Lucene search

[email protected]CVE-2019-1804

HistoryMay 03, 2019 - 5:29 p.m.

CVE-2019-1804

2019-05-0317:29:00

CWE-1188

[email protected]

web.nvd.nist.gov

cisco

nexus

vulnerability

ssh

key management

remote access

cve-2019-1804

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

71.4%

JSON

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.

CPENameOperatorVersion
cisco:nexus_9332pq_firmwarecisco nexus 9332pq firmwareeq14.0\(3d\)
cisco:nexus_93180yc-ex_firmwarecisco nexus 93180yc-ex firmwareeq14.0\(3d\)
cisco:nexus_93128tx_firmwarecisco nexus 93128tx firmwareeq14.0\(3d\)
cisco:nexus_93120tx_firmwarecisco nexus 93120tx firmwareeq14.0\(3d\)
cisco:nexus_93108tc-ex_firmwarecisco nexus 93108tc-ex firmwareeq14.0\(3d\)
cisco:nexus_9516_firmwarecisco nexus 9516 firmwareeq14.0\(3d\)
cisco:nexus_9508_firmwarecisco nexus 9508 firmwareeq14.0\(3d\)
cisco:nexus_9504_firmwarecisco nexus 9504 firmwareeq14.0\(3d\)
cisco:nexus_9500_firmwarecisco nexus 9500 firmwareeq14.0\(3d\)
cisco:nexus_9396tx_firmwarecisco nexus 9396tx firmwareeq14.0\(3d\)

CPE	Name	Operator	Version
cisco:nexus_9332pq_firmware	cisco nexus 9332pq firmware	eq	14.0\(3d\)
cisco:nexus_93180yc-ex_firmware	cisco nexus 93180yc-ex firmware	eq	14.0\(3d\)
cisco:nexus_93128tx_firmware	cisco nexus 93128tx firmware	eq	14.0\(3d\)
cisco:nexus_93120tx_firmware	cisco nexus 93120tx firmware	eq	14.0\(3d\)
cisco:nexus_93108tc-ex_firmware	cisco nexus 93108tc-ex firmware	eq	14.0\(3d\)
cisco:nexus_9516_firmware	cisco nexus 9516 firmware	eq	14.0\(3d\)
cisco:nexus_9508_firmware	cisco nexus 9508 firmware	eq	14.0\(3d\)
cisco:nexus_9504_firmware	cisco nexus 9504 firmware	eq	14.0\(3d\)
cisco:nexus_9500_firmware	cisco nexus 9500 firmware	eq	14.0\(3d\)
cisco:nexus_9396tx_firmware	cisco nexus 9396tx firmware	eq	14.0\(3d\)

Rows per page:

1-10 of 131

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

71.4%

JSON

Related for CVE-2019-1804

attackerkb1 nessus1 cvelist1 prion1 cisco1 threatpost3