Vulnslist

find the latest Cisco vulnerabilities

Cisco Small Business Switches Privileged Access Vulnerability

cisco-sa-20181107-sbsw-privacc · Critical · Published · Updated

A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system. An attacker could exploit this vulnerability by using this account to log in to an affected device and execute commands with full admin rights. Cisco has not released software updates that address this vulnerability. This advisory will be updated with fixed software information once fixed software becomes available. There is a workaround to address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-sbsw-privacc

Cisco advisory ·CSAF JSON

Workarounds

The workaround consists of adding at least one user account with access privilege set to level 15 in the device configuration. The following example shows how to configure an account by using admin as user ID, setting the access privilege to level 15, and defining the password by replacing with a complex password chosen by the user. By adding this user account, the default privileged account will be disabled.

Switch# configure terminal
Switch(config)# username admin privilege 15 password

The command show running-config | include privilege 15 will now produce the following output:

Switch# show running-config | include privilege 15
username admin password encrypted privilege 15

CVEsCVE-2018-15439
Cisco Bug IDsCSCvk20713, CSCvm11846
CVSS ScoreBase 9.8
Base 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco Small Business 300 Series Managed Switches, Cisco Small Business 500 Series Stackable Managed Switches, Cisco 350 Series Managed Switches, Cisco 350X Series Stackable Managed Switches, Cisco 550X Series Stackable Managed Switches

Related Products

Product CVE Evidence
Cisco Small Business 500 Series Stackable Managed Switches CVE-2018-15439 Cisco OpenVuln
Cisco Small Business 300 Series Managed Switches CVE-2018-15439 Cisco OpenVuln
Cisco 550X Series Stackable Managed Switches CVE-2018-15439 Cisco OpenVuln
Cisco 350X Series Stackable Managed Switches CVE-2018-15439 Cisco OpenVuln
Cisco 350 Series Managed Switches CVE-2018-15439 Cisco OpenVuln