Language:
http://www.nessus.org/u?df19d2c1
Severity: Critical
ID: 78693
File Name: cisco-sa-20140926-bash-nxos.nasl
Version: 1.16
Type: combined
Family: CISCO
Published: 10/27/2014
Updated: 1/31/2022
Risk Factor: Critical
Score: 9.5
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Temporal Vector: E:H/RL:OF/RC:C
CVSS Score Source: CVE-2014-7187
CPE: cpe:/o:cisco:nx-os
Required KB Items: Host/Cisco/NX-OS/Version, Host/Cisco/NX-OS/Device, Host/Cisco/NX-OS/Model
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/15/2014
Vulnerability Publication Date: 9/24/2014
CISA Known Exploited Dates: 7/28/2022
Core Impact
Metasploit (CUPS Filter Bash Environment Variable Code Injection (Shellshock))
CVE: CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187
BID: 70103, 70137, 70152, 70154, 70165, 70166
IAVA: 2014-A-0142
CISCO-BUG-ID: CSCur01099, CSCur04438, CSCur04510, CSCur05529, CSCur05610, CSCur05017, CSCuq98748, CSCur02102, CSCur02700
CISCO-SA: cisco-sa-20140926-bash
CERT: 252743