VYPR

NX-OS Software

by Cisco Systems, Inc.

CVEs (136)

  • CVE-2025-20241HigAug 27, 2025
    risk 0.48cvss 7.4epss 0.00

    A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS…

  • CVE-2025-20191HigMay 7, 2025
    risk 0.48cvss 7.4epss 0.00

    A vulnerability in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS)…

  • CVE-2023-20169HigAug 23, 2023
    risk 0.48cvss 7.4epss 0.00

    A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS Software for the Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS…

  • CVE-2021-34714HigSep 23, 2021
    risk 0.48cvss 7.4epss 0.00

    A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. This…

  • CVE-2019-1617HigMar 11, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to an incorrect…

  • CVE-2019-1595HigMar 6, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an incorrect allocation of…

  • CVE-2019-1594HigMar 6, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication…

  • CVE-2018-0102HigJan 18, 2018
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software attempts to free the same…

  • CVE-2020-3454HigAug 27, 2020
    risk 0.47cvss 7.2epss 0.03

    A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges on the underlying operating system (OS). The vulnerability is due to insufficient input…

  • CVE-2023-20168HigAug 23, 2023
    risk 0.46cvss 7.1epss 0.00

    A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow an unauthenticated, local attacker to cause an affected device to unexpectedly reload. This vulnerability is due to incorrect input validation when processing an authentication…

  • CVE-2024-20413MedAug 28, 2024
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with privileges to access the Bash shell to elevate privileges to network-admin on an affected device. This vulnerability is due to insufficient security restrictions when executing…

  • CVE-2024-20411MedAug 28, 2024
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with privileges to access the Bash shell to execute arbitrary code as root on an affected device. This vulnerability is due to insufficient security restrictions when executing commands…

  • CVE-2019-12662MedSep 25, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in Cisco NX-OS Software and Cisco IOS XE Software could allow an authenticated, local attacker with valid administrator or privilege level 15 credentials to load a virtual service image and bypass signature verification on an affected device. The vulnerability is…

  • CVE-2019-1780MedMay 16, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying operating system of an affected device with elevated privileges. The…

  • CVE-2019-1768MedMay 16, 2019
    risk 0.44cvss 6.7epss 0.01

    A vulnerability in the implementation of a specific CLI command for Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to cause a buffer overflow condition or perform command injection. This could allow the attacker to execute…

  • CVE-2019-1813MedMay 15, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital…

  • CVE-2019-1812MedMay 15, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital…

  • CVE-2019-1811MedMay 15, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital…

  • CVE-2019-1810MedMay 15, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected…

  • CVE-2019-1809MedMay 15, 2019
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software patch on an affected device. The vulnerability is due to improper verification of…

Page 4 of 7