CVE-2019-1804

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.

CVSS v3.0 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:nexus_9332pq_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:cisco:nexus_93180yc-ex_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_93180yc-ex:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:cisco:nexus_93128tx_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:cisco:nexus_93120tx_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:cisco:nexus_93108tc-ex_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_93108tc-ex:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:cisco:nexus_9516_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9516:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:cisco:nexus_9508_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9508:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:cisco:nexus_9504_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9504:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:cisco:nexus_9500_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9500:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:cisco:nexus_9396tx_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:cisco:nexus_9396px_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:cisco:nexus_9372tx_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:cisco:nexus_9372px_firmware:14.0\(3d\):*:*:*:*:*:*:*

cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:*

Information

Published : 2019-05-03 10:29

Updated : 2021-11-03 12:57

NVD link : CVE-2019-1804

Mitre link : CVE-2019-1804

JSON object : View

CWE

CWE-1188

Insecure Default Initialization of Resource

Products Affected

cisco

nexus_9500_firmware
nexus_9372px
nexus_93108tc-ex
nexus_93108tc-ex_firmware
nexus_93120tx_firmware
nexus_9396px_firmware
nexus_9372tx_firmware
nexus_93128tx_firmware
nexus_9396tx_firmware
nexus_9504_firmware
nexus_93120tx
nexus_93180yc-ex
nexus_93180yc-ex_firmware
nexus_9516
nexus_9332pq_firmware
nexus_9504
nexus_9516_firmware
nexus_93128tx
nexus_9372tx
nexus_9372px_firmware
nexus_9500
nexus_9332pq
nexus_9396px
nexus_9508_firmware
nexus_9508
nexus_9396tx

9.8 /10