PT-2015-2233 · Cisco · Cisco Nx-Os

Published

2015-06-24

Updated

2016-12-28

CVE-2015-4213

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco NX-OS version 1.1(1g)

Description The issue is related to a lack of protection for internal data in the network operating system, which can be exploited by a remote authenticated attacker to gain access to user passwords in cleartext.

Recommendations For Cisco NX-OS version 1.1(1g), consider restricting access to the system until a patch is available to prevent exploitation. As a temporary workaround, limit the privileges of authenticated users to minimize the risk of password exposure.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2015-11579

CVE-2015-4213

Affected Products

Cisco Nx-Os

PT-2015-2233 · Cisco · Cisco Nx-Os

CVE-2015-4213

Weakness Enumeration

Related Identifiers

Affected Products

References · 5