A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to escape the Python sandbox and gain unauthorized access to the underlying operating system of the device.
The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by manipulating specific functions within the Python interpreter. A successful exploit could allow an attacker to escape the Python sandbox and execute arbitrary commands on the underlying operating system with the privileges of the authenticated user.
Note: An attacker must be authenticated with Python execution privileges to exploit these vulnerabilities. For more information regarding Python execution privileges, see product-specific documentation, such as the section of the Cisco Nexus 9000 Series NX-OS Programmability Guide.
References
Configurations
Configuration 1 (hide)
| AND |
|
History
No history.
Information
Published : 2024-08-28 17:15
Updated : 2024-10-22 14:37
NVD link : CVE-2024-20285
Mitre link : CVE-2024-20285
CVE.ORG link : CVE-2024-20285
JSON object : View
Products Affected
cisco
- nexus_9500_4-slot
- n9k-c93216tc-fx2
- nexus_3000_series
- nexus_36180yc-r
- nexus_3172tq
- n9k-c9336c-fx2
- nexus_3232
- nexus_3172tq-xl
- nexus_3132q-v
- n9k-c93600cd-gx
- n9k-c9508
- n9k-x9732c-fx
- nexus_9000_in_standalone
- nexus_9500_supervisor_b\+
- nexus_9504
- n9k-c9332c
- n9k-c92160yc-x
- n9k-c92348gc-x
- n9k-c9372tx-e
- n9k-c93180yc-ex
- nexus_93108tc-fx3
- n9k-c93108tc-fx
- n9k-c9508-fm-r
- nexus_9372tx-e
- n9k-x9564tx
- nexus_3500_platform
- n9k-c9504
- nexus_9336pq_aci_spine_switch
- nexus_9364c
- nexus_3400
- nexus_9372px-e_switch
- nexus_3132q
- n9k-c9272q
- n9k-c9232c
- nexus_3132q-x\/3132q-xl
- n9k-c9348d-gx2a
- nexus_34180yc
- n9k-c9364c
- nexus_9336pq_aci
- nexus_31108pc-v
- n9k-c93180yc-fx
- n9k-x9636c-r
- nexus_92304qc
- nexus_3524-x\/xl
- nexus_9316d-gx
- nexus_9000_in_standalone_nx-os_mode
- nexus_93180yc-ex-24
- nexus_93180yc-ex
- nexus_9372px-e
- n9k-x9732c-ex
- n9k-c93120tx
- n9k-c9396tx
- nexus_9272q_switch
- nexus_93120tx_switch
- nexus_31108pv-v
- nexus_9372tx-e_switch
- nexus_9508
- nexus_3264q
- nexus_9000_in_aci_mode
- n9k-c93180yc2-fx
- nexus_93180yc-fx-24
- nexus_3132q-xl
- n9k-x97160yc-ex
- nexus_3432d-s
- nexus_9396tx_switch
- nexus_9500_supervisor_b
- nexus_92304qc_switch
- n9k-x96136yc-r
- nexus_31128pq
- nexus_9272q
- nexus_3200
- n9k-c9364d-gx2a
- n9k-x9636q-r
- nexus_3172pq
- nexus_9348gc-fx3
- n9k-c9332d-gx2b
- n9k-x9736c-fx
- nexus_93108tc-ex_switch
- nexus_93128tx_switch
- n9k-c93108tc-ex
- n9k-sc-a
- nexus_93108tc-ex-24
- nexus_3500
- nexus_9332pq_switch
- nexus_9508_switch
- nexus_93128tx
- nexus_93180yc-fx3s
- nexus_9332c
- nexus_9504_switch
- nexus_3172tq-32t
- nexus_93180yc-ex_switch
- nexus_3064-x
- n9k-sup-b\+
- nexus_9200yc
- n9k-x9400-16w
- nexus_3172pq\/pq-xl
- n9k-c9348gc-fxp
- nexus_9332pq
- nexus_9432pq
- nexus_3016
- n9k-x9564px
- nexus_3548-xl
- nexus_9300
- nexus_9536pq
- nexus_92348gc-x
- n9k-x9464px
- nexus_3232c
- n9k-sup-a
- n9k-x9400-22l
- nexus_3164q
- nexus_9364d-gx2a
- nexus_9348gc-fxp
- nexus_3064
- nexus_3600
- nexus_9000v
- nexus_9500_supervisor_a
- nexus_9800_36-port_400g_line_card
- nexus_9396tx
- n9k-x9432c-s
- nexus_93360yc-fx2
- nexus_3524-xl
- nexus_3064t
- nexus_93400ld-h1
- nexus_3048
- nexus_9332d-gx2b
- n9k-c9372px
- n9k-x97284yc-fx
- n9k-x9400-8d
- nexus_3548-x
- nexus_9236c
- nexus_93108tc-fx3h
- nexus_34200yc-sm
- nexus_3548-x\/xl
- n9k-sup-b
- nexus_93128
- n9k-c9504-fm-r
- nexus_3000
- nexus_9396px
- nexus_9336pq
- nexus_93180lc-ex_switch
- nexus_9232e
- n9k-c93240yc-fx2
- nexus_9000
- n9k-c93360yc-fx2
- nexus_3064-32t
- nexus_92300yc
- nexus_3548
- nexus_3232c_
- nexus_9364c-h1
- nexus_3524
- nexus_93180yc-fx3
- nexus_93108tc-ex
- n9k-x9636c-rx
- nexus_9336c-fx2
- n9k-c9372tx
- nexus_9716d-gx
- n9k-c9332pq
- n9k-c9396px
- n9k-x9788tc-fx
- nexus_92160yc-x
- nexus_3636c-r
- nx-os
- n9k-c93128tx
- n9k-c9316d-gx
- nexus_93240yc-fx2
- nexus_93108tc-fx3p
- n9k-c92300yc
- n9k-sup-a\+
- nexus_31108tc-v
- nexus_93240tc-fx2
- nexus_9808
- nexus_9804
- nexus_9500r
- nexus_9516
- nexus_9800_34-port_100g_and_14-port_400g_line_card
- nexus_3464c
- nexus_9364c-gx
- nexus_9372tx
- n9k-c9516
- nexus_93600cd-gx
- nexus_9336pq_aci_spine
- nexus_9236c_switch
- nexus_9372px
- n9k-c9236c
- nexus_3132q-x
- nexus_93108tc-fx-24
- nexus_3132c-z
- nexus_9200
- n9k-c92304qc
- nexus_9408
- n9k-x9736c-ex
- nexus_9500_supervisor_a\+
- nexus_3016q
- nexus_3524-x
- nexus_9636pq
- n9k-x9464tx2
- nexus_3064x
- nexus_3408-s
- nexus_93108tc-fx
- nexus_93180tc-ex
- nexus_93180yc-fx
- n9k-c9372px-e
- nexus_9372px_switch
- n9k-c93180lc-ex
- nexus_9348d-gx2a
- nexus_9336c-fx2-e
- nexus_92160yc_switch
- n9k-c9364c-gx
- nexus_9516_switch
- nexus_92300yc_switch
- nexus_9500_8-slot
- nexus_9372tx_switch
- nexus_3264c-e
- nexus_93180lc-ex
- nexus_9800
- nexus_93180yc-fx3h
- nexus_3100v
- nexus_9396px_switch
- nexus_3100-v
- nexus_3100
- nexus_3172pq-xl
- nexus_9221c
- nexus_93120tx
- nexus_93216tc-fx2
- nexus_9348gc-fx3ph
- nexus_3064-t
- nexus_3172
- nexus_9500_16-slot
- nexus_9332d-h2r
- nexus_3100-z
- nexus_9500
- nexus_9736pq
CWE