Vulnerabilities > Cisco > NX OS > 8.0.1

DATE CVE VULNERABILITY TITLE RISK
2017-11-30 CVE-2017-12336 Improper Input Validation vulnerability in Cisco Nx-Os and Unified Computing System
A vulnerability in the TCL scripting subsystem of Cisco NX-OS System Software could allow an authenticated, local attacker to escape the interactive TCL shell and gain unauthorized access to the underlying operating system of the device.
local
low complexity
cisco CWE-20
4.2
4.2
2017-11-30 CVE-2017-12329 Command Injection vulnerability in Cisco products
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-77
6.3
6.3
2017-10-19 CVE-2017-12301 Improper Input Validation vulnerability in Cisco Nx-Os
A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and gain unauthorized access to the underlying operating system of the device.
local
low complexity
cisco CWE-20
6.7
6.7