How severe is CVE-2019-1585?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2019-1585?

This is classified as CWE-16, which is a common weakness in software security.

CVE-2019-1585 - HIGH Severity | CVSS 7.8

Vulnerability Description

A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local attacker to escalate standard users with root privilege on an affected device. The vulnerability is due to a misconfiguration of certain sudoers files for the bashroot component on an affected device. An attacker could exploit this vulnerability by authenticating to the affected device with a crafted user ID, which may allow temporary administrative access to escalate privileges. A successful exploit could allow the attacker to escalate privileges on an affected device. This Vulnerability has been fixed in version 4.0(1h)

Related Vulnerabilities

CVE-2020-8351

HIGH

CVSS:7.8(High)

A privilege escalation vulnerability was reported in Lenovo PCManager prior to version 3.0.50.9162 that could allow an authenticated user to execute code with elevated privileges.

CWE-162020

CVE-2022-28762

HIGH

CVSS:7.8(High)

Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with 5.10.6 and prior to 5.12.0 contains a debugging port misconfiguration. When camera mode rendering context is enabled as par...

CWE-162022

CVE-2022-33233

HIGH

CVSS:7.8(High)

Memory corruption due to configuration weakness in modem wile sending command to write protected files.

CWE-162022

CVE-2023-33076

HIGH

CVSS:7.8(High)

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

CWE-162023

CVE-2019-18579

HIGH

CVSS:7.6(High)

Settings for the Dell XPS 13 2-in-1 (7390) BIOS versions prior to 1.1.3 contain a configuration vulnerability. The BIOS configuration for the "Enable Thunderbolt (and PCIe behind TBT) pre-boot modules...

CWE-162019

CVE-2016-10446

HIGH

CVSS:7.5(High)

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 820, SD 820A, and SD 8...

CWE-162016