A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient restrictions during the execution of a specific CLI command. An attacker with administrative privileges could exploit this vulnerability by performing a command injection attack on the vulnerable command. A successful exploit could allow the attacker to access the underlying operating system as root.
History

Thu, 07 Nov 2024 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2021-08-25T19:10:53.827427Z

Updated: 2024-11-07T22:02:38.495Z

Reserved: 2020-11-13T00:00:00

Link: CVE-2021-1584

cve-icon Vulnrichment

Updated: 2024-08-03T16:18:10.142Z

cve-icon NVD

Status : Modified

Published: 2021-08-25T20:15:11.177

Modified: 2024-11-21T05:44:40.663

Link: CVE-2021-1584

cve-icon Redhat

No data.