Guest

Preview Tool

Cisco Bug: CSCum35502 - Cisco NX-OS Software-Based Products AAA Bypass Vulnerability

Last Modified

Jul 18, 2018

Products (1)

  • Cisco Nexus 7000 Series Switches

Known Affected Releases

6.2(5)

Description (partial)

Symptoms:
A vulnerability in the SSH subsystem of the Cisco Nexus family of products could allow an authenticated, remote attacker to bypass authentication, authorization, and accounting 
(AAA) restrictions.

The vulnerability is due to the improper processing of certain parameters that are passed to an affected device during the negotiation of an SSH connection. An attacker could 
exploit this vulnerability by authenticating to an affected device and passing a malicious value as part of the login procedure. A successful exploit could allow an attacker to bypass 
AAA restrictions and execute commands on the device command-line interface (CLI) that should be restricted to a different privileged user role.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa

Conditions:
See Advisory

Related Community Discussions

<key>CSCum35502</key> Bug Vulnerable releases
Hello, I am wondering if the version 6.2.6 on N7Ks is vulnerable? According to this link, the first fixed release is 6.2.16 and hence, 6.2.6 is vulnerable: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa According to this link,  the 6.2.5 is the only affected release and 6.2.6 is not in the list of the fixed releases: https://bst.cloudapps.cisco.com/bugsearch/bug/<key>CSCum35502</key> Any clarification is much appreciated. Thanks
Latest activity: Jun 02, 2017
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.