CVE-2015-0658

The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary commands as root by sending crafted response packets on the local network, aka Bug ID CSCur14589.

Published: Mar 28, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-0658
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.9
AV:A/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
cisco / nx-os	6.1(2)	6.1(2).x
cisco / nx-os	6.1(3)	6.1(3).x
cisco / nx-os	6.1(4)	6.1(4).x
cisco / nx-os	6.1(4a)	6.1(4a).x
cisco / nx-os	6.2(2)	6.2(2).x
cisco / nx-os	6.2(2a)	6.2(2a).x
cisco / nx-os	6.2(6)	6.2(6).x
cisco / nx-os	6.2(6b)	6.2(6b).x
cisco / nx-os	6.2(8)	6.2(8).x
cisco / nx-os	6.2(8a)	6.2(8a).x
cisco / nx-os	6.2(8b)	6.2(8b).x
cisco / nx-os	6.0(2)n1(1)	6.0(2)n1(1).x
cisco / nx-os	6.0(2)n1(2)	6.0(2)n1(2).x
cisco / nx-os	6.0(2)n1(2a)	6.0(2)n1(2a).x
cisco / nx-os	6.0(2)n2(1)	6.0(2)n2(1).x
cisco / nx-os	6.0(2)n2(1b)	6.0(2)n2(1b).x
cisco / nx-os	6.0(2)n2(2)	6.0(2)n2(2).x
cisco / nx-os	6.0(2)n2(3)	6.0(2)n2(3).x
cisco / nx-os	6.0(2)n2(4)	6.0(2)n2(4).x
cisco / nx-os	6.0(2)n2(5)	6.0(2)n2(5).x
cisco / nx-os	7.0(0)n1(1)	7.0(0)n1(1).x
cisco / nx-os	7.0(1)n1(1)	7.0(1)n1(1).x
cisco / nx-os	7.0(2)n1(1)	7.0(2)n1(1).x
cisco / nx-os	7.0(3)n1(1)	7.0(3)n1(1).x
cisco / nx-os	6.1(2)i2(1)	6.1(2)i2(1).x
cisco / nx-os	6.1(2)i2(2)	6.1(2)i2(2).x
cisco / nx-os	6.1(2)i2(2a)	6.1(2)i2(2a).x
cisco / nx-os	6.1(2)i2(2b)	6.1(2)i2(2b).x
cisco / nx-os	6.1(2)i2(3)	6.1(2)i2(3).x
cisco / nx-os	6.1(2)i3(1)	6.1(2)i3(1).x
cisco / nx-os	6.1(2)i3(2)	6.1(2)i3(2).x
cisco / nx-os	6.1(2)i3(3)	6.1(2)i3(3).x
cisco / nx-os	11.0(1b)	11.0(1b).x
cisco / nx-os	11.0(1c)	11.0(1c).x
cisco / nx-os	5.0(3)u3(1)	5.0(3)u3(1).x
cisco / nx-os	5.0(3)u3(2)	5.0(3)u3(2).x
cisco / nx-os	5.0(3)u3(2a)	5.0(3)u3(2a).x
cisco / nx-os	5.0(3)u3(2b)	5.0(3)u3(2b).x
cisco / nx-os	5.0(3)u4(1)	5.0(3)u4(1).x
cisco / nx-os	5.0(3)u5(1)	5.0(3)u5(1).x
cisco / nx-os	5.0(3)u5(1a)	5.0(3)u5(1a).x
cisco / nx-os	5.0(3)u5(1b)	5.0(3)u5(1b).x
cisco / nx-os	5.0(3)u5(1c)	5.0(3)u5(1c).x
cisco / nx-os	5.0(3)u5(1d)	5.0(3)u5(1d).x
cisco / nx-os	5.0(3)u5(1e)	5.0(3)u5(1e).x
cisco / nx-os	5.0(3)u5(1f)	5.0(3)u5(1f).x
cisco / nx-os	5.0(3)u5(1g)	5.0(3)u5(1g).x
cisco / nx-os	5.0(3)u5(1h)	5.0(3)u5(1h).x
cisco / nx-os	6.0(2)u1(1)	6.0(2)u1(1).x
cisco / nx-os	6.0(2)u1(1a)	6.0(2)u1(1a).x
cisco / nx-os	6.0(2)u1(2)	6.0(2)u1(2).x
cisco / nx-os	6.0(2)u1(3)	6.0(2)u1(3).x
cisco / nx-os	6.0(2)u1(4)	6.0(2)u1(4).x
cisco / nx-os	6.0(2)u2(1)	6.0(2)u2(1).x
cisco / nx-os	6.0(2)u2(2)	6.0(2)u2(2).x
cisco / nx-os	6.0(2)u2(3)	6.0(2)u2(3).x
cisco / nx-os	6.0(2)u2(4)	6.0(2)u2(4).x
cisco / nx-os	6.0(2)u2(5)	6.0(2)u2(5).x
cisco / nx-os	6.0(2)u2(6)	6.0(2)u2(6).x
cisco / nx-os	6.0(2)u3(1)	6.0(2)u3(1).x
cisco / nx-os	6.0(2)u3(2)	6.0(2)u3(2).x
cisco / nx-os	6.0(2)u3(3)	6.0(2)u3(3).x
cisco / nx-os	6.0(2)u3(4)	6.0(2)u3(4).x
cisco / nx-os	6.0(2)u3(5)	6.0(2)u3(5).x
cisco / nx-os	6.0(2)u4(1)	6.0(2)u4(1).x
cisco / nx-os	6.0(2)u4(2)	6.0(2)u4(2).x
cisco / nx-os	6.0(2)u4(3)	6.0(2)u4(3).x
cisco / nx-os	6.0(2)u5(1)	6.0(2)u5(1).x

Vulnerability Database

289,599

CVE-2015-0658