CVE-2017-6649

Name of the Vulnerable Software and Affected Versions Cisco NX-OS System Software versions 7.1 through 7.3

Description A vulnerability in the CLI could allow an authenticated, local attacker to perform a command injection attack due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting crafted command arguments into a vulnerable CLI command, potentially allowing them to read or write arbitrary files at the user's privilege level outside of the user's path.

Recommendations For versions 7.1 through 7.3, update to a fixed version to resolve the issue. As a temporary workaround, consider restricting the use of the vulnerable CLI commands to minimize the risk of exploitation. Avoid using crafted command arguments in CLI commands until the issue is resolved.