Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuq77485.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/viewAlert.x?alertId=39529 | Vendor Advisory |
http://www.securityfocus.com/bid/75433 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1032735 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2015-06-27 03:59
Updated : 2016-12-29 05:31
NVD link : CVE-2015-4225
Mitre link : CVE-2015-4225
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
cisco
- nexus_93120tx
- nexus_9336pq_aci_spine
- nexus_9372px
- nexus_9504
- nexus_93128tx
- nexus_9372tx
- nexus_9516
- nexus_9508
- nx-os
- nexus_9332pq
- nexus_9396px
- nexus_9396tx