1. Home
  2. CVE Database
  3. CVE-2015-0721
HIGH · 8.0

CVE-2015-0721

Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AA...

Vulnerability Description

Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection negotiation, aka Bug IDs CSCum35502, CSCuw78669, CSCuw79754, and CSCux88492.

CVSS Score

8.0

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
CiscoNx-Os4.1.\(2\)
CiscoNexus 7000 10-Slot-
CiscoNexus 7000 18-Slot-
CiscoNexus 7000 4-Slot-
CiscoNexus 7000 9-Slot-
CiscoNexus 7700 10-Slot-
CiscoNexus 7700 18-Slot-
CiscoNexus 7700 2-Slot-
CiscoNexus 7700 6-Slot-
CiscoNexus 4001I-
CiscoNexus 5010-
CiscoNexus 5020-
CiscoNexus 5548P-
CiscoNexus 5548Up-
CiscoNexus 5596T-
CiscoNexus 5596Up-
CiscoNexus 56128P-
CiscoNexus 5624Q-
CiscoNexus 5648Q-
CiscoNexus 5672Up-

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2015-0721?

CVE-2015-0721 is a vulnerability with a CVSS score of 8.0 (HIGH). Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AA...

How severe is CVE-2015-0721?

CVE-2015-0721 has been rated HIGH with a CVSS base score of 8.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-0721?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 7000 10-Slot, Cisco Nexus 7000 18-Slot, Cisco Nexus 7000 4-Slot, Cisco Nexus 7000 9-Slot.