Sign-up

ID

VAR-201803-1392


CVE

CVE-2018-0176


TITLE

Cisco IOS XE In software OS Command injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-003509

DESCRIPTION

Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerabilities are due to the affected software improperly sanitizing command arguments to prevent access to internal data structures on a device. An attacker who has user EXEC mode (privilege level 1) access to an affected device could exploit these vulnerabilities on the device by executing CLI commands that contain crafted arguments. A successful exploit could allow the attacker to gain access to the underlying Linux shell of the affected device and execute arbitrary commands with root privileges on the device. Cisco Bug IDs: CSCtw85441, CSCus42252, CSCuv95370. Cisco IOS XE The software includes OS A command injection vulnerability exists. Vendors have confirmed this vulnerability Cisco Bug ID : CSCtw85441 , CSCus42252 ,and CSCuv95370 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This may aid in further attacks. CLI parser is one of the command line command parsers

Trust: 1.98

sources: NVD: CVE-2018-0176 // JVNDB: JVNDB-2018-003509 // BID: 103567 // VULHUB: VHN-118378

AFFECTED PRODUCTS

vendor:ciscomodel:ios xescope:eqversion:16.1\(0\)

Trust: 1.6

vendor:ciscomodel:ios xescope:eqversion:16.2\(0\)

Trust: 1.6

vendor:ciscomodel:ios xescope:eqversion:15.0\(5.59\)emd

Trust: 1.6

vendor:ciscomodel:ios xescope: - version: -

Trust: 0.8

vendor:ciscomodel:ios xe softwarescope:eqversion:0

Trust: 0.3

vendor:ciscomodel:iosscope:eqversion:16.2(0)

Trust: 0.3

vendor:ciscomodel:iosscope:eqversion:16.1(0)

Trust: 0.3

vendor:ciscomodel:ios 15.0 emdscope: - version: -

Trust: 0.3

sources: BID: 103567 // JVNDB: JVNDB-2018-003509 // CNNVD: CNNVD-201803-1017 // NVD: CVE-2018-0176

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0176
value: HIGH

Trust: 1.0

NVD: CVE-2018-0176
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201803-1017
value: HIGH

Trust: 0.6

VULHUB: VHN-118378
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2018-0176
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-118378
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0176
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-118378 // JVNDB: JVNDB-2018-003509 // CNNVD: CNNVD-201803-1017 // NVD: CVE-2018-0176

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.9

problemtype:CWE-264

Trust: 1.0

sources: VULHUB: VHN-118378 // JVNDB: JVNDB-2018-003509 // NVD: CVE-2018-0176

THREAT TYPE

local

Trust: 0.9

sources: BID: 103567 // CNNVD: CNNVD-201803-1017

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201803-1017

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-003509

PATCH
title:cisco-sa-20180328-privesc1url:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-privesc1
Trust: 0.8
title:Cisco IOS XE Software CLI Fixes for resolver permissions and access control vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=79485
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2018-003509 // 
            
            
            
            CNNVD: CNNVD-201803-1017

EXTERNAL IDS
db:NVDid:CVE-2018-0176
Trust: 2.8
db:BIDid:103567
Trust: 2.0
db:SECTRACKid:1040583
Trust: 1.7
db:JVNDBid:JVNDB-2018-003509
Trust: 0.8
db:CNNVDid:CNNVD-201803-1017
Trust: 0.7
db:VULHUBid:VHN-118378
Trust: 0.1
sources:
            
            
            VULHUB: VHN-118378 // 
            
            
            
            BID: 103567 // 
            
            
            
            JVNDB: JVNDB-2018-003509 // 
            
            
            
            CNNVD: CNNVD-201803-1017 // 
            
            
            
            NVD: CVE-2018-0176

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180328-privesc1
Trust: 2.0
url:http://www.securityfocus.com/bid/103567
Trust: 1.7
url:http://www.securitytracker.com/id/1040583
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0176
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0176
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-118378 // 
            
            
            
            BID: 103567 // 
            
            
            
            JVNDB: JVNDB-2018-003509 // 
            
            
            
            CNNVD: CNNVD-201803-1017 // 
            
            
            
            NVD: CVE-2018-0176

CREDITS
Cisco.
Trust: 0.3
sources:
            
            
            BID: 103567

SOURCES
db:VULHUBid:VHN-118378
db:BIDid:103567
db:JVNDBid:JVNDB-2018-003509
db:CNNVDid:CNNVD-201803-1017
db:NVDid:CVE-2018-0176

LAST UPDATE DATE
2024-11-23T22:38:15.544000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-118378date:2019-10-09T00:00:00
db:BIDid:103567date:2018-03-28T00:00:00
db:JVNDBid:JVNDB-2018-003509date:2018-05-25T00:00:00
db:CNNVDid:CNNVD-201803-1017date:2019-10-17T00:00:00
db:NVDid:CVE-2018-0176date:2024-11-21T03:37:40.057

SOURCES RELEASE DATE
db:VULHUBid:VHN-118378date:2018-03-28T00:00:00
db:BIDid:103567date:2018-03-28T00:00:00
db:JVNDBid:JVNDB-2018-003509date:2018-05-25T00:00:00
db:CNNVDid:CNNVD-201803-1017date:2018-03-29T00:00:00
db:NVDid:CVE-2018-0176date:2018-03-28T22:29:01.343