SB2018030913 - Privilege escalation in Cisco ASR 5000 Series Router
Published: March 9, 2018 Updated: March 10, 2018
Security Bulletin ID
SB2018030913
CSH Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Command injection (CVE-ID: CVE-2018-0217)
CWE-ID: CWE-77 - Command injection
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers due to insufficient validation of commands that are supplied to certain configurations in the CLI. A local attacker can inject specially crafted arguments into a vulnerable CLI command, insert and execute arbitrary commands in the CLI.
2) Privilege escalation (CVE-ID: CVE-2018-0224)
CWE-ID: CWE-77 - Command injection
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers due toinsufficient validation of user-supplied input. A local attacker can inject malicious arguments into a vulnerable CLI command and execute arbitrary commands with root privileges.
Remediation
Install update from vendor's website.