Cisco Tidal Enterprise Scheduler Agent Privilege Escalation Vulnerability

A vulnerability in Cisco Tidal Enterprise Scheduler Agent could allow an authenticated, local attacker to execute arbitrary commands on the affected system with the privileges of the root user.

The vulnerability is due to insufficient validation of the Tidal Job Buffers (TJB) parameters when the component is executed. An authenticated but unprivileged attacker could exploit this vulnerability by crafting a rogue caller of TJB and executing it on the affected system. The attacker needs access to the scheduler agent on the local machine to execute the attack.

Cisco has confirmed the vulnerability in a security notice and released software updates.

To exploit this vulnerability, an attacker would need local access to the targeted device. This access requirement would likely decrease the possibility of a successful exploit.

Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.