Sign-up

ID

VAR-201802-0591


CVE

CVE-2018-0122


TITLE

Cisco StarOS Operating system input validation vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-002220

DESCRIPTION

A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite system files that are stored in the flash memory of an affected system. The vulnerability is due to insufficient validation of user-supplied input by the affected operating system. An attacker could exploit this vulnerability by injecting crafted command arguments into a vulnerable CLI command for the affected operating system. A successful exploit could allow the attacker to overwrite or modify arbitrary files that are stored in the flash memory of an affected system. To exploit this vulnerability, the attacker would need to authenticate to an affected system by using valid administrator credentials. Cisco Bug IDs: CSCvf93335. Vendors have confirmed this vulnerability Bug ID CSCvf93335 It is released as.Information may be tampered with

Trust: 1.98

sources: NVD: CVE-2018-0122 // JVNDB: JVNDB-2018-002220 // BID: 103028 // VULHUB: VHN-118324

AFFECTED PRODUCTS

vendor:ciscomodel:starosscope:eqversion:21.3.0.67664

Trust: 1.6

vendor:ciscomodel:starosscope: - version: -

Trust: 0.8

vendor:ciscomodel:starosscope:eqversion:0

Trust: 0.3

vendor:ciscomodel:asr series softwarescope:eqversion:50000

Trust: 0.3

sources: BID: 103028 // JVNDB: JVNDB-2018-002220 // CNNVD: CNNVD-201802-275 // NVD: CVE-2018-0122

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0122
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-0122
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201802-275
value: MEDIUM

Trust: 0.6

VULHUB: VHN-118324
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-0122
severity: MEDIUM
baseScore: 6.6
vectorString: AV:L/AC:L/AU:N/C:N/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 9.2
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: CVE-2018-0122
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:C/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: COMPLETE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-118324
severity: MEDIUM
baseScore: 6.6
vectorString: AV:L/AC:L/AU:N/C:N/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 9.2
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0122
baseSeverity: MEDIUM
baseScore: 4.4
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 0.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2018-0122
baseSeverity: MEDIUM
baseScore: 4.4
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-118324 // JVNDB: JVNDB-2018-002220 // CNNVD: CNNVD-201802-275 // NVD: CVE-2018-0122

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

problemtype:CWE-78

Trust: 1.1

sources: VULHUB: VHN-118324 // JVNDB: JVNDB-2018-002220 // NVD: CVE-2018-0122

THREAT TYPE

local

Trust: 0.9

sources: BID: 103028 // CNNVD: CNNVD-201802-275

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201802-275

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-002220

PATCH
title:cisco-sa-20180207-asrurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-asr
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2018-002220

EXTERNAL IDS
db:NVDid:CVE-2018-0122
Trust: 2.8
db:BIDid:103028
Trust: 2.0
db:SECTRACKid:1040340
Trust: 1.7
db:JVNDBid:JVNDB-2018-002220
Trust: 0.8
db:CNNVDid:CNNVD-201802-275
Trust: 0.7
db:VULHUBid:VHN-118324
Trust: 0.1
sources:
            
            
            VULHUB: VHN-118324 // 
            
            
            
            BID: 103028 // 
            
            
            
            JVNDB: JVNDB-2018-002220 // 
            
            
            
            CNNVD: CNNVD-201802-275 // 
            
            
            
            NVD: CVE-2018-0122

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180207-asr
Trust: 2.0
url:http://www.securityfocus.com/bid/103028
Trust: 1.7
url:http://www.securitytracker.com/id/1040340
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0122
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0122
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-118324 // 
            
            
            
            BID: 103028 // 
            
            
            
            JVNDB: JVNDB-2018-002220 // 
            
            
            
            CNNVD: CNNVD-201802-275 // 
            
            
            
            NVD: CVE-2018-0122

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 103028

SOURCES
db:VULHUBid:VHN-118324
db:BIDid:103028
db:JVNDBid:JVNDB-2018-002220
db:CNNVDid:CNNVD-201802-275
db:NVDid:CVE-2018-0122

LAST UPDATE DATE
2024-11-23T23:02:12.932000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-118324date:2020-09-04T00:00:00
db:BIDid:103028date:2018-02-15T00:00:00
db:JVNDBid:JVNDB-2018-002220date:2018-04-03T00:00:00
db:CNNVDid:CNNVD-201802-275date:2020-10-22T00:00:00
db:NVDid:CVE-2018-0122date:2024-11-21T03:37:33.990

SOURCES RELEASE DATE
db:VULHUBid:VHN-118324date:2018-02-08T00:00:00
db:BIDid:103028date:2018-02-15T00:00:00
db:JVNDBid:JVNDB-2018-002220date:2018-04-03T00:00:00
db:CNNVDid:CNNVD-201802-275date:2018-02-09T00:00:00
db:NVDid:CVE-2018-0122date:2018-02-08T07:29:00.477