The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and 9.1(1)SV1(3.1.8) on Nexus devices allows local users to execute arbitrary OS commands via crafted characters in a filename, aka Bug IDs CSCuv08491, CSCuv08443, CSCuv08480, CSCuv08448, CSCuu99291, CSCuv08434, and CSCuv08436.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2015-07-03T10:00:00

Updated: 2024-08-06T06:11:12.442Z

Reserved: 2015-06-04T00:00:00

Link: CVE-2015-4237

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2015-07-03T10:59:03.060

Modified: 2016-12-28T17:07:15.240

Link: CVE-2015-4237

cve-icon Redhat

No data.