Main Vulnerability Database SB2018120408

SB2018120408 - Security restrictions bypass in Cisco Energy Management Suite

Published: December 4, 2018

Security Bulletin ID SB2018120408

CSH Severity

Low

Patch available

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Security restrictions bypass (CVE-ID: CVE-2018-0468)

CWE-ID: CWE-798 - Use of Hard-coded Credentials

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local attacker to bypass security restrictions on the target system.

The vulnerability exists due to the installation of the PostgreSQL database with unchanged default access credentials. A local authenticated attacker can log in to the machine where CEMS is installed, establish a local connection to the database and bypass security restrictions to access and alter confidential data.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181204-ems-sql-pass...