A vulnerability in the user management functionality of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to perform a denial of service (DoS) attack against an affected system. The vulnerability is due to insufficient validation of user-provided input. An attacker could exploit this vulnerability by logging in with a highly privileged user account and performing a sequence of specific user management operations that interfere with the underlying operating system. A successful exploit could allow the malicious user to permanently degrade the functionality of the affected system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco enterprise network virtualization software nfvis-6.0 |
||
cisco enterprise network virtualization software nfvis-8.0 |