Vulnerability Description
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nexus 9332Pq Firmware | 14.0\(3d\) |
| Cisco | Nexus 9332Pq | - |
| Cisco | Nexus 93180Yc-Ex Firmware | 14.0\(3d\) |
| Cisco | Nexus 93180Yc-Ex | - |
| Cisco | Nexus 93128Tx Firmware | 14.0\(3d\) |
| Cisco | Nexus 93128Tx | - |
| Cisco | Nexus 93120Tx Firmware | 14.0\(3d\) |
| Cisco | Nexus 93120Tx | - |
| Cisco | Nexus 93108Tc-Ex Firmware | 14.0\(3d\) |
| Cisco | Nexus 93108Tc-Ex | - |
| Cisco | Nexus 9516 Firmware | 14.0\(3d\) |
| Cisco | Nexus 9516 | - |
| Cisco | Nexus 9508 Firmware | 14.0\(3d\) |
| Cisco | Nexus 9508 | - |
| Cisco | Nexus 9504 Firmware | 14.0\(3d\) |
| Cisco | Nexus 9504 | - |
| Cisco | Nexus 9500 Firmware | 14.0\(3d\) |
| Cisco | Nexus 9500 | - |
| Cisco | Nexus 9396Tx Firmware | 14.0\(3d\) |
| Cisco | Nexus 9396Tx | - |
Related Weaknesses (CWE)
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2019-1804?
CVE-2019-1804 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to th...
How severe is CVE-2019-1804?
CVE-2019-1804 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-1804?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nexus 9332Pq Firmware, Cisco Nexus 9332Pq, Cisco Nexus 93180Yc-Ex Firmware, Cisco Nexus 93180Yc-Ex, Cisco Nexus 93128Tx Firmware.