CVE-2015-4237

Name of the Vulnerable Software and Affected Versions Cisco NX-OS versions 4.1(2)E1(1) through 9.1(1)SV1(3.1.8)

Description The issue is related to improper input validation of special characters within filenames in the CLI parser, allowing local users to execute arbitrary OS commands. This could enable an authenticated, local attacker to perform a privilege escalation. The attacker must have local access and be able to authenticate to the targeted device. The vulnerability is due to insufficient access restrictions to certain functions.

Recommendations For Cisco NX-OS version 4.1(2)E1(1), consider disabling the use of special characters in filenames as a temporary workaround until a patch is available. For Cisco NX-OS version 6.2(11b), restrict access to the CLI parser to minimize the risk of exploitation. For Cisco NX-OS version 6.2(12), avoid using the CLI commands that allow file writing to disk with special characters in filenames. For Cisco NX-OS version 7.2(0)ZZ(99.1), restrict access to the vulnerable functions to prevent privilege escalation. For Cisco NX-OS version 7.2(0)ZZ(99.3), consider implementing additional access controls to limit the possibility of a successful exploit. For Cisco NX-OS version 9.1(1)SV1(3.1.8), limit the use of the CLI parser to authenticated users only. At the moment, there is no information about a newer version that contains a fix for this vulnerability.