Vulnerability Description
Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887, CSCur00115, and CSCur00127.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nx-Os | 6.0\(2\) |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39571Vendor Advisory
- http://www.securityfocus.com/bid/75502Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032765Third Party AdvisoryVDB Entry
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39571Vendor Advisory
- http://www.securityfocus.com/bid/75502Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032765Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-4234?
CVE-2015-4234 is a vulnerability with a CVSS score of 7.2 (HIGH). Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887,...
How severe is CVE-2015-4234?
CVE-2015-4234 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4234?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os.