The management interface in Cisco NX-OS on Nexus 7000 devices allows remote authenticated users to obtain sensitive configuration-file information by leveraging the network-operator role, aka Bug ID CSCti09089.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4090 | Vendor Advisory |
http://osvdb.org/98123 | |
http://www.securitytracker.com/id/1029158 | Third Party Advisory VDB Entry |
http://secunia.com/advisories/55206 | |
http://www.securityfocus.com/bid/62841 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/87670 |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2013-10-05 03:55
Updated : 2017-08-28 18:32
NVD link : CVE-2012-4090
Mitre link : CVE-2012-4090
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
cisco
- nexus_7000_9-slot
- nexus_7000_18-slot
- nexus_7000
- nexus_7000_10-slot
- nx-os