What is Cisco SA 20190925 vman vulnerability?

Cisco SA 20190925 vman is a vulnerability in Cisco NX-OS and IOS XE Software that allows an attacker to bypass the image signature verification of virtual service containers.

How severe is the Cisco SA 20190925 vman vulnerability?

The severity of the Cisco SA 20190925 vman vulnerability is medium with a CVSS score of 6.7.

Which software versions are affected by the Cisco SA 20190925 vman vulnerability?

The Cisco SA 20190925 vman vulnerability affects Cisco NX-OS Software versions 7.0, 7.1, and 7.2.

Are there any workarounds for the Cisco SA 20190925 vman vulnerability?

There are no workarounds available to address the Cisco SA 20190925 vman vulnerability.

Where can I find more information about the Cisco SA 20190925 vman vulnerability?

You can find more information about the Cisco SA 20190925 vman vulnerability in the Cisco Security Advisory at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-vman

Vulnerability/
cisco-sa-20190925-vman

medium

6.7

CWE

347

25/9/2019

cisco-sa-20190925-vman: Cisco NX-OS and IOS XE Software Virtual Service Image Signature Bypass Vulnerability

First published: Wed Sep 25 2019(Updated: )

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-vman

Affected Software	Affected Version	How to fix
Cisco NX-OS Software
Cisco NX-OS Software	=7.2<7.1(5(N1(1b)=7.1<7.1(5(N1(1b)=7.0<7.1(5(N1(1b)	7.1(5(N1(1b) 7.1(5(N1(1b) 7.1(5(N1(1b)

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-vman (Advisory)

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2019-12662

Frequently Asked Questions

What is Cisco SA 20190925 vman vulnerability?
Cisco SA 20190925 vman is a vulnerability in Cisco NX-OS and IOS XE Software that allows an attacker to bypass the image signature verification of virtual service containers.
How severe is the Cisco SA 20190925 vman vulnerability?
The severity of the Cisco SA 20190925 vman vulnerability is medium with a CVSS score of 6.7.
Which software versions are affected by the Cisco SA 20190925 vman vulnerability?
The Cisco SA 20190925 vman vulnerability affects Cisco NX-OS Software versions 7.0, 7.1, and 7.2.
Are there any workarounds for the Cisco SA 20190925 vman vulnerability?
There are no workarounds available to address the Cisco SA 20190925 vman vulnerability.
Where can I find more information about the Cisco SA 20190925 vman vulnerability?
You can find more information about the Cisco SA 20190925 vman vulnerability in the Cisco Security Advisory at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-vman

agent/type
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
collector/cisco-advisory
source/Cisco
agent/software-canonical-lookup
agent/severity
agent/title
agent/weakness
agent/references
agent/description
agent/event
agent/tags
agent/trending
vendor/cisco
canonical/cisco nx-os software
version/cisco nx-os software/7.2
version/cisco nx-os software/7.1
version/cisco nx-os software/7.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.