CVE-2025-20292

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by entering crafted input as the argument of an affected CLI command. A successful exploit could allow the attacker to read and write files on the underlying operating system with the privileges of a non-root user account. File system access is limited to the permissions that are granted to that non-root user account.

Severity	MEDIUM
CVSS	4.4
CWE	CWE-78
KEV
Published	8 months ago
Modified	1 month ago

Related Products

Product	Advisory
Cisco Nexus Dashboard	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco MDS 9000 Family of Multilayer Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Firepower Extensible Operating System (FXOS)	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Catalyst PON Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Application Centric Infrastructure Virtual Edge	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Unified Computing System (Managed)	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 9000 Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 7000 Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 6000 Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 5000 Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 3000 Series Switches	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco Nexus 3000 Series Switch	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco NX-OS System Software in ACI Mode	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco NX-OS Software	cisco-sa-nxos-cmdinj-qhNze5Ss
Cisco MDS 9000 Multilayer Directors and Fabric Switches	cisco-sa-nxos-cmdinj-qhNze5Ss