Vulnerability in Cisco Nexus_93120tx

CVE-2015-4225

Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecifie…

EPSS: 0.003 (51.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-264

References

75433 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
20150626 Cisco Application Policy Infrastructure Controller Unauthorized Access Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1032735 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)