Privilege escalation in Cisco Stealthwatch

Published: 2018-11-08 12:21:21
Severity High
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2018-15394
CVSSv3 8.5 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CWE ID CWE-592
Exploitation vector Network
Public exploit Not available
Vulnerable software Cisco Stealthwatch
Vulnerable software versions Cisco Stealthwatch 6.10
Cisco Stealthwatch 6.9
Cisco Stealthwatch 6.8
Cisco Stealthwatch 6.7
Vendor URL Cisco Systems, Inc

Security Advisory

1) Authentication bypass

Description

The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The vulnerability exists due to an insecure system configuration. A remote unauthenticated attacker can send a specially crafted HTTP request to the targeted application, bypass authentication and gain elevated privileges in the SMC.

Remediation

The vulnerability has been fixed in the versions 6.7.5, 6.8.4, 6.9.5, 6.10.3.

External links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-smc-auth-byp...

Back to List