Vulnerability in Cisco Nexus_7000

CVE-2015-4231

The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416.

EPSS: 0.001 (29.4th percentile) — read the EPSS interpretation.

Affected products

Cisco Nexus_7000
Cisco Nexus_7700
Cisco Nx-os — versions 6.2\(8a\)
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

1032763 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
20150630 Cisco Nexus 7000 Devices Virtual Device Context Privilege Escalation Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)