A vulnerability in the CLI of Cisco Network Services Orchestrator (NSO) could allow an authenticated, local attacker to access confidential information on an affected device. The vulnerability is due to a timing issue in the processing of CLI commands. An attacker could exploit this vulnerability by executing a specific sequence of commands on the CLI. A successful exploit could allow the attacker to read configuration information that would normally be accessible to administrators only.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Network_services_orchestrator | Cisco | * | 4.7.7.3 (excluding) |
| Network_services_orchestrator | Cisco | 5.1.0.1 (including) | 5.1.4.2 (excluding) |