Information disclosure in Cisco Nexus 9000 Series Switches
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2016-1455 |
| CWE-ID | CWE-200 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Cisco Nexus 9000 Series Switches Hardware solutions / Routers & switches, VoIP, GSM, etc |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Information disclosure
EUVDB-ID: #VU779
Risk: Low
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2016-1455
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote unauthenticared user to potentially sensitive information.
The weakness is caused by insufficient access control. By connecting to TCP or UDP ports on the target system attackers can cause iptables configuration flaw that may lets to access important files.
Successful exploitation of the vulnerability results in information disclosure on the vulnerable system.
Update to version 7.0(3)I2(2e) or 7.0(3)I4(1).
Vulnerable software versionsCisco Nexus 9000 Series Switches: 4.0.179 - 7.0.3 I1.1
CPE2.3- cpe:2.3:h:cisco_systems:cisco_nexus_9000_series_switches:4.0.179:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_nexus_9000_series_switches:6.1.2 I1.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_nexus_9000_series_switches:6.1.2 I2.2a:*:*:*:*:*:*:*
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-n9kinfo
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
