Cisco IOS XE Software Web UI Remote Access Privilege Escalation Vulnerability

2018-03-2816:00:00

tools.cisco.com

0.002 Low

EPSS

Percentile

58.4%

JSON

A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privileges on an affected device.

The vulnerability exists because the affected software does not reset the privilege level for each web UI session. An attacker who has valid credentials for an affected device could exploit this vulnerability by remotely accessing a VTY line to the device. A successful exploit could allow the attacker to access an affected device with the privileges of the user who previously logged in to the web UI.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-xepriv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-xepriv”]
This advisory is part of the March 28, 2018, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 20 Cisco Security Advisories that describe 22 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: March 2018 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-66682”].

Affected configurations

Vulners

Node

ciscorvs4000_softwareMatch16.1

ciscorvs4000_softwareMatch16.2

ciscorvs4000_softwareMatch16.3

ciscorvs4000_softwareMatch16.4

ciscorvs4000_softwareMatch16.5

ciscorvs4000_softwareMatch16.6

ciscorvs4000_softwareMatch16.9

ciscorvs4000_softwareMatch16.1.1

ciscorvs4000_softwareMatch16.1.2

ciscorvs4000_softwareMatch16.1.3

ciscorvs4000_softwareMatch16.2.1

ciscorvs4000_softwareMatch16.2.2

ciscorvs4000_softwareMatch16.3.1

ciscorvs4000_softwareMatch16.3.2

ciscorvs4000_softwareMatch16.3.3

ciscorvs4000_softwareMatch16.3.1a

ciscorvs4000_softwareMatch16.3.4

ciscorvs4000_softwareMatch16.4.1

ciscorvs4000_softwareMatch16.4.2

ciscorvs4000_softwareMatch16.5.1

ciscorvs4000_softwareMatch16.5.1a

ciscorvs4000_softwareMatch16.5.1b

ciscorvs4000_softwareMatch16.5.2

ciscorvs4000_softwareMatch16.6.1

ciscorvs4000_softwareMatch16.9.1b

CPENameOperatorVersion
cisco ios xe softwareeq16.1
cisco ios xe softwareeq16.2
cisco ios xe softwareeq16.3
cisco ios xe softwareeq16.4
cisco ios xe softwareeq16.5
cisco ios xe softwareeq16.6
cisco ios xe softwareeq16.9
cisco ios xe softwareeq16.1.1
cisco ios xe softwareeq16.1.2
cisco ios xe softwareeq16.1.3

Name	Operator	Version
cisco ios xe software	eq	16.1
cisco ios xe software	eq	16.2
cisco ios xe software	eq	16.3
cisco ios xe software	eq	16.4
cisco ios xe software	eq	16.5
cisco ios xe software	eq	16.6
cisco ios xe software	eq	16.9
cisco ios xe software	eq	16.1.1
cisco ios xe software	eq	16.1.2
cisco ios xe software	eq	16.1.3