Details of VAR-201804-1016

ID

VAR-201804-1016

CVE

CVE-2018-0238

TITLE

Cisco Unified Computing System Director Authentication vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-004423

DESCRIPTION

A vulnerability in the role-based resource checking functionality of the Cisco Unified Computing System (UCS) Director could allow an authenticated, remote attacker to view unauthorized information for any virtual machine in the UCS Director end-user portal and perform any permitted operations on any virtual machine. The permitted operations can be configured for the end user on the virtual machines with either of the following settings: The virtual machine is associated to a Virtual Data Center (VDC) that has an end user self-service policy attached to the VDC. The end user role has VM Management Actions settings configured under User Permissions. This is a global configuration, so all the virtual machines visible in the end-user portal will have the VM management actions available. The vulnerability is due to improper user authentication checks. An attacker could exploit this vulnerability by logging in to the UCS Director with a modified username and valid password. A successful exploit could allow the attacker to gain visibility into and perform actions against all virtual machines in the UCS Director end-user portal of the affected system. This vulnerability affects Cisco Unified Computing System (UCS) Director releases 6.0 and 6.5 prior to patch 3 that are in a default configuration. Cisco Bug IDs: CSCvh53501. Vendors have confirmed this vulnerability Bug ID CSCvh53501 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Successful exploits will allow attackers to obtain sensitive information. This may aid in further attacks. The system integrates network, computing and virtualization resources into one platform by extensively adopting virtualization technology. The vulnerability is caused by the program not correctly detecting user identities

Trust: 2.07

sources: NVD: CVE-2018-0238 // JVNDB: JVNDB-2018-004423 // BID: 103919 // VULHUB: VHN-118440 // VULMON: CVE-2018-0238

AFFECTED PRODUCTS

vendor:	cisco	model:	unified computing system director	scope:	eq	version:	6.5\(0.1\)	Trust: 1.6
vendor:	cisco	model:	unified computing system director	scope:	eq	version:	6.5\(0.0\)	Trust: 1.6
vendor:	cisco	model:	unified computing system director	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	unified computing system director	scope:	eq	version:	6.5(0.1)	Trust: 0.3
vendor:	cisco	model:	unified computing system director	scope:	eq	version:	6.5(0.0)	Trust: 0.3
vendor:	cisco	model:	unified computing system director	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified computing system director	scope:	ne	version:	6.5(0.3)	Trust: 0.3

sources: BID: 103919 // JVNDB: JVNDB-2018-004423 // CNNVD: CNNVD-201804-1104 // NVD: CVE-2018-0238

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-0238
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2018-0238
value:	CRITICAL
Trust: 0.8
CNNVD:	CNNVD-201804-1104
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-118440
value:	HIGH
Trust: 0.1
VULMON:	CVE-2018-0238
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2018-0238
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-118440
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-0238
baseSeverity:	CRITICAL
baseScore:	9.9
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.1
impactScore:	6.0
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-118440 // VULMON: CVE-2018-0238 // JVNDB: JVNDB-2018-004423 // CNNVD: CNNVD-201804-1104 // NVD: CVE-2018-0238

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.9

sources: VULHUB: VHN-118440 // JVNDB: JVNDB-2018-004423 // NVD: CVE-2018-0238

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201804-1104

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201804-1104

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-004423

PATCH

title:	cisco-sa-20180418-uscd	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-uscd	Trust: 0.8
title:	Cisco Unified Computing System Director Remediation measures for authorization problem vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=81399	Trust: 0.6
title:	The Register	url:	https://www.theregister.co.uk/2018/04/19/cisco_patch_webex/	Trust: 0.2
title:	Cisco: Cisco UCS Director Virtual Machine Information Disclosure Vulnerability for End User Portal	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-20180418-uscd	Trust: 0.1

sources: VULMON: CVE-2018-0238 // JVNDB: JVNDB-2018-004423 // CNNVD: CNNVD-201804-1104

EXTERNAL IDS

db:	NVD	id:	CVE-2018-0238	Trust: 2.9
db:	BID	id:	103919	Trust: 2.1
db:	SECTRACK	id:	1040708	Trust: 1.8
db:	JVNDB	id:	JVNDB-2018-004423	Trust: 0.8
db:	CNNVD	id:	CNNVD-201804-1104	Trust: 0.7
db:	VULHUB	id:	VHN-118440	Trust: 0.1
db:	VULMON	id:	CVE-2018-0238	Trust: 0.1

sources: VULHUB: VHN-118440 // VULMON: CVE-2018-0238 // BID: 103919 // JVNDB: JVNDB-2018-004423 // CNNVD: CNNVD-201804-1104 // NVD: CVE-2018-0238

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180418-uscd	Trust: 2.2
url:	http://www.securityfocus.com/bid/103919	Trust: 1.9
url:	http://www.securitytracker.com/id/1040708	Trust: 1.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0238	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-0238	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/287.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULHUB: VHN-118440 // VULMON: CVE-2018-0238 // BID: 103919 // JVNDB: JVNDB-2018-004423 // CNNVD: CNNVD-201804-1104 // NVD: CVE-2018-0238

CREDITS

Cisco

Trust: 0.3

sources: BID: 103919

SOURCES

db:	VULHUB	id:	VHN-118440
db:	VULMON	id:	CVE-2018-0238
db:	BID	id:	103919
db:	JVNDB	id:	JVNDB-2018-004423
db:	CNNVD	id:	CNNVD-201804-1104
db:	NVD	id:	CVE-2018-0238

LAST UPDATE DATE

2024-11-23T21:39:01.160000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-118440	date:	2019-10-09T00:00:00
db:	VULMON	id:	CVE-2018-0238	date:	2019-10-09T00:00:00
db:	BID	id:	103919	date:	2018-04-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-004423	date:	2018-06-20T00:00:00
db:	CNNVD	id:	CNNVD-201804-1104	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-0238	date:	2024-11-21T03:37:47.577

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-118440	date:	2018-04-19T00:00:00
db:	VULMON	id:	CVE-2018-0238	date:	2018-04-19T00:00:00
db:	BID	id:	103919	date:	2018-04-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-004423	date:	2018-06-20T00:00:00
db:	CNNVD	id:	CNNVD-201804-1104	date:	2018-04-19T00:00:00
db:	NVD	id:	CVE-2018-0238	date:	2018-04-19T20:29:00.707