VYPR

Nexus 9000 Series Fabric Switches in ACI mode

by Cisco Systems, Inc.

CVEs (37)

  • CVE-2019-1617HigMar 11, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to an incorrect…

  • CVE-2019-1594HigMar 6, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication…

  • CVE-2019-1836HigMay 3, 2019
    risk 0.46cvss 7.1epss 0.00

    A vulnerability in the system shell for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to use symbolic links to overwrite system files. These system files may be sensitive and should not be…

  • CVE-2026-20171MedMay 20, 2026
    risk 0.44cvss 6.8epss 0.00

    A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a…

  • CVE-2019-1977MedAug 30, 2019
    risk 0.44cvss 6.8epss 0.01

    A vulnerability within the Endpoint Learning feature of Cisco Nexus 9000 Series Switches running in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an endpoint device in certain…

  • CVE-2019-1803MedMay 3, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the filesystem management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker with administrator rights to gain elevated privileges as the root user on an affected device.…

  • CVE-2019-1615MedMar 11, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability is due to improper verification of…

  • CVE-2019-1613MedMar 11, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI…

  • CVE-2019-1611MedMar 11, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the CLI of Cisco NX-OS Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed…

  • CVE-2019-1609MedMar 8, 2019
    risk 0.44cvss 6.7epss 0.01

    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI…

  • CVE-2019-1585MedMar 6, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local attacker to escalate standard users with root privilege on an affected device. The vulnerability is due to a misconfiguration of…

  • CVE-2025-20290MedAug 27, 2025
    risk 0.36cvss 5.5epss 0.00

    A vulnerability in the logging feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches, Cisco Nexus 9000 Series Switches in standalone NX-OS mode, Cisco UCS 6400 Fabric Interconnects, Cisco UCS 6500 Series Fabric Interconnects, and Cisco UCS 9108 100G Fabric…

  • CVE-2025-20161MedFeb 26, 2025
    risk 0.33cvss 5.1epss 0.00

    A vulnerability in the software upgrade process of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker with valid Administrator credentials to execute a command injection attack on the…

  • CVE-2019-1589MedMay 3, 2019
    risk 0.30cvss 4.6epss 0.00

    A vulnerability in the Trusted Platform Module (TPM) functionality of software for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, local attacker with physical access to view sensitive information on an…

  • CVE-2021-1583MedAug 25, 2021
    risk 0.29cvss 4.4epss 0.00

    A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is…

  • CVE-2019-1588MedMar 6, 2019
    risk 0.29cvss 4.4epss 0.00

    A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running in Application-Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affected device. The vulnerability is due to a lack of proper input and validation…

  • CVE-2019-1612MedMar 11, 2019
    risk 0.27cvss 4.2epss 0.00

    A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI…

Page 2 of 2