Every CVE whose affected-product data names Cisco Nx-os, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2016-1341 — CVSS 9.8 (critical): Cisco NX-OS 7.0(1)N1(1), 7.0(1)N1(3), and 7.0(4)N1(1) on Nexus 2000 Fabric Extender devices has a blank root password, which allows local…
CVE-2021-1361 — CVSS 9.8 (critical): A vulnerability in the implementation of an internal file management service for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000…
CVE-2018-0301 — CVSS 9.8 (critical): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to craft a packet to the…
CVE-2018-0310 — CVSS 9.8 (critical): A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated…
CVE-2016-1453 — CVSS 9.8 (critical): Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices…
CVE-2015-4235 — CVSS 9.0 (critical): Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3o) and 1.1 before 1.1(1j) and Nexus 9000 ACI…
CVE-2013-1180 — CVSS 9.0 (critical): Buffer overflow in the SNMP implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before 5.2(5) and 6.x before 6.1(1) and MDS…
CVE-2013-1179 — CVSS 9.0 (critical): Multiple buffer overflows in the (1) SNMP and (2) License Manager implementations in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before…
CVE-2019-1614 — CVSS 8.8 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands…
CVE-2019-1901 — CVSS 8.8 (high): A vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI)…
CVE-2018-0292 — CVSS 8.8 (high): A vulnerability in the Internet Group Management Protocol (IGMP) Snooping feature of Cisco NX-OS Software could allow an unauthenticated…
CVE-2018-0313 — CVSS 8.8 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to send a malicious packet to…
CVE-2018-0330 — CVSS 8.8 (high): A vulnerability in the NX-API management application programming interface (API) in devices running, or based on, Cisco NX-OS Software…
CVE-2022-20650 — CVSS 8.8 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands…
CVE-2021-1368 — CVSS 8.8 (high): A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an…
CVE-2018-0395 — CVSS 8.8 (high): A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an…
CVE-2018-0293 — CVSS 8.8 (high): A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI…
CVE-2020-3415 — CVSS 8.8 (high): A vulnerability in the Data Management Engine (DME) of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute…
CVE-2020-3217 — CVSS 8.8 (high): A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS…
CVE-2020-3172 — CVSS 8.8 (high): A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated…
CVE-2020-3119 — CVSS 8.8 (high): A vulnerability in the Cisco Discovery Protocol implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker…
CVE-2016-1302 — CVSS 8.8 (high): Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1.1 before 1.1(1j) and Nexus 9000 ACI…
CVE-2018-0303 — CVSS 8.8 (high): A vulnerability in the Cisco Discovery Protocol component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated…
CVE-2021-1230 — CVSS 8.6 (high): A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure…
CVE-2021-1586 — CVSS 8.6 (high): A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric…
CVE-2021-1523 — CVSS 8.6 (high): A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated…
CVE-2021-1387 — CVSS 8.6 (high): A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service…
CVE-2019-1964 — CVSS 8.6 (high): A vulnerability in the IPv6 traffic processing of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an…
CVE-2022-20623 — CVSS 8.6 (high): A vulnerability in the rate limiter for Bidirectional Forwarding Detection (BFD) traffic of Cisco NX-OS Software for Cisco Nexus 9000…
CVE-2019-1597 — CVSS 8.6 (high): Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco…
CVE-2020-3517 — CVSS 8.6 (high): A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated…
CVE-2022-20624 — CVSS 8.6 (high): A vulnerability in the Cisco Fabric Services over IP (CFSoIP) feature of Cisco NX-OS Software could allow an unauthenticated, remote…
CVE-2019-1616 — CVSS 8.6 (high): A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a…
CVE-2024-20321 — CVSS 8.6 (high): A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated…
CVE-2024-20267 — CVSS 8.6 (high): A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the…
CVE-2020-3398 — CVSS 8.6 (high): A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an…
CVE-2020-3397 — CVSS 8.6 (high): A vulnerability in the Border Gateway Protocol (BGP) Multicast VPN (MVPN) implementation of Cisco NX-OS Software could allow an…
CVE-2017-3883 — CVSS 8.6 (high): A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating System…
CVE-2020-3228 — CVSS 8.6 (high): A vulnerability in Security Group Tag Exchange Protocol (SXP) in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software could…
CVE-2019-1962 — CVSS 8.6 (high): A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause…
CVE-2020-3175 — CVSS 8.6 (high): A vulnerability in the resource handling system of Cisco NX-OS Software for Cisco MDS 9000 Series Multilayer Switches could allow an…
CVE-2019-1598 — CVSS 8.6 (high): Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco…
CVE-2019-1858 — CVSS 8.6 (high): A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software…
CVE-2019-1599 — CVSS 8.6 (high): A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service…
CVE-2018-0378 — CVSS 8.6 (high): A vulnerability in the Precision Time Protocol (PTP) feature of Cisco Nexus 5500, 5600, and 6000 Series Switches running Cisco NX-OS…
CVE-2021-1588 — CVSS 8.6 (high): A vulnerability in the MPLS Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software could allow an…
CVE-2021-1587 — CVSS 8.6 (high): A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software, known as NGOAM, could allow…
CVE-2013-1178 — CVSS 8.3 (high): Multiple buffer overflows in the Cisco Discovery Protocol (CDP) implementation in Cisco NX-OS on Nexus 7000 devices 4.x and 5.x before…
CVE-2020-3165 — CVSS 8.2 (high): A vulnerability in the implementation of Border Gateway Protocol (BGP) Message Digest 5 (MD5) authentication in Cisco NX-OS Software could…
CVE-2021-1227 — CVSS 8.1 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to conduct a cross-site…
CVE-2019-1590 — CVSS 8.1 (high): A vulnerability in the Transport Layer Security (TLS) certificate validation functionality of Cisco Nexus 9000 Series Application Centric…
CVE-2015-0721 — CVSS 8.0 (high): Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000…
CVE-2015-0658 — CVSS 7.9 (high): The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization…
CVE-2011-4023 — CVSS 7.8 (high): Memory leak in libcmd in Cisco NX-OS 5.0 on Nexus switches allows remote authenticated users to cause a denial of service (memory…
CVE-2012-0352 — CVSS 7.8 (high): Cisco NX-OS 4.2.x before 4.2(1)SV1(5.1) on Nexus 1000v series switches; 4.x and 5.0.x before 5.0(2)N1(1) on Nexus 5000 series switches; and…
CVE-2012-2469 — CVSS 7.8 (high): Cisco NX-OS 4.2, 5.0, 5.1, and 5.2 on Nexus 7000 series switches, when the High Availability (HA) policy is configured for Reset, allows…
CVE-2013-1181 — CVSS 7.8 (high): Cisco NX-OS on Nexus 5500 devices 4.x and 5.x before 5.0(3)N2(2), Nexus 3000 devices 5.x before 5.0(3)U3(2), and Unified Computing System…
CVE-2020-3394 — CVSS 7.8 (high): A vulnerability in the Enable Secret feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS…
CVE-2019-1966 — CVSS 7.8 (high): A vulnerability in a specific CLI command within the local management (local-mgmt) context for Cisco UCS Fabric Interconnect Software could…
CVE-2014-2201 — CVSS 7.8 (high): The Message Transfer Service (MTS) in Cisco NX-OS before 6.2(7) on MDS 9000 devices and 6.0 before 6.0(2) on Nexus 7000 devices allows…
CVE-2009-0627 — CVSS 7.8 (high): Unspecified vulnerability in Cisco NX-OS before 4.0(1a)N2(1), when running on Nexus 5000 platforms, allows remote attackers to cause a…
CVE-2019-1735 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands with elevated…
CVE-2019-1726 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to access internal services that should be…
CVE-2019-1618 — CVSS 7.8 (high): A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an…
CVE-2019-1606 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1605 — CVSS 7.8 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary code as…
CVE-2019-1604 — CVSS 7.8 (high): A vulnerability in the user account management interface of Cisco NX-OS Software could allow an authenticated, local attacker to gain…
CVE-2019-1603 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to escalate lower-level privileges to the…
CVE-2019-1602 — CVSS 7.8 (high): A vulnerability in the filesystem permissions of Cisco NX-OS Software could allow an authenticated, local attacker to access sensitive data…
CVE-2019-1601 — CVSS 7.8 (high): A vulnerability in the filesystem permissions of Cisco NX-OS Software could allow an authenticated, local attacker to gain read and write…
CVE-2019-1596 — CVSS 7.8 (high): A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their…
CVE-2019-1593 — CVSS 7.8 (high): A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their…
CVE-2019-1592 — CVSS 7.8 (high): A vulnerability in the background operations functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch…
CVE-2019-1591 — CVSS 7.8 (high): A vulnerability in a specific CLI command implementation of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated…
CVE-2019-12717 — CVSS 7.8 (high): A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco NX-OS Software could allow an authenticated, local…
CVE-2018-0337 — CVSS 7.8 (high): A vulnerability in the role-based access-checking mechanisms of Cisco NX-OS Software could allow an authenticated, local attacker to…
CVE-2018-0307 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an…
CVE-2018-0306 — CVSS 7.8 (high): A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection…
CVE-2018-0302 — CVSS 7.8 (high): A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS Fabric Interconnect Software could allow an authenticated, local…
CVE-2017-6649 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an…
CVE-2017-6650 — CVSS 7.8 (high): A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow…
CVE-2019-1963 — CVSS 7.7 (high): A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software…
CVE-2019-1965 — CVSS 7.7 (high): A vulnerability in the Virtual Shell (VSH) session management for Cisco NX-OS Software could allow an authenticated, remote attacker to…
CVE-2018-0456 — CVSS 7.7 (high): A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an…
CVE-2018-0309 — CVSS 7.7 (high): A vulnerability in the implementation of a specific CLI command and the associated Simple Network Management Protocol (SNMP) MIB for Cisco…
CVE-2014-3261 — CVSS 7.6 (high): Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 before…
CVE-2018-0298 — CVSS 7.5 (high): A vulnerability in the web UI of Cisco FXOS and Cisco UCS Fabric Interconnect Software could allow an unauthenticated, remote attacker to…
CVE-2016-1351 — CVSS 7.5 (high): The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to…
CVE-2016-1409 — CVSS 7.5 (high): The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and…
CVE-2020-3338 — CVSS 7.5 (high): A vulnerability in the Protocol Independent Multicast (PIM) feature for IPv6 networks (PIM6) of Cisco NX-OS Software could allow an…
CVE-2016-1455 — CVSS 7.5 (high): Cisco NX-OS before 7.0(3)I2(2e) and 7.0(3)I4 before 7.0(3)I4(1) has an incorrect iptables local-interface configuration, which allows…
CVE-2018-0295 — CVSS 7.5 (high): A vulnerability in the Border Gateway Protocol (BGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker…
CVE-2018-0372 — CVSS 7.5 (high): A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could…
CVE-2015-0718 — CVSS 7.5 (high): Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows…
CVE-2018-0090 — CVSS 7.5 (high): A vulnerability in management interface access control list (ACL) configuration of Cisco NX-OS System Software could allow an…
CVE-2018-0311 — CVSS 7.5 (high): A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated…
CVE-2015-6392 — CVSS 7.5 (high): Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote…
CVE-2015-6393 — CVSS 7.5 (high): Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows…
CVE-2019-1967 — CVSS 7.5 (high): A vulnerability in the Network Time Protocol (NTP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause…
CVE-2019-1968 — CVSS 7.5 (high): A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system…
CVE-2020-3168 — CVSS 7.5 (high): A vulnerability in the Secure Login Enhancements capability of Cisco Nexus 1000V Switch for VMware vSphere could allow an unauthenticated…
CVE-2019-1595 — CVSS 7.4 (high): A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated…
CVE-2019-1594 — CVSS 7.4 (high): A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial…
CVE-2023-20185 — CVSS 7.4 (high): A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow…
CVE-2023-20089 — CVSS 7.4 (high): A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric…
CVE-2018-0102 — CVSS 7.4 (high): A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected…
CVE-2021-1228 — CVSS 7.4 (high): A vulnerability in the fabric infrastructure VLAN connection establishment of Cisco Nexus 9000 Series Fabric Switches in Application…
CVE-2021-34714 — CVSS 7.4 (high): A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Software…
CVE-2023-20169 — CVSS 7.4 (high): A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS Software for the Cisco Nexus 3000 Series…
CVE-2019-1617 — CVSS 7.4 (high): A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could…
CVE-2012-4075 — CVSS 7.2 (high): Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in unspecified command…
CVE-2015-4234 — CVSS 7.2 (high): Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via…
CVE-2020-3454 — CVSS 7.2 (high): A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote attacker to inject arbitrary commands…
CVE-2019-1836 — CVSS 7.1 (high): A vulnerability in the system shell for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could…
CVE-2013-1191 — CVSS 7.1 (high): Cisco NX-OS 6.1 before 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated…
CVE-2014-2200 — CVSS 7.1 (high): Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated…
CVE-2018-0092 — CVSS 7.1 (high): A vulnerability in the network-operator user role implementation for Cisco NX-OS System Software could allow an authenticated, local…
CVE-2023-20168 — CVSS 7.1 (high): A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow an unauthenticated, local attacker to…
CVE-2015-4301 — CVSS 6.8 (medium): Cisco NX-OS on Nexus 9000 devices 11.1(1c) allows remote authenticated users to cause a denial of service (device hang) via large files…
CVE-2012-4076 — CVSS 6.8 (medium): Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in a command that calls the…
CVE-2013-3400 — CVSS 6.8 (medium): The license-installation module in Cisco NX-OS on Nexus 1000V devices allows local users to execute arbitrary commands via crafted "install…
CVE-2019-1977 — CVSS 6.8 (medium): A vulnerability within the Endpoint Learning feature of Cisco Nexus 9000 Series Switches running in Application Centric Infrastructure…
CVE-2012-4121 — CVSS 6.8 (medium): Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs…
CVE-2014-0676 — CVSS 6.8 (medium): Cisco NX-OS allows local users to bypass intended TACACS+ command restrictions via a series of multiple commands, aka Bug ID CSCum47367.
CVE-2017-12342 — CVSS 6.8 (medium): A vulnerability in the Open Agent Container (OAC) feature of Cisco Nexus Series Switches could allow an unauthenticated, local attacker to…
CVE-2012-4077 — CVSS 6.8 (medium): Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via the sed e option, aka Bug IDs CSCtf25457 and…
CVE-2011-2569 — CVSS 6.8 (medium): Cisco Nexus OS (aka NX-OS) 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly restrict command-line…
CVE-2019-1813 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1812 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2017-12334 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection…
CVE-2017-12333 — CVSS 6.7 (medium): A vulnerability in Cisco NX-OS System Software could allow an authenticated, local attacker to bypass signature verification when loading a…
CVE-2019-12662 — CVSS 6.7 (medium): A vulnerability in Cisco NX-OS Software and Cisco IOS XE Software could allow an authenticated, local attacker with valid administrator or…
CVE-2019-1811 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1585 — CVSS 6.7 (medium): A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an…
CVE-2019-1810 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series…
CVE-2019-1809 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1795 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute…
CVE-2017-12331 — CVSS 6.7 (medium): A vulnerability in Cisco NX-OS System Software could allow an authenticated, local attacker to bypass signature verification when loading a…
CVE-2019-1791 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute…
CVE-2019-1790 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with valid administrator credentials to…
CVE-2017-12301 — CVSS 6.7 (medium): A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python…
CVE-2019-1784 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1783 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute…
CVE-2019-1782 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute…
CVE-2019-1781 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute…
CVE-2019-1780 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator…
CVE-2019-1779 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute…
CVE-2019-1778 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1769 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute…
CVE-2019-1768 — CVSS 6.7 (medium): A vulnerability in the implementation of a specific CLI command for Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1767 — CVSS 6.7 (medium): A vulnerability in the implementation of a specific CLI command for Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1730 — CVSS 6.7 (medium): A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the…
CVE-2019-1649 — CVSS 6.7 (medium): A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot…
CVE-2019-1728 — CVSS 6.7 (medium): A vulnerability in the Secure Configuration Validation functionality of Cisco FXOS Software and Cisco NX-OS Software could allow an…
CVE-2019-1727 — CVSS 6.7 (medium): A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python…
CVE-2017-12341 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection…
CVE-2018-0294 — CVSS 6.7 (medium): A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to…
CVE-2019-1615 — CVSS 6.7 (medium): A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2019-1776 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1775 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1607 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1608 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1609 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1610 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1611 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software and Cisco FXOS Software could allow an authenticated, local attacker to execute…
CVE-2019-1774 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2019-1613 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the…
CVE-2024-20294 — CVSS 6.6 (medium): A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an…
CVE-2018-0291 — CVSS 6.5 (medium): A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an…
CVE-2018-0299 — CVSS 6.5 (medium): A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco NX-OS on the Cisco Nexus 4000 Series Switch could allow…
CVE-2017-6655 — CVSS 6.5 (medium): A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated…
CVE-2018-0331 — CVSS 6.5 (medium): A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Software…
CVE-2016-6457 — CVSS 6.5 (medium): A vulnerability in the Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure (ACI) could allow an…
CVE-2016-1465 — CVSS 6.5 (medium): Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi…
CVE-2016-1454 — CVSS 6.5 (medium): Cisco NX-OS 4.0 through 7.3 and 11.0 through 11.2 on 1000v, 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows…
CVE-2020-3120 — CVSS 6.5 (medium): A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software…
CVE-2019-1732 — CVSS 6.4 (medium): A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow an authenticated, local attacker with…
CVE-2013-5496 — CVSS 6.3 (medium): Open Network Environment Platform (ONEP) in Cisco NX-OS allows remote authenticated users to cause a denial of service (network-element…
CVE-2015-0686 — CVSS 6.3 (medium): The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000 devices, when a Reset High Availability (HA) policy is configured, allows…
CVE-2017-12329 — CVSS 6.3 (medium): A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated…
CVE-2017-12335 — CVSS 6.3 (medium): A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection…
CVE-2017-12330 — CVSS 6.3 (medium): A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection…
CVE-2012-4141 — CVSS 6.2 (medium): Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative…
CVE-2012-4122 — CVSS 6.2 (medium): The CLI parser in Cisco NX-OS allows local users to bypass intended access restrictions, and overwrite or create arbitrary files, via shell…
CVE-2015-6277 — CVSS 6.1 (medium): The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus…
CVE-2015-4197 — CVSS 6.1 (medium): Cisco NX-OS 5.2(5) on Nexus 7000 devices allows remote attackers to cause a denial of service (device crash) by sending a malformed LLDP…
CVE-2012-3051 — CVSS 6.1 (medium): Cisco NX-OS 5.2 and 6.1 on Nexus 7000 series switches allows remote attackers to cause a denial of service (process crash or packet loss)…
CVE-2017-3804 — CVSS 6.1 (medium): A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series…
CVE-2015-4323 — CVSS 6.1 (medium): Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 devices 6.0(2)U5(1.41), 7.0(3)I2(0.373)…
CVE-2015-4324 — CVSS 6.1 (medium): Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000…
CVE-2013-1226 — CVSS 6.1 (medium): The Ethernet frame-forwarding implementation in Cisco NX-OS on Nexus 7000 devices allows remote attackers to cause a denial of service…
CVE-2013-6683 — CVSS 6.1 (medium): The IPv6 implementation in Cisco NX-OS does not properly handle neighbor-table adjacencies, which allows remote attackers to cause a denial…
CVE-2019-1729 — CVSS 6.0 (medium): A vulnerability in the CLI implementation of a specific command used for image maintenance for Cisco NX-OS Software could allow an…
CVE-2021-1584 — CVSS 6.0 (medium): A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated…
CVE-2017-12338 — CVSS 6.0 (medium): A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary…
CVE-2011-4667 — CVSS 5.9 (medium): The encryption library in Cisco IOS Software 15.2(1)T, 15.2(1)T1, and 15.2(2)T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch…
CVE-2013-1212 — CVSS 5.8 (medium): The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle…
CVE-2013-0149 — CVSS 5.8 (medium): The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM…