Cisco Content Services Switch (11500) Unauthenticated Port Forwarding Vulnerability

A vulnerability in the Management Interface of the Cisco Content Services Switch (11500) could allow an unauthenticated, remote attacker to gain unauthorized access to other devices on the network.

The vulnerability is due to improper handling of SSH packets. An attacker could exploit this vulnerability by sending crafted packets to the Management Interface on the Cisco Content Services Switch (CSS).

Cisco has confirmed the vulnerability; however, software updates are not available.

To exploit this vulnerability, an attacker may need to acquire additional information, such as the IP address of the Management Interface on a targeted device in order to send crafted packets to the device.

Cisco indicates through the CVSS score that proof-of-concept exploit code exists; however, the code is not known to be publicly available.