Improper authorization in Policy Suite

#VU13944 Improper authorization in Policy Suite

Published: 2018-07-20

Vulnerability identifier: #VU13944

Vulnerability risk: Low

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-0393

CWE-ID: CWE-285

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Policy Suite
Client/Desktop applications / File managers, FTP clients

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a remote authenticated attacker to make policy changes in the Policy Builder interface.

The vulnerability exists in the Policy Builder interface of Cisco Policy Suite due to insufficient authorization controls. A remote attacker can access the Policy Builder interface, modify an HTTP request and make changes to existing policies.

Mitigation
Update to version 18.0.2.

Vulnerable software versions

Policy Suite: 18.0.0

External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-suite...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Cisco Policy Suite