Lucene search

CiscoCISCO-SA-20150724-CVE-2015-4288

HistoryJul 24, 2015 - 7:21 p.m.

Multiple Cisco Products LDAP Server SSL Certificate Validation Vulnerability

2015-07-2419:21:06

tools.cisco.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.001

Percentile

20.4%

JSON

A vulnerability in SSL certificate validation of multiple Cisco products could allow an unauthenticated, remote attacker to stage a man-in-the-middle attack.

The vulnerability is due to lack of SSL certificate validation for secure LDAP. An attacker could exploit this vulnerability to stage a man-in-the-middle attack when secure LDAP is enabled on an affected device. Successful exploitation could allow the attacker to access sensitive information.

Cisco has confirmed the vulnerability; however, software updates are not available.

To exploit this vulnerability, an attacker must be in a position in the network to conduct a man-in-the-middle attack between devices communicating with the targeted device. In addition, the attacker may need to acquire additional information about the device, such as whether secure LDAP is enabled on the device. This feature must be enabled for a successful exploit.

Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.

Affected configurations

Vulners

Node

ciscoweb_security_appliance_\(wsa\)Matchany

ciscoemail_security_applianceMatchany

ciscocontent_security_management_applianceMatchany

ciscoweb_security_appliance_\(wsa\)Matchany

ciscoemail_security_applianceMatchany

ciscocontent_security_management_applianceMatchany

VendorProductVersionCPE
ciscoweb_security_appliance_\(wsa\)anycpe:2.3:a:cisco:web_security_appliance_\(wsa\):any:*:*:*:*:*:*:*
ciscoemail_security_applianceanycpe:2.3:h:cisco:email_security_appliance:any:*:*:*:*:*:*:*
ciscocontent_security_management_applianceanycpe:2.3:h:cisco:content_security_management_appliance:any:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	web_security_appliance_\(wsa\)	any	cpe:2.3:a:cisco:web_security_appliance_\(wsa\):any:::::::*
cisco	email_security_appliance	any	cpe:2.3:h:cisco:email_security_appliance:any:::::::*
cisco	content_security_management_appliance	any	cpe:2.3:h:cisco:content_security_management_appliance:any:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150724-CVE-2015-4288

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.001

Percentile

20.4%

JSON

Related for CISCO-SA-20150724-CVE-2015-4288