Main Vulnerability Database Vulnerabilities #VU13222

Information disclosure (backdoor) in Cisco Wide Area Application Services - CVE-2018-0329

Published: June 7, 2018 / Updated: June 8, 2018

Vulnerability identifier: #VU13222

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-0329

CWE-ID: CWE-798

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Cisco Systems, Inc

Affected software:
Cisco Wide Area Application Services

Detailed vulnerability description

The vulnerability allows a remote attacker to obtain potentially sensitive information the target system.

The vulnerability exists in the default configuration of the Simple Network Management Protocol (SNMP) feature of Cisco Wide Area Application Services (WAAS) Software due to a hard-coded, read-only community string in the configuration file for the SNMP daemon. A remote attacker can use a backdoor account and the static community string in SNMP version 2c queries and read any data that is accessible via SNMP.

Note: The static credentials are defined in an internal configuration file and are not visible in the current operation configuration ('running-config') or the startup configuration ('startup-config').

How to mitigate CVE-2018-0329

The vulnerability is addressed in the following versions: 6.4(3.46), 6.4(1b)15, 6.2(3e)31.

Sources

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-waas-snmp

Information disclosure (backdoor) in Cisco Wide Area Application Services - CVE-2018-0329

Detailed vulnerability description

How to mitigate CVE-2018-0329

Sources

Please verify you're human