漏洞类别:Cisco
漏洞等级: 
漏洞信息
A vulnerability in the CLI of Cisco NX-OS System Software running on Cisco Nexus 5000 Series Switches could allow an authenticated, local attacker to perform a command injection attack.
The vulnerability is due to insufficient input validation of command arguments.
漏洞危害
An attacker could exploit this vulnerability by injecting crafted command arguments into a vulnerable CLI command. An exploit could allow the attacker to read or write arbitrary files at the users privilege level outside of the user s path.
解决方案
Refer to Cisco advisory cisco-sa-20170517-nss for updates and patch information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论