Authentication flaw

2023-02-2320:15:00

PRIOn knowledge base

www.prio-n.com

authentication bypass

cisco

vulnerability

physical access

ucs fabric interconnect

improper implementation

password validation

console port

denial of service

5.4 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.0%

JSON

A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender (FEX) when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. This vulnerability is due to the improper implementation of the password validation function. An attacker could exploit this vulnerability by logging in to the console port on an affected device. A successful exploit could allow the attacker to bypass authentication and execute a limited set of commands local to the FEX, which could cause a device reboot and denial of service (DoS) condition.

CPENameOperatorVersion
ucs_central_softwarege4.2
ucs_central_softwarelt4.2
ucs_central_softwarege4.2
ucs_central_softwarelt4.2
ucs_central_softwarege4.2
ucs_central_softwarelt4.2

Name	Operator	Version
ucs_central_software	ge	4.2
ucs_central_software	lt	4.2
ucs_central_software	ge	4.2
ucs_central_software	lt	4.2
ucs_central_software	ge	4.2
ucs_central_software	lt	4.2