The vulnerability of the network operating system NX-OS for Cisco Nexus 9000 series routers, related to errors in SSH credentials, allows a hacker to elevate their privileges to the root level.

🗓️ 16 May 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

NX-OS on Cisco Nexus 9000 devices has SSH key management flaws enabling root privilege via IPv6 SSH.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability	3 May 201900:00	–	attackerkb
Circl	CVE-2019-1804	2 May 201916:49	–	circl
Cisco	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability	1 May 201916:00	–	cisco
Tenable Nessus	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability (cisco-sa-20190501-nexus9k-sshkey)	3 Jun 202000:00	–	nessus
CVE	CVE-2019-1804	3 May 201916:25	–	cve
Cvelist	CVE-2019-1804 Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability	3 May 201916:25	–	cvelist
EUVD	EUVD-2019-10361	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1804	3 May 201917:29	–	nvd
OSV	CVE-2019-1804	3 May 201917:29	–	osv
Prion	Design/Logic Flaw	3 May 201917:29	–	prion

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-1804
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 39.8

CVSS 210

EPSS0.04104

Cisco Nexus 9000 Secure Shell Key management