CVE-2015-0658

CVE Database · CVE-2015-0658

CVE-2015-0658

· N/AModified

CVSS v3.1

N/A

EPSS

1.14%

Published

Mar 27, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary commands as root by sending crafted response packets on the local network, aka Bug ID CSCur14589.

Weaknesses (CWE)

CWE-20

Affected Products (114)

cisco · nx-osvulnerable

cisco · nx-os

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=38062

Vendor Advisory

http://www.securitytracker.com/id/1031992

http://tools.cisco.com/security/center/viewAlert.x?alertId=38062

Vendor Advisory

http://www.securitytracker.com/id/1031992

KEV Catalog EPSS Scores Vendors All CVEs