Cisco – Page 156 – Intelligent Systems Monitoring

Cisco Prime Infrastructure Information Disclosure Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote attacker to view sensitive information.

The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit this vulnerability by sending a GET request to a vulnerable device. A successful exploit could allow the attacker to view sensitive information.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-prime-id

Security Impact Rating: Medium

CVE: CVE-2018-15433

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco Prime Infrastructure Arbitrary File Upload and Command Execution Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote attacker to upload an arbitrary file. This file could allow the attacker to execute commands at the privilege level of the user prime. This user does not have administrative or root privileges.

The vulnerability is due to an incorrect permission setting for important system directories. An attacker could exploit this vulnerability by uploading a malicious file by using TFTP, which can be accessed via the web-interface GUI. A successful exploit could allow the attacker to run commands on the targeted application without authentication.

Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp

Security Impact Rating: Critical

CVE: CVE-2018-15379

Multiple Vulnerabilities in Cisco Identity Services Engine

October 2, 2018October 2, 2018 Cisco Leave a comment

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device with the privileges of the web server.

For more information about these vulnerabilities, see the Details section of this security advisory.

There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-ise-mult-vulns

Security Impact Rating: Medium

CVE: CVE-2018-15424,CVE-2018-15425

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

The vulnerability is due to incorrect processing of certain BGP update messages. An attacker could exploit this vulnerability by sending BGP update messages that include a specific, malformed attribute to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition.

The Cisco implementation of BGP accepts incoming BGP traffic only from explicitly defined peers. To exploit this vulnerability, the malicious BGP update message would need to come from a configured, valid BGP peer, or would need to be injected by the attacker into the victim’s BGP network on an existing, valid TCP connection to a BGP peer.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-iosxr-dos

Security Impact Rating: Medium

CVE: CVE-2018-15428

Cisco Industrial Network Director DHCP Request Processing Denial of Service Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition.

The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vulnerability by sending malicious DHCP lease requests to an affected application. A successful exploit could allow the attacker to cause the DHCP service to terminate, resulting in a DoS condition.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-ind-dos

Security Impact Rating: Medium

CVE: CVE-2018-15392

Cisco Industrial Network Director Cross-Site Request Forgery Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the web-based management interface of Cisco Industrial Network Director could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device.

The vulnerability is due to insufficient CSRF protections for the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious, customized link. A successful exploit could allow the attacker to perform arbitrary actions on the affected device via a web browser and with the privileges of the user.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-ind-csrf

Security Impact Rating: Medium

CVE: CVE-2018-0446

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco Integrated Management Controller Supervisor and Cisco UCS Director Authenticated Web Interface Information Disclosure Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the web interface for specific feature sets of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote attacker to access sensitive information.

The vulnerability is due to an authorization check that does not properly include the access level of the web interface user. An attacker who has valid application credentials could exploit this vulnerability by sending a crafted HTTP request to the web interface. A successful exploit could allow the attacker to view sensitive information that belongs to other users. The attacker could then use this information to conduct additional reconnaissance attacks.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-imcs-ucsd-id

Security Impact Rating: Medium

CVE: CVE-2018-15405

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco Integrated Management Controller Supervisor and Cisco UCS Director System Resources Denial of Service Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected system.

The vulnerability is due to insufficient restrictions on the size or total amount of resources allowed via the web interface. An attacker who has valid credentials for the application could exploit this vulnerability by sending a crafted or malformed HTTP request to the web interface. A successful exploit could allow the attacker to cause oversubscription of system resources or cause a component to become unresponsive, resulting in a DoS condition.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-imcs-ucsd-dos

Security Impact Rating: Medium

CVE: CVE-2018-15404

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco HyperFlex HX Data Platform Software Unauthorized Directory Access Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in the web-based UI of Cisco HyperFlex HX Data Platform Software could allow an unauthenticated, remote attacker to access sensitive information on an affected system.

The vulnerability is due to a lack of proper input and authorization of HTTP requests. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web-based UI of an affected system. A successful exploit could allow the attacker to access files that may contain sensitive data.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-hyperflex-uda

Security Impact Rating: Medium

CVE: CVE-2018-15429

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Cisco HyperFlex Software Static Signing Key Vulnerability

October 2, 2018October 2, 2018 Cisco Leave a comment

A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to generate valid, signed session tokens.

The vulnerability is due to a static signing key that is present in all Cisco HyperFlex systems. An attacker could exploit this vulnerability by accessing the static signing key from one HyperFlex system and using it to generate valid, signed session tokens for another HyperFlex system. A successful exploit could allow the attacker to access the HyperFlex Web UI of a system for which they are not authorized.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-hyperflex-secret

Security Impact Rating: High

CVE: CVE-2018-15382

Building an MS-DFS environment containing NSS4AD volumes and making it available through Filr

Author: Cisco

Cisco Prime Infrastructure Information Disclosure Vulnerability

Related:

Cisco Prime Infrastructure Arbitrary File Upload and Command Execution Vulnerability

Related:

Multiple Vulnerabilities in Cisco Identity Services Engine

Related:

Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability

Related:

Cisco Industrial Network Director DHCP Request Processing Denial of Service Vulnerability

Related:

Cisco Industrial Network Director Cross-Site Request Forgery Vulnerability

Related:

Cisco Integrated Management Controller Supervisor and Cisco UCS Director Authenticated Web Interface Information Disclosure Vulnerability

Related:

Cisco Integrated Management Controller Supervisor and Cisco UCS Director System Resources Denial of Service Vulnerability

Related:

Cisco HyperFlex HX Data Platform Software Unauthorized Directory Access Vulnerability

Related:

Cisco HyperFlex Software Static Signing Key Vulnerability

Related:

Links