Access Control Flaw in Cisco Application Policy Infrastructure Controller and Nexus 9000 ACI Devices
CVE-2015-4235

Currently unrated

Key Information:

Vendor: Cisco
Status: Nx-os; Application Policy Infrastructure Controller \(apic\)
Vendor: CVE Published:; 24 July 2015

What is CVE-2015-4235?

The vulnerability in Cisco Application Policy Infrastructure Controller devices and Nexus 9000 ACI platforms allows remote authenticated users to gain unauthorized root access. This occurs due to insufficient restrictions on the APIC filesystem, particularly related to the APIC cluster-management configuration feature. Exploitation could lead to significant security breaches, as attackers can manipulate the configuration and access sensitive system components.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1033025

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 24, 2015
Vulnerability Reserved
Jun 4, 2015

JSON

Cisco

What is CVE-2015-4235?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.