ID CVE-2018-0484
Summary A vulnerability in the access control logic of the Secure Shell (SSH) server of Cisco IOS and IOS XE Software may allow connections sourced from a virtual routing and forwarding (VRF) instance despite the absence of the vrf-also keyword in the access-class configuration. The vulnerability is due to a missing check in the SSH server. An attacker could use this vulnerability to open an SSH connection to an affected Cisco IOS or IOS XE device with a source address belonging to a VRF instance. Once connected, the attacker would still need to provide valid credentials to access the device.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
bid 106560
cisco 20190109 Cisco IOS and IOS XE Software Secure Shell Connection on VRF Vulnerability
Last major update 10-01-2019 - 13:29
Published 10-01-2019 - 13:29
Last modified 16-01-2019 - 06:29
Back to Top