A vulnerability in the cluster management configuration of the Cisco Application Policy Infrastructure Controller (APIC) and the Cisco Nexus 9000 Series ACI Mode Switch could allow an authenticated, remote attacker to access the APIC as the root user.
Cisco security advisory is available here – http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-apic