Improper authentication in Cisco UCS Director

#VU12059 Improper authentication in Cisco UCS Director

Published: 2018-04-20

Vulnerability identifier: #VU12059

Vulnerability risk: Low

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-0238

CWE-ID: CWE-287

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cisco UCS Director
Server applications / Other server solutions

Vendor: Cisco Systems, Inc

Description
The vulnerability allows a remote authenticated attacker to obtain potentially sensitive information and write arbitrary files on the target system.

The weakness exists in the role-based resource checking functionality due to improper user authentication checks. A remote attacker can log in to the UCS Director with a modified username and valid password, gain visibility into and perform actions against all virtual machines in the UCS Director end-user portal of the affected system.

Mitigation
Update to versions 6.6.0.0 or 6.5.0.3.

Vulnerable software versions

Cisco UCS Director: 6.5.0.0 - 6.5.0.1

External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-uscd

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Improper authentication in Cisco UCS Director