A vulnerability in the SSH CLI key management functionality of Cisco NX-OS Software could allow an authenticated, local attacker to expose a user's private SSH key to all authenticated users on the targeted device. The attacker must authenticate with valid administrator device credentials. The vulnerability is due to incomplete error handling if a specific error type occurs during the SSH key export. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the CLI. A successful exploit could allow the attacker to expose a user's private SSH key. In addition, a similar type of error in the SSH key import could cause the passphrase-protected private SSH key to be imported unintentionally.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-nxos-ssh-info | Vendor Advisory |
http://www.securityfocus.com/bid/108353 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Information
Published : 2019-05-15 10:29
Updated : 2020-10-09 10:14
NVD link : CVE-2019-1731
Mitre link : CVE-2019-1731
JSON object : View
CWE
CWE-755
Improper Handling of Exceptional Conditions
Products Affected
cisco
- nexus_9372tx-e
- nexus_3132c-z
- nexus_36180yc-r
- nexus_9236c
- nexus_9336pq_aci_spine
- nexus_9372px
- nexus_93108tc-ex
- nexus_9336c-fx2
- nexus_5624q
- nexus_93240yc-fx2
- nexus_3636c-r
- nexus_3548-x
- nexus_93108tc-fx
- nexus_6004
- nexus_31108tc-v
- nexus_3164q
- nexus_92348gc-x
- nexus_3172pq-xl
- nexus_3132q
- nexus_3408-s
- nexus_93120tx
- nexus_3172
- nexus_9372px-e
- nexus_3064-t
- nexus_3016
- nexus_3264q
- nexus_93180lc-ex
- nexus_93216tc-fx2
- nexus_5596up
- nexus_3524-xl
- nexus_93360yc-fx2
- nexus_34180yc
- nexus_3524
- nexus_93180yc-ex
- nexus_5672up
- nexus_9516
- nexus_3524-x
- nexus_3232c
- nexus_3172tq-xl
- nexus_92160yc-x
- nexus_9364c
- nexus_5596t
- nexus_92300yc
- nexus_6001
- nexus_9272q
- nexus_9504
- nexus_3432d-s
- nexus_3548
- nexus_93128tx
- nexus_31108pc-v
- nexus_9372tx
- nexus_3172tq
- nexus_93180yc-fx
- nexus_9332c
- nexus_3464c
- nx-os
- nexus_56128p
- nexus_5696q
- nexus_9396px
- nexus_9332pq
- nexus_3132q-xl
- nexus_9000v
- nexus_92304qc
- nexus_3172tq-32t
- nexus_9348gc-fxp
- nexus_3548-xl
- nexus_3132q-v
- nexus_3048
- nexus_5648q
- nexus_31128pq
- nexus_5548p
- nexus_3264c-e
- nexus_5548up
- nexus_3064
- nexus_9508
- nexus_9396tx