CVE-2019-1734

Name of the Vulnerable Software and Affected Versions Cisco FXOS Software (affected versions not specified) Cisco NX-OS Software (affected versions not specified)

Description The issue is related to incomplete role-based access control (RBAC) verification in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software. This could allow an authenticated, local attacker to view sensitive system files that should be restricted, potentially leading to additional reconnaissance attacks. The attacker needs valid device credentials to exploit this vulnerability. The vulnerability can be exploited by issuing a specific CLI diagnostic command with crafted user-input parameters.

Recommendations For Cisco FXOS Software, update to a version that includes the fix for this issue. For Cisco NX-OS Software, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the CLI diagnostic command until a patch is available. Avoid using crafted user-input parameters in the affected CLI diagnostic command until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.