cvelistv5 - cve-2015-0721

CVE-2015-0721 (GCVE-0-2015-0721)

Vulnerability from cvelistv5

Published

2016-10-06 10:00

Modified

2024-08-06 04:17

Severity ?

CWE

Summary

Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection negotiation, aka Bug IDs CSCum35502, CSCuw78669, CSCuw79754, and CSCux88492.

References

URL

Tags

	http://www.securityfocus.com/bid/93410	vdb-entry, x_refsource_BID
	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa	vendor-advisory, x_refsource_CISCO
	http://www.securitytracker.com/id/1036947	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:17:32.743Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "93410",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/93410"
          },
          {
            "name": "20161005 Cisco NX-OS Software-Based Products Authentication, Authorization, and Accounting Bypass Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa"
          },
          {
            "name": "1036947",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1036947"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-10-05T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection negotiation, aka Bug IDs CSCum35502, CSCuw78669, CSCuw79754, and CSCux88492."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-29T09:57:01.000Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "93410",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/93410"
        },
        {
          "name": "20161005 Cisco NX-OS Software-Based Products Authentication, Authorization, and Accounting Bypass Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa"
        },
        {
          "name": "1036947",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1036947"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2015-0721",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection negotiation, aka Bug IDs CSCum35502, CSCuw78669, CSCuw79754, and CSCux88492."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "93410",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/93410"
            },
            {
              "name": "20161005 Cisco NX-OS Software-Based Products Authentication, Authorization, and Accounting Bypass Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa"
            },
            {
              "name": "1036947",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1036947"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2015-0721",
    "datePublished": "2016-10-06T10:00:00.000Z",
    "dateReserved": "2015-01-07T00:00:00.000Z",
    "dateUpdated": "2024-08-06T04:17:32.743Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTFR-2016-AVI-331

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

De multiples produits sont impactés. Se référer au bulletin de l'éditeur pour la liste exhaustive des produits.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco cisco-sa-20161005-ios-ikev du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-bgp du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-nxaaa du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ucis3 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-chs du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-dhcp2 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-asa-dhcp du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-catalyst du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc2 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ucis1 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-n9kinfo du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-dhcp1 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc1 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-otv du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-iosxr du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ucis2 du 05 octobre 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20161005-ucis1 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ios-ikev du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-chs du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-dhcp2 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ucis2 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-dhcp1 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-n9kinfo du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-catalyst du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc2 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-bgp du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-iosxr du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-otv du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ucis3 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-asa-dhcp du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc1 du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-nxaaa du 05 octobre 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20161005-ftmc du 05 octobre 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eDe multiples produits sont impact\u00e9s. Se r\u00e9f\u00e9rer au bulletin de  l\u0027\u00e9diteur pour la liste exhaustive des produits.\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-1454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1454"
    },
    {
      "name": "CVE-2016-1455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1455"
    },
    {
      "name": "CVE-2016-6425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6425"
    },
    {
      "name": "CVE-2016-6433",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6433"
    },
    {
      "name": "CVE-2016-6422",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6422"
    },
    {
      "name": "CVE-2016-6434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6434"
    },
    {
      "name": "CVE-2016-6427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6427"
    },
    {
      "name": "CVE-2016-6426",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6426"
    },
    {
      "name": "CVE-2016-6423",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6423"
    },
    {
      "name": "CVE-2015-0721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-0721"
    },
    {
      "name": "CVE-2016-6428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6428"
    },
    {
      "name": "CVE-2015-6393",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-6393"
    },
    {
      "name": "CVE-2016-1453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1453"
    },
    {
      "name": "CVE-2016-6435",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6435"
    },
    {
      "name": "CVE-2016-6436",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6436"
    },
    {
      "name": "CVE-2015-6392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-6392"
    },
    {
      "name": "CVE-2016-6424",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6424"
    }
  ],
  "initial_release_date": "2016-10-06T00:00:00",
  "last_revision_date": "2016-10-06T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis1 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ucis1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ios-ikev du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ios-ikev"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-chs du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-chs"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-dhcp2 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis2 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ucis2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-dhcp1 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-n9kinfo du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-n9kinfo"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-catalyst du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-catalyst"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc2 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ftmc2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-bgp du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-bgp"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-iosxr du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-iosxr"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-otv du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-otv"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis3 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ucis3"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-asa-dhcp du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-asa-dhcp"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc1 du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ftmc1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-nxaaa du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc du 05    octobre 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-ftmc"
    }
  ],
  "reference": "CERTFR-2016-AVI-331",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-10-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eCisco\u003c/span\u003e. Certaines d\u0027entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ios-ikev du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-bgp du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-nxaaa du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis3 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-chs du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-dhcp2 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-asa-dhcp du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-catalyst du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc2 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis1 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-n9kinfo du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-dhcp1 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ftmc1 du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-otv du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-iosxr du 05 octobre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161005-ucis2 du 05 octobre 2016",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2015-0721 (GCVE-0-2015-0721)

Vulnerability from cvelistv5

CERTFR-2016-AVI-331

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature