Details of VAR-201711-0324

ID

VAR-201711-0324

CVE

CVE-2017-12329

TITLE

Cisco Firepower Extensible Operating System and NX-OS Command injection vulnerability in system software

Trust: 0.8

sources: JVNDB: JVNDB-2017-010549

DESCRIPTION

A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments to the CLI parser. An attacker could exploit this vulnerability by injecting crafted command arguments into a vulnerable CLI command. An exploit could allow the attacker to execute arbitrary commands at the user's privilege level. On products that support multiple virtual device contexts (VDCs), this vulnerability could allow the attacker to execute commands at the user's privilege level outside the user's environment. This vulnerability affects the following products running Cisco FXOS or NX-OS System Software: Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, Multilayer Director Switches, Nexus 1000V Series Switches, Nexus 2000 Series Fabric Extenders, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 5000 Series Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in standalone NX-OS mode, Nexus 9500 R-Series Line Cards and Fabric Modules, Unified Computing System Manager. Cisco Bug IDs: CSCve51700, CSCve93833, CSCve93860, CSCve93863, CSCve93864, CSCve93880. Vendors have confirmed this vulnerability Bug ID CSCve51700 , CSCve93833 , CSCve93860 , CSCve93863 , CSCve93864 ,and CSCve93880 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Cisco Firepower 4100 Series Next-GenerationFirewall and so on are products of Cisco. The Cisco Firepower 4100 Series Next-Generation Firewall is a firewall device. MultilayerDirectorSwitches is a switch product. FirepowerExtensibleOperatingSystem (FXOS) is a set of operating systems running on a firewall. NX-OSSystemSoftware is a set of operating systems running on switches. Cisco FXOS and NX-OS System Software are prone to a local command-injection vulnerability because it fails to properly sanitize user-supplied input

Trust: 2.52

sources: NVD: CVE-2017-12329 // JVNDB: JVNDB-2017-010549 // CNVD: CNVD-2017-36398 // BID: 102015 // VULHUB: VHN-102840

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-36398

AFFECTED PRODUCTS

vendor:	cisco	model:	nx-os	scope:	eq	version:	8.1\(0\)bd\(0.20\)	Trust: 1.6
vendor:	cisco	model:	nx-os	scope:	eq	version:	8.0\(1\)	Trust: 1.6
vendor:	cisco	model:	unified computing system	scope:	eq	version:	7.0\(0\)hsk\(0.357\)	Trust: 1.6
vendor:	cisco	model:	nx-os	scope:	eq	version:	5.2\(1\)sv3\(2.8\)	Trust: 1.6
vendor:	cisco	model:	firepower extensible operating system	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	nx-os	scope:	eq	version:	8.1\(0.2\)s0	Trust: 1.6
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	70000	Trust: 0.9
vendor:	cisco	model:	firepower extensible operating system	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	nx-os	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	unified computing system central software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	1000v	Trust: 0.6
vendor:	cisco	model:	nexus series switche	scope:	eq	version:	3000	Trust: 0.6
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	5000	Trust: 0.6
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	6000	Trust: 0.6
vendor:	cisco	model:	firepower series	scope:	eq	version:	4100	Trust: 0.6
vendor:	cisco	model:	nexus series switches in nx-os mode	scope:	eq	version:	9000	Trust: 0.6
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	7700	Trust: 0.6
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	5600	Trust: 0.6
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	5500	Trust: 0.6
vendor:	cisco	model:	nexus series fabric extenders	scope:	eq	version:	2000	Trust: 0.6
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	3500	Trust: 0.6
vendor:	cisco	model:	multilayer director switches	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	firepower series next-generation firewall	scope:	eq	version:	4100	Trust: 0.6
vendor:	cisco	model:	firepower security appliance	scope:	eq	version:	9300	Trust: 0.6
vendor:	cisco	model:	unified computing system manager	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	nexus r-series line cards and fabric modules	scope:	eq	version:	9500	Trust: 0.6
vendor:	cisco	model:	unified computing system manager	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	nx-os	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	nexus r-series line cards and fabric modules	scope:	eq	version:	95000	Trust: 0.3
vendor:	cisco	model:	nexus series switches standalone nx-os mode	scope:	eq	version:	9000-0	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	77000	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	60000	Trust: 0.3
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	56000	Trust: 0.3
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	55000	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	50000	Trust: 0.3
vendor:	cisco	model:	nexus platform switches	scope:	eq	version:	35000	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	30000	Trust: 0.3
vendor:	cisco	model:	nexus series fabric extenders	scope:	eq	version:	20000	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	1000v0	Trust: 0.3
vendor:	cisco	model:	multilayer director switches	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	firepower extensible operating system	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	firepower security appliance	scope:	eq	version:	93000	Trust: 0.3
vendor:	cisco	model:	firepower series next-generation firewall	scope:	eq	version:	41000	Trust: 0.3

sources: CNVD: CNVD-2017-36398 // BID: 102015 // JVNDB: JVNDB-2017-010549 // CNNVD: CNNVD-201711-1235 // NVD: CVE-2017-12329

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-12329
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-12329
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-36398
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201711-1235
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-102840
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-12329
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-36398
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:L/AC:L/AU:S/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.1
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-102840
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-12329
baseSeverity:	MEDIUM
baseScore:	6.3
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	LOW
exploitabilityScore:	2.0
impactScore:	3.7
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-36398 // VULHUB: VHN-102840 // JVNDB: JVNDB-2017-010549 // CNNVD: CNNVD-201711-1235 // NVD: CVE-2017-12329

PROBLEMTYPE DATA

problemtype:

CWE-77

Trust: 1.9

sources: VULHUB: VHN-102840 // JVNDB: JVNDB-2017-010549 // NVD: CVE-2017-12329

THREAT TYPE

local

Trust: 0.9

sources: BID: 102015 // CNNVD: CNNVD-201711-1235

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-201711-1235

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-010549

PATCH

title:	cisco-sa-20171129-fxnx	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-fxnx	Trust: 0.8
title:	Patches for various Cisco products MultilayerDirectorSwitches and FirepowerExtensibleOperatingSystem commands to inject vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/108215	Trust: 0.6
title:	Multiple Cisco product Multilayer Director Switches and Firepower Extensible Operating System Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=76853	Trust: 0.6

sources: CNVD: CNVD-2017-36398 // JVNDB: JVNDB-2017-010549 // CNNVD: CNNVD-201711-1235

EXTERNAL IDS

db:	NVD	id:	CVE-2017-12329	Trust: 3.4
db:	BID	id:	102015	Trust: 2.0
db:	SECTRACK	id:	1039928	Trust: 1.7
db:	JVNDB	id:	JVNDB-2017-010549	Trust: 0.8
db:	CNNVD	id:	CNNVD-201711-1235	Trust: 0.7
db:	CNVD	id:	CNVD-2017-36398	Trust: 0.6
db:	VULHUB	id:	VHN-102840	Trust: 0.1

sources: CNVD: CNVD-2017-36398 // VULHUB: VHN-102840 // BID: 102015 // JVNDB: JVNDB-2017-010549 // CNNVD: CNNVD-201711-1235 // NVD: CVE-2017-12329

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20171129-fxnx	Trust: 2.6
url:	http://www.securityfocus.com/bid/102015	Trust: 1.7
url:	http://www.securitytracker.com/id/1039928	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-12329	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-12329	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: CNVD: CNVD-2017-36398 // VULHUB: VHN-102840 // BID: 102015 // JVNDB: JVNDB-2017-010549 // CNNVD: CNNVD-201711-1235 // NVD: CVE-2017-12329

CREDITS

Cisco.

Trust: 0.3

sources: BID: 102015

SOURCES

db:	CNVD	id:	CNVD-2017-36398
db:	VULHUB	id:	VHN-102840
db:	BID	id:	102015
db:	JVNDB	id:	JVNDB-2017-010549
db:	CNNVD	id:	CNNVD-201711-1235
db:	NVD	id:	CVE-2017-12329

LAST UPDATE DATE

2024-11-23T22:12:48.050000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-36398	date:	2017-12-06T00:00:00
db:	VULHUB	id:	VHN-102840	date:	2019-10-09T00:00:00
db:	BID	id:	102015	date:	2017-12-19T22:37:00
db:	JVNDB	id:	JVNDB-2017-010549	date:	2017-12-19T00:00:00
db:	CNNVD	id:	CNNVD-201711-1235	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2017-12329	date:	2024-11-21T03:09:18.977

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-36398	date:	2017-12-06T00:00:00
db:	VULHUB	id:	VHN-102840	date:	2017-11-30T00:00:00
db:	BID	id:	102015	date:	2017-11-29T00:00:00
db:	JVNDB	id:	JVNDB-2017-010549	date:	2017-12-19T00:00:00
db:	CNNVD	id:	CNNVD-201711-1235	date:	2017-12-01T00:00:00
db:	NVD	id:	CVE-2017-12329	date:	2017-11-30T09:29:00.290