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, ], }, last_update_date: "2023-12-18T12:51:57.304000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "cisco-sa-20140521-nxos", trust: 0.8, url: "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140521-nxos", }, { title: "34246", trust: 0.8, url: "http://tools.cisco.com/security/center/viewalert.x?alertid=34246", }, { title: "cisco-sa-20140521-nxos", trust: 0.8, url: "http://www.cisco.com/cisco/web/support/jp/112/1122/1122585_cisco-sa-20140521-nxos-j.html", }, { title: "Patch for Cisco NX-OS Virtual Device Context SSH Key Remote Privilege Escalation Vulnerability", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/45872", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-264", trust: 1.9, }, ], sources: [ { db: "VULHUB", id: "VHN-61193", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 2.6, url: "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140521-nxos", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1191", }, { trust: 0.8, url: "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1191", }, { trust: 0.3, url: "http://www.cisco.com/en/us/products/ps9494/products_sub_category_home.html", }, { trust: 0.3, url: "http://tools.cisco.com/security/center/viewalert.x?alertid=34245", }, ], sources: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "VULHUB", id: "VHN-61193", }, { db: "BID", id: "67574", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, { db: "CNNVD", id: "CNNVD-201405-477", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2014-03252", }, { db: "VULHUB", id: "VHN-61193", }, { db: "BID", id: "67574", }, { db: "JVNDB", id: "JVNDB-2013-006519", }, { db: "NVD", id: "CVE-2013-1191", }, { db: "CNNVD", id: "CNNVD-201405-477", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2014-05-26T00:00:00", db: "CNVD", id: "CNVD-2014-03252", }, { date: "2014-05-26T00:00:00", db: "VULHUB", id: "VHN-61193", }, { date: "2014-05-21T00:00:00", db: "BID", id: "67574", }, { date: "2014-05-28T00:00:00", db: "JVNDB", id: "JVNDB-2013-006519", }, { date: "2014-05-26T00:25:31.673000", db: "NVD", id: "CVE-2013-1191", }, { date: "2014-05-28T00:00:00", db: "CNNVD", id: "CNNVD-201405-477", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2014-05-26T00:00:00", db: "CNVD", id: "CNVD-2014-03252", }, { date: "2014-05-27T00:00:00", db: "VULHUB", id: "VHN-61193", }, { date: "2014-05-21T00:00:00", db: "BID", id: "67574", }, { date: "2014-05-28T00:00:00", db: "JVNDB", id: "JVNDB-2013-006519", }, { date: "2014-05-27T16:05:21.940000", db: "NVD", id: "CVE-2013-1191", }, { date: "2014-05-28T00:00:00", db: "CNNVD", id: "CNNVD-201405-477", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-201405-477", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Nexus 7000 Runs on the device Cisco NX-OS Vulnerability gained in", sources: [ { db: "JVNDB", id: "JVNDB-2013-006519", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "permissions and access control", sources: [ { db: "CNNVD", id: "CNNVD-201405-477", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.