Cisco NX-OS Software NX-API Arbitrary Code Execution Vulnerability

high Nessus Plugin ID 132318

Synopsis

The remote device is missing a vendor-supplied security patch

Description

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability in the NX-API feature of Cisco NX-OS Software that could allow an authenticated, local attacker to execute arbitrary code as root. The vulnerability is due to incorrect input validation in the NX-API feature. An attacker could exploit this vulnerability by sending a crafted HTTP or HTTPS request to an internal service on an affected device that has the NX-API feature enabled. A successful exploit could allow the attacker to cause a buffer overflow and execute arbitrary code as root.
Note: The NX-API feature is disabled by default.

Please see the included Cisco BIDs and Cisco Security Advisory for more information

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCvh77526, CSCvi99224, CSCvi99225, CSCvi99227, and CSCvi99228

See Also

http://www.nessus.org/u?4326b1dc

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-70757

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvh77526

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi99224

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi99225

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi99227

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi99228

Plugin Details

Severity: High

ID: 132318

File Name: cisco-sa-20190306-nx-os-api-ex.nasl

Version: 1.7

Type: combined

Family: CISCO

Published: 12/20/2019

Updated: 4/2/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2019-1605

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 7.2

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:nx-os

Required KB Items: Host/Cisco/NX-OS/Version, Host/Cisco/NX-OS/Model, Host/Cisco/NX-OS/Device

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/6/2019

Vulnerability Publication Date: 3/6/2019

Reference Information

CVE: CVE-2019-1605

BID: 107313