#VU17225 Privilege escalation in Cisco SD-WAN - CVE-2019-1646

Cybersecurity Help s.r.o.

Published: 2019-01-25

Vulnerability identifier: #VU17225

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-1646

CWE-ID: CWE-264

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Cisco SD-WAN
Client/Desktop applications / Virtualization software

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a local authenticated attacker to gain elevated privileges on an affected device.

The vulnerability exists due to user input is not properly sanitized for certain commands at the CLI. A local authenticated attacker can send specially crafted commands to the CLI of an affected device, establish an interactive session with elevated privileges and further compromise the device or obtain additional configuration data from the device.

Mitigation
Update to version 18.4.0.

Vulnerable software versions

Cisco SD-WAN: before 18.4.0

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-sdwan-escal

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Cisco SD-WAN