CVE-2014-0684

Name of the Vulnerable Software and Affected Versions Cisco NX-OS version 6.2(2)

Description A denial of service condition can be caused by an authenticated, local attacker on affected devices due to an error in input validation for the sed command. The attacker could exploit this by passing crafted input to the sed command, allowing them to cause a denial of service condition. This vulnerability requires local access to the targeted device, reducing the likelihood of a successful exploit.

Recommendations For Cisco NX-OS version 6.2(2), update to a newer version that includes the fix for this issue, as confirmed by Cisco in their security notice. As a temporary workaround, consider restricting access to the sed command to minimize the risk of exploitation.