Cisco Prime Data Center Network Manager (DCNM) contains a remote command execution vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary commands on the computer that is running the Cisco Prime DCNM application.
Cisco has released software updates that address this vulnerability.
US-CERT encourages users and administrators of this software to review Cisco Security Advisory 20121031-DCNM and follow best-practice security policies to determine if their organization is affected and the appropriate response.
This product is provided subject to this Notification and this Privacy & Use policy.
Source: http://www.us-cert.gov/current/#cisco_releases_security_advisory_for32