Cisco Bug: CSCur07367 - Cisco Prime Data Center Network Manager CVE-2014-6271 and CVE-2014-7169
Sep 11, 2019
- Cisco Data Center Network Manager
Known Affected Releases
7.0(1) 7.0(2) 7.1(0)ZN(91.98) 7.1(0)ZN(91.99) 7.1(0.133) 7.2(0.1)PR(0.1) 7.2(0.1)VB(0.1)
Symptom: The following Cisco product Cisco Prime Data Center Network Manager includes a version of bash that is affected by the vulnerabilities identified by the Common Vulnerability and Exposures (CVE) IDs: CVE-2014-6271 CVE-2014-7169 This bug has been opened to address the potential impact on this product. Affected versions : DCNM 7.0(1) OVA installation and DCNM 7.0(2) OVA installation. DCNM 6.x releases are not vulnerable and are not impacted. Conditions: Can be exploited by user who is authorized to login via ssh or vCenter console, and the authorized login opens a default bash shell.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases