Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1612)
Description
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker could exploit this vulnerability by including malicious input as the argument of an affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with elevated privileges. An attacker would need valid administrator credentials to exploit this vulnerability. Nexus 3000 Series Switches are affected running software versions prior to 7.0(3)I4(9) and 7.0(3)I7(4). Nexus 3500 Platform Switches are affected running software versions prior to 7.0(3)I7(4). Nexus 3600 Platform Switches are affected running software versions prior to 7.0(3)F3(5). Nexus 9000 Series Switches in Stand are affected running software versions prior to 7.0(3)F3(5).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco NX-OS CLI command injection vulnerability allows authenticated local admin to execute arbitrary commands on underlying OS.
Vulnerability
A command injection vulnerability exists in the CLI of Cisco NX-OS Software. The issue is due to insufficient validation of arguments passed to certain CLI commands. An authenticated, local attacker with administrator credentials can exploit this by including malicious input as the argument of an affected command. Affected products include Nexus 3000 Series (prior to 7.0(3)I4(9) and 7.0(3)I7(4)), Nexus 3500 Platform (prior to 7.0(3)I7(4)), Nexus 3600 Platform (prior to 7.0(3)F3(5)), and Nexus 9000 Series in Standalone mode (prior to 7.0(3)F3(5)). [1]
Exploitation
An attacker must have valid administrator credentials to access the CLI of an affected device. The attacker then issues a vulnerable CLI command with crafted input as an argument. The lack of proper input validation allows the injected commands to be executed on the underlying operating system. No user interaction beyond the attacker's own actions is required. [1]
Impact
Successful exploitation allows the attacker to execute arbitrary commands on the underlying operating system with elevated privileges. This can lead to full compromise of the device, including disclosure of sensitive information, modification of configuration, or denial of service. The attacker gains root-level access. [1]
Mitigation
Cisco has released free software updates to address this vulnerability. Fixed versions include 7.0(3)I4(9) and 7.0(3)I7(4) for Nexus 3000, 7.0(3)I7(4) for Nexus 3500, and 7.0(3)F3(5) for Nexus 3600 and Nexus 9000 Standalone. Customers should upgrade to the appropriate fixed release. No workarounds are mentioned in the advisory. [1]
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
6- Range: prior to 7.0(3)I4(9) for Nexus 3000, prior to 7.0(3)I7(4) for Nexus 3500, prior to 7.0(3)F3(5) for Nexus 3600/9000
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-cmdinj-1612mitrevendor-advisoryx_refsource_CISCO
- www.securityfocus.com/bid/107388mitrevdb-entryx_refsource_BID
News mentions
0No linked articles in our index yet.