Details of VAR-201804-1009

ID

VAR-201804-1009

CVE

CVE-2018-0227

TITLE

Cisco Adaptive Security Appliance and Firepower Threat Defense Certificate validation vulnerability in software

Trust: 0.8

sources: JVNDB: JVNDB-2018-004316

DESCRIPTION

A vulnerability in the Secure Sockets Layer (SSL) Virtual Private Network (VPN) Client Certificate Authentication feature for Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to establish an SSL VPN connection and bypass certain SSL certificate verification steps. The vulnerability is due to incorrect verification of the SSL Client Certificate. An attacker could exploit this vulnerability by connecting to the ASA VPN without a proper private key and certificate pair. A successful exploit could allow the attacker to establish an SSL VPN connection to the ASA when the connection should have been rejected. This vulnerability affects Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Software that is running on the following Cisco products: 3000 Series Industrial Security Appliances (ISA), ASA 5500 Series Adaptive Security Appliances, ASA 5500-X Series Next-Generation Firewalls, ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, Adaptive Security Virtual Appliances (ASAv), Firepower 4110 Security Appliances, Firepower 9300 ASA Security Modules. Cisco Bug IDs: CSCvg40155. Vendors have confirmed this vulnerability Bug ID CSCvg40155 It is released as.Information may be tampered with. Multiple Cisco products are prone to a security-bypass vulnerability. An attacker can exploit this issue to perform man-in-the-middle attacks and perform certain unauthorized actions, which will aid in further attacks. are security firewall devices of Cisco (Cisco)

Trust: 1.98

sources: NVD: CVE-2018-0227 // JVNDB: JVNDB-2018-004316 // BID: 104018 // VULHUB: VHN-118429

AFFECTED PRODUCTS

vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.5.2.8	Trust: 1.9
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.5.2.7	Trust: 1.9
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.4.3.2	Trust: 1.9
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.4.3.1	Trust: 1.9
vendor:	cisco	model:	adaptive security appliance software	scope:	lte	version:	9.4.4.13	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	gte	version:	9.5.3.7	Trust: 1.0
vendor:	cisco	model:	firepower threat defense	scope:	lte	version:	6.0.1.4	Trust: 1.0
vendor:	cisco	model:	firepower threat defense	scope:	gte	version:	6.0	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	gte	version:	9.4.4	Trust: 1.0
vendor:	cisco	model:	firepower threat defense	scope:	lte	version:	6.1.0.5	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	lte	version:	9.6.2.21	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	lte	version:	9.5.3.9	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	gte	version:	9.6.3	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	lte	version:	9.6.3.17	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	gte	version:	9.6.2.9	Trust: 1.0
vendor:	cisco	model:	firepower threat defense	scope:	gte	version:	6.1.0	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	firepower threat defense software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.0.0	Trust: 0.6
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.0.1	Trust: 0.6
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.1.0	Trust: 0.6
vendor:	cisco	model:	firepower threat defense software	scope:	eq	version:	6.1	Trust: 0.3
vendor:	cisco	model:	firepower threat defense software	scope:	eq	version:	6.1.0.5	Trust: 0.3
vendor:	cisco	model:	firepower threat defense software	scope:	eq	version:	6.0.1.4	Trust: 0.3
vendor:	cisco	model:	firepower threat defense software	scope:	eq	version:	6.0	Trust: 0.3
vendor:	cisco	model:	firepower asa security module	scope:	eq	version:	93000	Trust: 0.3
vendor:	cisco	model:	firepower security appliance	scope:	eq	version:	41100	Trust: 0.3
vendor:	cisco	model:	asa services module for cisco catalyst series switches	scope:	eq	version:	65000	Trust: 0.3
vendor:	cisco	model:	asa services module for cisco series routers	scope:	eq	version:	76000	Trust: 0.3
vendor:	cisco	model:	asa series next-generation firewalls	scope:	eq	version:	5500-x0	Trust: 0.3
vendor:	cisco	model:	asa series adaptive security appliances	scope:	eq	version:	55000	Trust: 0.3
vendor:	cisco	model:	adaptive security virtual appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.6.3	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.4.4	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.6.3.17	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.6.2.9	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.6.2.21	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.5.3.9	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.5.3.7	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	9.4.4.13	Trust: 0.3
vendor:	cisco	model:	series industrial security appliance	scope:	eq	version:	30000	Trust: 0.3
vendor:	cisco	model:	firepower threat defense software	scope:	ne	version:	6.1.0.6	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	ne	version:	9.6.3.20	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance software	scope:	ne	version:	9.4.4.14	Trust: 0.3

sources: BID: 104018 // JVNDB: JVNDB-2018-004316 // CNNVD: CNNVD-201804-1111 // NVD: CVE-2018-0227

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-0227
value:	HIGH
Trust: 1.0
NVD:	CVE-2018-0227
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201804-1111
value:	HIGH
Trust: 0.6
VULHUB:	VHN-118429
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-0227
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-118429
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-0227
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2018-0227
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-118429 // JVNDB: JVNDB-2018-004316 // CNNVD: CNNVD-201804-1111 // NVD: CVE-2018-0227

PROBLEMTYPE DATA

problemtype:

CWE-295

Trust: 1.9

sources: VULHUB: VHN-118429 // JVNDB: JVNDB-2018-004316 // NVD: CVE-2018-0227

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201804-1111

TYPE

trust management problem

Trust: 0.6

sources: CNNVD: CNNVD-201804-1111

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-004316

PATCH

title:	cisco-sa-20180418-asa1	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-asa1	Trust: 0.8
title:	Multiple Cisco Product Authorization Issue Vulnerability Fixing Measures	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=81406	Trust: 0.6

sources: JVNDB: JVNDB-2018-004316 // CNNVD: CNNVD-201804-1111

EXTERNAL IDS

db:	NVD	id:	CVE-2018-0227	Trust: 2.8
db:	ICS CERT	id:	ICSA-18-184-01	Trust: 2.5
db:	BID	id:	104018	Trust: 2.0
db:	SECTRACK	id:	1040723	Trust: 1.7
db:	JVNDB	id:	JVNDB-2018-004316	Trust: 0.8
db:	CNNVD	id:	CNNVD-201804-1111	Trust: 0.7
db:	VULHUB	id:	VHN-118429	Trust: 0.1

sources: VULHUB: VHN-118429 // BID: 104018 // JVNDB: JVNDB-2018-004316 // CNNVD: CNNVD-201804-1111 // NVD: CVE-2018-0227

REFERENCES

url:	http://www.securityfocus.com/bid/104018	Trust: 2.3
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180418-asa1	Trust: 2.0
url:	https://ics-cert.us-cert.gov/advisories/icsa-18-184-01	Trust: 1.7
url:	http://www.securitytracker.com/id/1040723	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0227	Trust: 0.8
url:	https://www.us-cert.gov/ics/advisories/icsa-18-184-01	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-0227	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-118429 // BID: 104018 // JVNDB: JVNDB-2018-004316 // CNNVD: CNNVD-201804-1111 // NVD: CVE-2018-0227

CREDITS

Cisco

Trust: 0.3

sources: BID: 104018

SOURCES

db:	VULHUB	id:	VHN-118429
db:	BID	id:	104018
db:	JVNDB	id:	JVNDB-2018-004316
db:	CNNVD	id:	CNNVD-201804-1111
db:	NVD	id:	CVE-2018-0227

LAST UPDATE DATE

2024-11-23T22:22:06.837000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-118429	date:	2019-10-09T00:00:00
db:	BID	id:	104018	date:	2018-04-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-004316	date:	2019-07-10T00:00:00
db:	CNNVD	id:	CNNVD-201804-1111	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-0227	date:	2024-11-21T03:37:46.490

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-118429	date:	2018-04-19T00:00:00
db:	BID	id:	104018	date:	2018-04-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-004316	date:	2018-06-18T00:00:00
db:	CNNVD	id:	CNNVD-201804-1111	date:	2018-04-19T00:00:00
db:	NVD	id:	CVE-2018-0227	date:	2018-04-19T20:29:00.300