Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The license-installation module on the Cisco Nexus 1000V switch 4.2(1)SV1(5.2b) and earlier for VMware vSphere, Cisco Nexus 1000V switch 5.2(1)SM1(5.1) for Microsoft Hyper-V, and Cisco Virtual Security Gateway 4.2(1)VSG1(1) for Nexus 1000V switches allows local users to gain privileges and execute arbitrary commands via crafted "install all iso" arguments, aka Bug ID CSCui21340.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Nexus 1000V license-installation模块任意命令执行漏洞
Vulnerability Description
Cisco Nexus 1000v是美国思科(Cisco)公司的一套专为虚拟机开发的虚拟交换机软件。该软件用来取代Vmware内置的分布式虚拟交换机,并包含了管理程序内部运行的虚拟以太网模块(VEM)和管理VEM的外部虚拟控制引擎模块(VSM)两个组件。 Cisco Nexus 1000V交换机的license-installation模块中存在任意命令执行漏洞。本地攻击者可通过提供特制的参数到‘install all iso’命令利用该漏洞获取特权并执行任意命令。以下产品受到影响:VMware vSph
CVSS Information
N/A
Vulnerability Type
N/A