Preview Tool

Cisco Bug: CSCuo01637 - Nexus5k : Network-operator role can view sensitive configuration

Last Modified

Nov 27, 2020

Products (2)

  • CiscoPro Workgroup EtherSwitch Software
  • CiscoPro Workgroup EtherSwitch Software

Known Affected Releases


Description (partial)


Cisco Nexus devices contain an information disclosure issue that could allow an authenticated, local attacker to gain access to sensitive information.  
The affected devices do not perform sufficient sanitization of configuration files when they are viewed by a user that has been assigned the Network-
Operator role.  This could allow an attacker to gain access to the password hashes of locally configured users.


Cisco Nexus devices running an affected version of NXOS software.

Related Community Discussions

Nexus5000/6000シリーズ:network-operator権限でshow running-config/startup-configが実行できない
2016年4月26日(初版) ----年--月--日(アップデート) TAC SR Collection 主な問題 NX-OSを7.0(7)N1(1)にアップグレードしたところ、network-operator権限で以前のバージョンでは実行できていた show running-config,show startup-configが実行できなくなりました。 | switch# show running-config % Permission denied for the role switch# switch# show startup-config % Permission denied for the role switch# 原因 Nexus 5000/6000シリーズの7.0(7)N1(1) | 以降では以下の影響での実装変更により、 network-operator権限でshow runnning-config,show startup-configを実行することができません。 | <key>CSCuo01637</key> Nexus5k : Network-operator role can view ...
Latest activity: Apr 26, 2016
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.