CVE-2016-1329

NONE EPSS 88.5%
Published Mar 3, 201610y ago · Modified Jun 17, 20262w ago
Find Similar
Published Mar 3, 2016 10y ago
Last Modified Jun 17, 2026 2w ago

Description

Cisco NX-OS 6.0(2)U6(1) through 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) through 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a (1) TELNET or (2) SSH session, aka Bug ID CSCuy25800.

Threat Intelligence

EPSS Exploit Probability
88.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-287 Improper Authentication Authentication

Affected Products 14

VendorProductVersionRange
cisconexus_3048*any
cisconexus_3064*any
cisconexus_3064t*any
cisconexus_3064x*any
samsungx14j_firmwaret-ms14jakucb-1102.5any
sunopensolarissnv_124any
zyxelgs1900-10hp_firmware* <2.50\(aazi.0\)c0
zzinckeymouse_firmware3.08any
cisconexus_3524*any
cisconexus_3548*any
samsungx14j_firmwaret-ms14jakucb-1102.5any
sunopensolarissnv_124any
zyxelgs1900-10hp_firmware* <2.50\(aazi.0\)c0
zzinckeymouse_firmware3.08any

References 3

  • tools.cisco.com http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-n3k
    Vendor Advisory
  • securitytracker.com http://www.securitytracker.com/id/1035161
  • isc.sans.edu https://isc.sans.edu/forums/diary/20795

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.