Vulnslist

find the latest Cisco vulnerabilities

Cisco NX-OS Software Python Sandbox Escape Vulnerabilities

cisco-sa-nxos-psbe-ce-YvbTn5du · Medium · Published · Updated

Multiple vulnerabilities in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device. These vulnerabilities are due to insufficient validation of user-supplied input. An attacker could exploit these vulnerabilities by manipulating specific functions within the Python interpreter. A successful exploit could allow an attacker to escape the Python sandbox and execute arbitrary commands on the underlying operating system with the privileges of the authenticated user.  Note: An attacker must be authenticated with Python execution privileges to exploit these vulnerabilities. For more information regarding Python execution privileges, see product-specific documentation, such as the Cisco NX-OS Security with Python section of the Cisco Nexus 9000 Series NX-OS Programmability Guide. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-psbe-ce-YvbTn5du This advisory is part of the August 2024 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: August 2024 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication.

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2024-20284, CVE-2024-20285, CVE-2024-20286
Cisco Bug IDsCSCwh77779, CSCwi52362, CSCwi52363, CSCwi52365, CSCwh77780, CSCwi52383, CSCwi52380, CSCwh77781, CSCwi52461, CSCwi52460
CVSS ScoreBase 5.3
Base 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:X/RC:X
Product Names From Source
Cisco NX-OS Software 6.0(2)A8(1), Cisco NX-OS Software 6.0(2)A8(2), Cisco NX-OS Software 6.0(2)A8(3), Cisco NX-OS Software 6.0(2)A8(4), Cisco NX-OS Software 6.0(2)A8(4a), Cisco NX-OS Software 6.0(2)A8(5), Cisco NX-OS Software 6.0(2)A8(6), Cisco NX-OS Software 6.0(2)A8(7), Cisco NX-OS Software 6.0(2)A8(7a), Cisco NX-OS Software 6.0(2)A8(7b), Cisco NX-OS Software 6.0(2)A8(8), Cisco NX-OS Software 6.0(2)A8(9), Cisco NX-OS Software 6.0(2)A8(10a), Cisco NX-OS Software 6.0(2)A8(10), Cisco NX-OS Software 6.0(2)A8(11), Cisco NX-OS Software 6.0(2)A8(11a), Cisco NX-OS Software 6.0(2)A8(11b), Cisco NX-OS Software 7.0(3)F3(1), Cisco NX-OS Software 7.0(3)F3(2), Cisco NX-OS Software 7.0(3)F3(3), Cisco NX-OS Software 7.0(3)F3(3a), Cisco NX-OS Software 7.0(3)F3(4), Cisco NX-OS Software 7.0(3)F3(3c), Cisco NX-OS Software 7.0(3)F3(5), Cisco NX-OS Software 7.0(3)I4(1), Cisco NX-OS Software 7.0(3)I4(2), Cisco NX-OS Software 7.0(3)I4(3), Cisco NX-OS Software 7.0(3)I4(4), Cisco NX-OS Software 7.0(3)I4(5), Cisco NX-OS Software 7.0(3)I4(6), Cisco NX-OS Software 7.0(3)I4(7), Cisco NX-OS Software 7.0(3)I4(8), Cisco NX-OS Software 7.0(3)I4(8a), Cisco NX-OS Software 7.0(3)I4(8b), Cisco NX-OS Software 7.0(3)I4(8z), Cisco NX-OS Software 7.0(3)I4(1t), Cisco NX-OS Software 7.0(3)I4(6t), Cisco NX-OS Software 7.0(3)I4(9), Cisco NX-OS Software 7.0(3)I5(1), Cisco NX-OS Software 7.0(3)I5(2), Cisco NX-OS Software 7.0(3)I5(3), Cisco NX-OS Software 7.0(3)I5(3a), Cisco NX-OS Software 7.0(3)I5(3b), Cisco NX-OS Software 7.0(3)I6(1), Cisco NX-OS Software 7.0(3)I6(2), Cisco NX-OS Software 7.0(3)I7(1), Cisco NX-OS Software 7.0(3)I7(2), Cisco NX-OS Software 7.0(3)I7(3), Cisco NX-OS Software 7.0(3)I7(4), Cisco NX-OS Software 7.0(3)I7(5), Cisco NX-OS Software 7.0(3)I7(5a), Cisco NX-OS Software 7.0(3)I7(3z), Cisco NX-OS Software 7.0(3)I7(6), Cisco NX-OS Software 7.0(3)I7(6z), Cisco NX-OS Software 7.0(3)I7(7), Cisco NX-OS Software 7.0(3)I7(8), Cisco NX-OS Software 7.0(3)I7(9), Cisco NX-OS Software 7.0(3)I7(9w), Cisco NX-OS Software 7.0(3)I7(10), Cisco NX-OS Software 7.3(0)D1(1), Cisco NX-OS Software 7.3(0)DX(1), Cisco NX-OS Software 7.3(0)DY(1), Cisco NX-OS Software 7.3(0)N1(1), Cisco NX-OS Software 7.3(0)N1(1b), Cisco NX-OS Software 7.3(0)N1(1a), Cisco NX-OS Software 7.3(1)D1(1), Cisco NX-OS Software 7.3(1)DY(1), Cisco NX-OS Software 7.3(1)N1(1), Cisco NX-OS Software 7.3(2)D1(1), Cisco NX-OS Software 7.3(2)D1(2), Cisco NX-OS Software 7.3(2)D1(3), Cisco NX-OS Software 7.3(2)D1(3a), Cisco NX-OS Software 7.3(2)D1(1d), Cisco NX-OS Software 7.3(2)N1(1), Cisco NX-OS Software 7.3(2)N1(1b), Cisco NX-OS Software 7.3(2)N1(1c), Cisco NX-OS Software 7.3(3)N1(1), Cisco NX-OS Software 8.1(1), Cisco NX-OS Software 8.1(2), Cisco NX-OS Software 8.1(2a), Cisco NX-OS Software 8.1(1a), Cisco NX-OS Software 8.1(1b), Cisco NX-OS Software 8.2(1), Cisco NX-OS Software 8.2(2), Cisco NX-OS Software 8.2(3), Cisco NX-OS Software 8.2(4), Cisco NX-OS Software 8.2(5), Cisco NX-OS Software 8.2(6), Cisco NX-OS Software 8.2(7), Cisco NX-OS Software 8.2(7a), Cisco NX-OS Software 8.2(8), Cisco NX-OS Software 8.2(9), Cisco NX-OS Software 8.2(10), Cisco NX-OS Software 8.2(11), Cisco NX-OS Software 8.3(1), Cisco NX-OS Software 8.3(2), Cisco NX-OS Software 9.2(1), Cisco NX-OS Software 9.2(2), Cisco NX-OS Software 9.2(2t), Cisco NX-OS Software 9.2(3), Cisco NX-OS Software 9.2(3y), Cisco NX-OS Software 9.2(4), Cisco NX-OS Software 9.2(2v), Cisco NX-OS Software 9.2(1a), Cisco NX-OS Software 7.3(4)N1(1), Cisco NX-OS Software 7.3(4)N1(1a), Cisco NX-OS Software 7.3(3)D1(1), Cisco NX-OS Software 7.0(3)IA7(1), Cisco NX-OS Software 7.0(3)IA7(2), Cisco NX-OS Software 7.0(3)IM7(2), Cisco NX-OS Software 7.3(4)D1(1), Cisco NX-OS Software 7.3(5)N1(1), Cisco NX-OS Software 8.4(1), Cisco NX-OS Software 8.4(1a), Cisco NX-OS Software 8.4(2), Cisco NX-OS Software 8.4(2a), Cisco NX-OS Software 8.4(3), Cisco NX-OS Software 8.4(2b), Cisco NX-OS Software 8.4(4), Cisco NX-OS Software 8.4(2c), Cisco NX-OS Software 8.4(4a), Cisco NX-OS Software 8.4(5), Cisco NX-OS Software 8.4(2d), Cisco NX-OS Software 8.4(6), Cisco NX-OS Software 8.4(2e), Cisco NX-OS Software 8.4(6a), Cisco NX-OS Software 8.4(7), Cisco NX-OS Software 8.4(2f), Cisco NX-OS Software 8.4(8), Cisco NX-OS Software 8.4(9), Cisco NX-OS Software 9.3(1), Cisco NX-OS Software 9.3(2), Cisco NX-OS Software 9.3(3), Cisco NX-OS Software 9.3(1z), Cisco NX-OS Software 9.3(4), Cisco NX-OS Software 9.3(5), Cisco NX-OS Software 9.3(6), Cisco NX-OS Software 9.3(5w), Cisco NX-OS Software 9.3(7), Cisco NX-OS Software 9.3(7k), Cisco NX-OS Software 9.3(7a), Cisco NX-OS Software 9.3(8), Cisco NX-OS Software 9.3(9), Cisco NX-OS Software 9.3(10), Cisco NX-OS Software 9.3(11), Cisco NX-OS Software 9.3(2a), Cisco NX-OS Software 9.3(12), Cisco NX-OS Software 9.3(13), Cisco NX-OS Software 7.3(6)N1(1), Cisco NX-OS Software 7.3(6)N1(1a), Cisco NX-OS Software 7.3(5)D1(1), Cisco NX-OS Software 7.3(7)N1(1), Cisco NX-OS Software 7.3(7)N1(1a), Cisco NX-OS Software 7.3(7)N1(1b), Cisco NX-OS Software 7.3(6)D1(1), Cisco NX-OS Software 7.3(8)N1(1), Cisco NX-OS Software 7.3(8)N1(1a), Cisco NX-OS Software 7.3(8)N1(1b), Cisco NX-OS Software 7.3(7)D1(1), Cisco NX-OS Software 7.3(9)N1(1), Cisco NX-OS Software 10.1(1), Cisco NX-OS Software 10.1(2), Cisco NX-OS Software 10.1(2t), Cisco NX-OS Software 8.5(1), Cisco NX-OS Software 7.3(10)N1(1), Cisco NX-OS Software 7.3(8)D1(1), Cisco NX-OS Software 10.2(1), Cisco NX-OS Software 10.2(1q), Cisco NX-OS Software 10.2(2), Cisco NX-OS Software 10.2(3), Cisco NX-OS Software 10.2(2a), Cisco NX-OS Software 10.2(3t), Cisco NX-OS Software 10.2(4), Cisco NX-OS Software 10.2(5), Cisco NX-OS Software 10.2(3v), Cisco NX-OS Software 10.2(6), Cisco NX-OS Software 10.2(7), Cisco NX-OS Software 7.3(9)D1(1), Cisco NX-OS Software 7.3(11)N1(1), Cisco NX-OS Software 7.3(11)N1(1a), Cisco NX-OS Software 7.3(12)N1(1), Cisco NX-OS Software 10.3(1), Cisco NX-OS Software 10.3(2), Cisco NX-OS Software 10.3(3), Cisco NX-OS Software 10.3(99w), Cisco NX-OS Software 10.3(3w), Cisco NX-OS Software 10.3(99x), Cisco NX-OS Software 10.3(3o), Cisco NX-OS Software 10.3(4a), Cisco NX-OS Software 10.3(3p), Cisco NX-OS Software 10.3(4), Cisco NX-OS Software 10.3(3q), Cisco NX-OS Software 10.3(3x), Cisco NX-OS Software 10.3(5), Cisco NX-OS Software 10.3(4g), Cisco NX-OS Software 10.3(3r), Cisco NX-OS Software 10.3(4h), Cisco NX-OS Software 7.3(13)N1(1), Cisco NX-OS Software 7.3(14)N1(1), Cisco NX-OS Software 9.4(1), Cisco NX-OS Software 9.4(1a), Cisco NX-OS Software 10.4(1), Cisco NX-OS Software 10.4(2), Cisco NX-OS Software 10.4(3), Cisco NX-OS Software 10.5(3), Cisco NX-OS Software 10.5(3t), Cisco NX-OS Software 10.5(3e), Cisco NX-OS Software 10.5(3o), Cisco NX-OS Software 10.5(3s), Cisco NX-OS Software 10.5(3p), Cisco NX-OS Software, Cisco MDS 9000 Multilayer Directors and Fabric Switches, Cisco Nexus 7000 Series Switches, Cisco Nexus 5000 Series Switches, Cisco Nexus 3000 Series Switches, Cisco Nexus 6000 Series Switches, Cisco Nexus 9000 Series Switches

Related Products

Product CVE Evidence
Cisco Nexus Dashboard CVE-2024-20286 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2024-20285 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2024-20284 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2024-20286 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2024-20285 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2024-20284 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2024-20286 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2024-20285 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2024-20284 Cisco OpenVuln
Cisco Catalyst PON Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Catalyst PON Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Catalyst PON Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 9000 Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 9000 Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 9000 Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 7000 Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 7000 Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 7000 Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 6000 Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 6000 Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 6000 Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 5000 Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 5000 Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 5000 Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 3000 Series Switches CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 3000 Series Switches CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 3000 Series Switches CVE-2024-20284 Cisco OpenVuln
Cisco Nexus 3000 Series Switch CVE-2024-20286 Cisco OpenVuln
Cisco Nexus 3000 Series Switch CVE-2024-20285 Cisco OpenVuln
Cisco Nexus 3000 Series Switch CVE-2024-20284 Cisco OpenVuln
Cisco NX-OS Software CVE-2024-20286 Cisco OpenVuln
Cisco NX-OS Software CVE-2024-20285 Cisco OpenVuln
Cisco NX-OS Software CVE-2024-20284 Cisco OpenVuln
Cisco MDS 9000 Multilayer Directors and Fabric Switches CVE-2024-20286 Cisco OpenVuln
Cisco MDS 9000 Multilayer Directors and Fabric Switches CVE-2024-20285 Cisco OpenVuln
Cisco MDS 9000 Multilayer Directors and Fabric Switches CVE-2024-20284 Cisco OpenVuln