CVE-2016-1335 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

The SSH implementation in Cisco StarOS before 19.3.M0.62771 and 20.x before 20.0.M0.62768 on ASR 5000 devices mishandles a multi-user public-key authentication configuration, which allows remote authenticated users to gain privileges by establishing a connection from an endpoint that was previously used for an administrator's connection, aka Bug ID CSCux22492.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cisco	Asr 5000 Series Software	16.5.2

Related Weaknesses (CWE)

CWE-264

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
http://www.securitytracker.com/id/1035062Third Party AdvisoryVDB Entry
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
http://www.securitytracker.com/id/1035062Third Party AdvisoryVDB Entry

FAQ

What is CVE-2016-1335?

CVE-2016-1335 is a vulnerability with a CVSS score of 7.5 (HIGH). The SSH implementation in Cisco StarOS before 19.3.M0.62771 and 20.x before 20.0.M0.62768 on ASR 5000 devices mishandles a multi-user public-key authentication configuration, which allows remote authe...

How severe is CVE-2016-1335?

CVE-2016-1335 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-1335?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Asr 5000 Series Software.