CVE-2018-0293 — HIGH (8.8) — White Hats Nepal

Q: How severe is CVE-2018-0293?

CVE-2018-0293 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-0293?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 5000, Cisco Nexus 5010, Cisco Nexus 5020, Cisco Nexus 5548P.

Vulnerability Description

A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI commands that should be restricted for a nonadministrative user. The attacker would have to possess valid user credentials for the device. The vulnerability is due to incorrect RBAC privilege assignment for certain CLI commands. An attacker could exploit this vulnerability by authenticating to a device as a nonadministrative user and executing specific commands from the CLI. An exploit could allow the attacker to run commands that should be restricted to administrative users. These commands could modify the configuration or boot image on the device. This vulnerability affects MDS 9000 Series Multilayer Switches, Nexus 2000 Series Switches, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 3600 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in standalone NX-OS mode, Nexus 9500 R-Series Line Cards and Fabric Modules. Cisco Bug IDs: CSCvd77904.

CVSS Score

8.8

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cisco	Nx-Os	>= 6.0, < 7.3\(3\)n1\(1\)
Cisco	Nexus 5000	-
Cisco	Nexus 5010	-
Cisco	Nexus 5020	-
Cisco	Nexus 5548P	-
Cisco	Nexus 5548Up	-
Cisco	Nexus 5596T	-
Cisco	Nexus 5596Up	-
Cisco	Nexus 56128P	-
Cisco	Nexus 5624Q	-
Cisco	Nexus 5648Q	-
Cisco	Nexus 5672Up	-
Cisco	Nexus 5696Q	-
Cisco	Nexus 7000	-
Cisco	Nexus 7700	-
Cisco	Nexus 92160Yc-X	-
Cisco	Nexus 92304Qc	-
Cisco	Nexus 9236C	-
Cisco	Nexus 9272Q	-
Cisco	Nexus 93108Tc-Ex	-

Related Weaknesses (CWE)

CWE-78 CWE-264

References

http://www.securityfocus.com/bid/104520Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1041169Third Party AdvisoryVDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
http://www.securityfocus.com/bid/104520Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1041169Third Party AdvisoryVDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory

FAQ

What is CVE-2018-0293?

CVE-2018-0293 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an authenticated, remote attacker to execute CLI commands that should be restricted for a nonadministrative use...

How severe is CVE-2018-0293?

CVE-2018-0293 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-0293?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 5000, Cisco Nexus 5010, Cisco Nexus 5020, Cisco Nexus 5548P.