cnvd - cnvd-2018-11317

cnvd-2018-11317

Vulnerability from cnvd

Title: Cisco Wide Area Application Services Software静态SNMP凭证漏洞

Description:

Cisco Wide Area Application Services（WAAS）Software是美国思科（Cisco）公司的一套广域网链路加速软件。该软件主要用于带宽小和延时大的链路环境。

Cisco WAAS Software中的Simple Network Management Protocol (SNMP)功能的默认配置存在安全漏洞，该漏洞源于程序使用了只读的硬编码‘社区密码’（community string）。远程攻击者可通过在SNMP 2c版本中使用静态的‘社区密码’利用该漏洞读取通过SNMP可以访问到的任意数据。

Severity: 中

Patch Name: Cisco Wide Area Application Services Software静态SNMP凭证漏洞的补丁

Patch Description:

Cisco Wide Area Application Services（WAAS）Software是美国思科（Cisco）公司的一套广域网链路加速软件。该软件主要用于带宽小和延时大的链路环境。

Formal description:

厂商已发布漏洞修复程序，请及时关注更新： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp

Reference: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp

Impacted products

Name
Cisco Wide Area Application Services

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0329"
    }
  },
  "description": "Cisco Wide Area Application Services\uff08WAAS\uff09Software\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u5e7f\u57df\u7f51\u94fe\u8def\u52a0\u901f\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u4e3b\u8981\u7528\u4e8e\u5e26\u5bbd\u5c0f\u548c\u5ef6\u65f6\u5927\u7684\u94fe\u8def\u73af\u5883\u3002\r\n\r\nCisco WAAS Software\u4e2d\u7684Simple Network Management Protocol (SNMP)\u529f\u80fd\u7684\u9ed8\u8ba4\u914d\u7f6e\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4f7f\u7528\u4e86\u53ea\u8bfb\u7684\u786c\u7f16\u7801\u2018\u793e\u533a\u5bc6\u7801\u2019\uff08community string\uff09\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5728SNMP 2c\u7248\u672c\u4e2d\u4f7f\u7528\u9759\u6001\u7684\u2018\u793e\u533a\u5bc6\u7801\u2019\u5229\u7528\u8be5\u6f0f\u6d1e\u8bfb\u53d6\u901a\u8fc7SNMP\u53ef\u4ee5\u8bbf\u95ee\u5230\u7684\u4efb\u610f\u6570\u636e\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-11317",
  "openTime": "2018-06-12",
  "patchDescription": "Cisco Wide Area Application Services\uff08WAAS\uff09Software\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u5e7f\u57df\u7f51\u94fe\u8def\u52a0\u901f\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u4e3b\u8981\u7528\u4e8e\u5e26\u5bbd\u5c0f\u548c\u5ef6\u65f6\u5927\u7684\u94fe\u8def\u73af\u5883\u3002\r\n\r\nCisco WAAS Software\u4e2d\u7684Simple Network Management Protocol (SNMP)\u529f\u80fd\u7684\u9ed8\u8ba4\u914d\u7f6e\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4f7f\u7528\u4e86\u53ea\u8bfb\u7684\u786c\u7f16\u7801\u2018\u793e\u533a\u5bc6\u7801\u2019\uff08community string\uff09\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5728SNMP 2c\u7248\u672c\u4e2d\u4f7f\u7528\u9759\u6001\u7684\u2018\u793e\u533a\u5bc6\u7801\u2019\u5229\u7528\u8be5\u6f0f\u6d1e\u8bfb\u53d6\u901a\u8fc7SNMP\u53ef\u4ee5\u8bbf\u95ee\u5230\u7684\u4efb\u610f\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wide Area Application Services Software\u9759\u6001SNMP\u51ed\u8bc1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Wide Area Application Services"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp",
  "serverity": "\u4e2d",
  "submitTime": "2018-06-07",
  "title": "Cisco Wide Area Application Services Software\u9759\u6001SNMP\u51ed\u8bc1\u6f0f\u6d1e"
}

CVE-2018-0329 (GCVE-0-2018-0329)

Vulnerability from cvelistv5

Published

2018-06-07 21:00

Modified

2024-11-29 15:05

Severity ?

CWE

CWE-798

Summary

A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote attacker to read data from an affected device via SNMP. The vulnerability is due to a hard-coded, read-only community string in the configuration file for the SNMP daemon. An attacker could exploit this vulnerability by using the static community string in SNMP version 2c queries to an affected device. A successful exploit could allow the attacker to read any data that is accessible via SNMP on the affected device. Note: The static credentials are defined in an internal configuration file and are not visible in the current operation configuration ('running-config') or the startup configuration ('startup-config'). Cisco Bug IDs: CSCvi40137.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1041078	vdb-entry, x_refsource_SECTRACK
	http://www.securityfocus.com/bid/104590	vdb-entry, x_refsource_BID
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	Cisco Wide Area Application Services unknown	Version: Cisco Wide Area Application Services unknown

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:21:15.325Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1041078",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041078"
          },
          {
            "name": "104590",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/104590"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2018-0329",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-29T14:43:47.888003Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-29T15:05:10.751Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Wide Area Application Services unknown",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Wide Area Application Services unknown"
            }
          ]
        }
      ],
      "datePublic": "2018-06-07T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote attacker to read data from an affected device via SNMP. The vulnerability is due to a hard-coded, read-only community string in the configuration file for the SNMP daemon. An attacker could exploit this vulnerability by using the static community string in SNMP version 2c queries to an affected device. A successful exploit could allow the attacker to read any data that is accessible via SNMP on the affected device. Note: The static credentials are defined in an internal configuration file and are not visible in the current operation configuration (\u0027running-config\u0027) or the startup configuration (\u0027startup-config\u0027). Cisco Bug IDs: CSCvi40137."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-798",
              "description": "CWE-798",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-07-03T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1041078",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1041078"
        },
        {
          "name": "104590",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/104590"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2018-0329",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Wide Area Application Services unknown",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Wide Area Application Services unknown"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote attacker to read data from an affected device via SNMP. The vulnerability is due to a hard-coded, read-only community string in the configuration file for the SNMP daemon. An attacker could exploit this vulnerability by using the static community string in SNMP version 2c queries to an affected device. A successful exploit could allow the attacker to read any data that is accessible via SNMP on the affected device. Note: The static credentials are defined in an internal configuration file and are not visible in the current operation configuration (\u0027running-config\u0027) or the startup configuration (\u0027startup-config\u0027). Cisco Bug IDs: CSCvi40137."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-798"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1041078",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1041078"
            },
            {
              "name": "104590",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/104590"
            },
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2018-0329",
    "datePublished": "2018-06-07T21:00:00",
    "dateReserved": "2017-11-27T00:00:00",
    "dateUpdated": "2024-11-29T15:05:10.751Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted