All the vulnerabilites related to Cisco - Nexus 9000 Series Fabric Switches in ACI Mode
cve-2019-1593
Vulnerability from cvelistv5
Published
2019-03-06 22:00
Modified
2024-11-20 17:27
Severity ?
EPSS score ?
Summary
Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability
References
▼ | URL | Tags |
---|---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-bash-escal | vendor-advisory, x_refsource_CISCO | |
http://www.securityfocus.com/bid/107324 | vdb-entry, x_refsource_BID |
Impacted products
Vendor | Product | Version | |||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Cisco | Nexus 3000 Series Switches |
Version: unspecified < 7.0(3)I7(4) |
||||||||||||||||||||
|
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T18:20:28.327Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "20190306 Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO", "x_transferred" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-bash-escal" }, { "name": "107324", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107324" } ], "title": "CVE Program Container" }, { "metrics": [ { "other": { "content": { "id": "CVE-2019-1593", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "total" } ], "role": "CISA Coordinator", "timestamp": "2024-11-20T16:55:50.307290Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-11-20T17:27:13.520Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Nexus 3000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3500 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3600 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)F3(5)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 7000 and 7700 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "8.2(3)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Fabric Switches in ACI Mode", "vendor": "Cisco", "versions": [ { "lessThan": "13.2(4d)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "14.0(1h)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I4(9)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] } ], "datePublic": "2019-03-06T00:00:00", "descriptions": [ { "lang": "en", "value": "A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level by executing commands authorized to other user roles. The attacker must authenticate with valid user credentials. The vulnerability is due to the incorrect implementation of a Bash shell command that allows role-based access control (RBAC) to be bypassed. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the Bash prompt. A successful exploit could allow the attacker to escalate their privilege level by executing commands that should be restricted to other roles. For example, a dev-ops user could escalate their privilege level to admin with a successful exploit of this vulnerability." } ], "exploits": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "metrics": [ { "cvssV3_0": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-264", "description": "CWE-264", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-09T10:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco" }, "references": [ { "name": "20190306 Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-bash-escal" }, { "name": "107324", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107324" } ], "source": { "advisory": "cisco-sa-20190306-nx-os-bash-escal", "defect": [ [ "CSCvj59431", "CSCvj59446", "CSCvk52940", "CSCvk52941" ] ], "discovery": "INTERNAL" }, "title": "Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2019-03-06T16:00:00-0800", "ID": "CVE-2019-1593", "STATE": "PUBLIC", "TITLE": "Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Nexus 3000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 3500 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 3600 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)F3(5)" } ] } }, { "product_name": "Nexus 7000 and 7700 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "8.2(3)" } ] } }, { "product_name": "Nexus 9000 Series Fabric Switches in ACI Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "13.2(4d)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "14.0(1h)" } ] } }, { "product_name": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I4(9)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level by executing commands authorized to other user roles. The attacker must authenticate with valid user credentials. The vulnerability is due to the incorrect implementation of a Bash shell command that allows role-based access control (RBAC) to be bypassed. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the Bash prompt. A successful exploit could allow the attacker to escalate their privilege level by executing commands that should be restricted to other roles. For example, a dev-ops user could escalate their privilege level to admin with a successful exploit of this vulnerability." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": { "baseScore": "7.8", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-264" } ] } ] }, "references": { "reference_data": [ { "name": "20190306 Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-bash-escal" }, { "name": "107324", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107324" } ] }, "source": { "advisory": "cisco-sa-20190306-nx-os-bash-escal", "defect": [ [ "CSCvj59431", "CSCvj59446", "CSCvk52940", "CSCvk52941" ] ], "discovery": "INTERNAL" } } } }, "cveMetadata": { "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2019-1593", "datePublished": "2019-03-06T22:00:00Z", "dateReserved": "2018-12-06T00:00:00", "dateUpdated": "2024-11-20T17:27:13.520Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-1594
Vulnerability from cvelistv5
Published
2019-03-06 22:00
Modified
2024-11-21 19:44
Severity ?
EPSS score ?
Summary
Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability
References
▼ | URL | Tags |
---|---|---|
http://www.securityfocus.com/bid/107325 | vdb-entry, x_refsource_BID | |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth | vendor-advisory, x_refsource_CISCO |
Impacted products
Vendor | Product | Version | |||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Cisco | Nexus 1000V Switch for VMware vSphere |
Version: unspecified < 5.2(1)SV3(1.4b) |
||||||||||||||||||||||||
|
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T18:20:28.331Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "107325", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO", "x_transferred" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ], "title": "CVE Program Container" }, { "metrics": [ { "other": { "content": { "id": "CVE-2019-1594", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "timestamp": "2024-11-21T19:00:18.826849Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-11-21T19:44:08.732Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Nexus 1000V Switch for VMware vSphere", "vendor": "Cisco", "versions": [ { "lessThan": "5.2(1)SV3(1.4b)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 3500 Platform Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 2000, 5500, 5600, and 6000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.3(5)N1(1)", "status": "affected", "version": "unspecified", "versionType": "custom" }, { "lessThan": "7.1(5)N1(1b)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 7000 and 7700 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "8.2(3)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Fabric Switches in ACI Mode", "vendor": "Cisco", "versions": [ { "lessThan": "13.2(1l)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(4)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] } ], "datePublic": "2019-03-06T00:00:00", "descriptions": [ { "lang": "en", "value": "A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication Protocol over LAN (EAPOL) frames. An attacker could exploit this vulnerability by sending a crafted EAPOL frame to an interface on the targeted device. A successful exploit could allow the attacker to cause the Layer 2 (L2) forwarding process to restart multiple times, leading to a system-level restart of the device and a DoS condition. Note: This vulnerability affects only NX-OS devices configured with 802.1X functionality. Cisco Nexus 1000V Switch for VMware vSphere devices are affected in versions prior to 5.2(1)SV3(1.4b). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(4). Nexus 3500 Platform Switches are affected in versions prior to 7.0(3)I7(4). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.3(5)N1(1) and 7.1(5)N1(1b). Nexus 7000 and 7700 Series Switches are affected in versions prior to 8.2(3). Nexus 9000 Series Fabric Switches in ACI Mode are affected in versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected in versions prior to 7.0(3)I7(4)." } ], "exploits": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "metrics": [ { "cvssV3_0": { "attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-264", "description": "CWE-264", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-09T10:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco" }, "references": [ { "name": "107325", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ], "source": { "advisory": "cisco-sa-20190306-nx-os-lan-auth", "defect": [ [ "CSCvi93959", "CSCvj22443", "CSCvj22446", "CSCvj22447", "CSCvj22449" ] ], "discovery": "INTERNAL" }, "title": "Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2019-03-06T16:00:00-0800", "ID": "CVE-2019-1594", "STATE": "PUBLIC", "TITLE": "Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Nexus 1000V Switch for VMware vSphere", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "5.2(1)SV3(1.4b)" } ] } }, { "product_name": "Nexus 3000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 3500 Platform Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } }, { "product_name": "Nexus 2000, 5500, 5600, and 6000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.3(5)N1(1)" }, { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.1(5)N1(1b)" } ] } }, { "product_name": "Nexus 7000 and 7700 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "8.2(3)" } ] } }, { "product_name": "Nexus 9000 Series Fabric Switches in ACI Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "13.2(1l)" } ] } }, { "product_name": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(4)" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete input validation of Extensible Authentication Protocol over LAN (EAPOL) frames. An attacker could exploit this vulnerability by sending a crafted EAPOL frame to an interface on the targeted device. A successful exploit could allow the attacker to cause the Layer 2 (L2) forwarding process to restart multiple times, leading to a system-level restart of the device and a DoS condition. Note: This vulnerability affects only NX-OS devices configured with 802.1X functionality. Cisco Nexus 1000V Switch for VMware vSphere devices are affected in versions prior to 5.2(1)SV3(1.4b). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I7(4). Nexus 3500 Platform Switches are affected in versions prior to 7.0(3)I7(4). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.3(5)N1(1) and 7.1(5)N1(1b). Nexus 7000 and 7700 Series Switches are affected in versions prior to 8.2(3). Nexus 9000 Series Fabric Switches in ACI Mode are affected in versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected in versions prior to 7.0(3)I7(4)." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": { "baseScore": "7.4", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-264" } ] } ] }, "references": { "reference_data": [ { "name": "107325", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107325" }, { "name": "20190306 Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nx-os-lan-auth" } ] }, "source": { "advisory": "cisco-sa-20190306-nx-os-lan-auth", "defect": [ [ "CSCvi93959", "CSCvj22443", "CSCvj22446", "CSCvj22447", "CSCvj22449" ] ], "discovery": "INTERNAL" } } } }, "cveMetadata": { "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2019-1594", "datePublished": "2019-03-06T22:00:00Z", "dateReserved": "2018-12-06T00:00:00", "dateUpdated": "2024-11-21T19:44:08.732Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-1615
Vulnerability from cvelistv5
Published
2019-03-11 22:00
Modified
2024-11-20 17:25
Severity ?
EPSS score ?
Summary
Cisco NX-OS Software Image Signature Verification Vulnerability
References
▼ | URL | Tags |
---|---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-sig-verif | vendor-advisory, x_refsource_CISCO | |
http://www.securityfocus.com/bid/107397 | vdb-entry, x_refsource_BID |
Impacted products
Vendor | Product | Version | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
▼ | Cisco | Nexus 3000 Series Switches |
Version: unspecified < 7.0(3)I7(5) |
||||||||||||
|
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T18:20:28.347Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "20190306 Cisco NX-OS Software Image Signature Verification Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO", "x_transferred" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-sig-verif" }, { "name": "107397", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107397" } ], "title": "CVE Program Container" }, { "metrics": [ { "other": { "content": { "id": "CVE-2019-1615", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "total" } ], "role": "CISA Coordinator", "timestamp": "2024-11-20T16:55:34.892785Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-11-20T17:25:47.025Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Nexus 3000 Series Switches", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(5)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Fabric Switches in ACI Mode", "vendor": "Cisco", "versions": [ { "lessThan": "13.2(1l)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)I7(5)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] }, { "product": "Nexus 9500 R-Series Line Cards and Fabric Modules", "vendor": "Cisco", "versions": [ { "lessThan": "7.0(3)F3(5)", "status": "affected", "version": "unspecified", "versionType": "custom" } ] } ], "datePublic": "2019-03-06T00:00:00", "descriptions": [ { "lang": "en", "value": "A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability is due to improper verification of digital signatures for software images. An attacker could exploit this vulnerability by loading an unsigned software image on an affected device. A successful exploit could allow the attacker to boot a malicious software image. Note: The fix for this vulnerability requires a BIOS upgrade as part of the software upgrade. For additional information, see the Details section of this advisory. Nexus 3000 Series Switches are affected running software versions prior to 7.0(3)I7(5). Nexus 9000 Series Fabric Switches in ACI Mode are affected running software versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected running software versions prior to 7.0(3)I7(5). Nexus 9500 R-Series Line Cards and Fabric Modules are affected running software versions prior to 7.0(3)F3(5)." } ], "exploits": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "metrics": [ { "cvssV3_0": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-347", "description": "CWE-347", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-15T09:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco" }, "references": [ { "name": "20190306 Cisco NX-OS Software Image Signature Verification Vulnerability", "tags": [ "vendor-advisory", "x_refsource_CISCO" ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-sig-verif" }, { "name": "107397", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107397" } ], "source": { "advisory": "cisco-sa-20190306-nxos-sig-verif", "defect": [ [ "CSCvj14135", "CSCvk70903", "CSCvk70905" ] ], "discovery": "INTERNAL" }, "title": "Cisco NX-OS Software Image Signature Verification Vulnerability", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2019-03-06T16:00:00-0800", "ID": "CVE-2019-1615", "STATE": "PUBLIC", "TITLE": "Cisco NX-OS Software Image Signature Verification Vulnerability" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Nexus 3000 Series Switches", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(5)" } ] } }, { "product_name": "Nexus 9000 Series Fabric Switches in ACI Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "13.2(1l)" } ] } }, { "product_name": "Nexus 9000 Series Switches in Standalone NX-OS Mode", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)I7(5)" } ] } }, { "product_name": "Nexus 9500 R-Series Line Cards and Fabric Modules", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_value": "7.0(3)F3(5)" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability is due to improper verification of digital signatures for software images. An attacker could exploit this vulnerability by loading an unsigned software image on an affected device. A successful exploit could allow the attacker to boot a malicious software image. Note: The fix for this vulnerability requires a BIOS upgrade as part of the software upgrade. For additional information, see the Details section of this advisory. Nexus 3000 Series Switches are affected running software versions prior to 7.0(3)I7(5). Nexus 9000 Series Fabric Switches in ACI Mode are affected running software versions prior to 13.2(1l). Nexus 9000 Series Switches in Standalone NX-OS Mode are affected running software versions prior to 7.0(3)I7(5). Nexus 9500 R-Series Line Cards and Fabric Modules are affected running software versions prior to 7.0(3)F3(5)." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": { "baseScore": "6.7", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-347" } ] } ] }, "references": { "reference_data": [ { "name": "20190306 Cisco NX-OS Software Image Signature Verification Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-sig-verif" }, { "name": "107397", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107397" } ] }, "source": { "advisory": "cisco-sa-20190306-nxos-sig-verif", "defect": [ [ "CSCvj14135", "CSCvk70903", "CSCvk70905" ] ], "discovery": "INTERNAL" } } } }, "cveMetadata": { "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2019-1615", "datePublished": "2019-03-11T22:00:00Z", "dateReserved": "2018-12-06T00:00:00", "dateUpdated": "2024-11-20T17:25:47.025Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }