Cisco Enterprise NFV Infrastructure Software Linux Shell Access Vulnerability
Description
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to improper input validation in the affected software. An attacker could exploit this vulnerability by sending crafted commands to the affected device. An exploit could allow the attacker to gain shell access with a nonroot user account to the underlying Linux operating system on the affected device and potentially access system configuration files with sensitive information. This vulnerability only affects console connections from CIMC. It does not apply to remote connections, such as telnet or SSH.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Authenticated local attacker can escape CLI to access underlying Linux shell on Cisco NFVIS via crafted commands, impacting console connections from CIMC.
Vulnerability
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) allows an authenticated, local attacker to access the shell of the underlying Linux operating system. The flaw is due to improper input validation in the affected software [1]. This vulnerability only affects console connections from Cisco Integrated Management Controller (CIMC) and does not apply to remote connections such as telnet or SSH. Consult the Cisco Security Advisory for affected software releases [1].
Exploitation
An attacker must have authenticated access to the device via a local console connection from CIMC. The attacker then sends crafted commands to the CLI to trigger the vulnerability [1]. No additional user interaction is required beyond authentication.
Impact
Successful exploitation allows the attacker to gain shell access with a nonroot user account to the underlying Linux operating system on the affected device. This access could potentially be used to view or modify system configuration files containing sensitive information [1]. The attacker does not gain root privileges but may escalate from the restricted CLI environment.
Mitigation
Cisco has released fixed software versions to address this vulnerability. Affected users should upgrade to a fixed release as indicated in the Cisco Security Advisory [1]. There are no workarounds available for this vulnerability.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Cisco/Cisco Enterprise NFV Infrastructure Softwarev5Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-nfvis-shell-accessmitrevendor-advisoryx_refsource_CISCO
- www.securityfocus.com/bid/106715mitrevdb-entryx_refsource_BID
News mentions
0No linked articles in our index yet.