Details of VAR-201807-1006

ID

VAR-201807-1006

CVE

CVE-2018-0351

TITLE

Cisco SD-WAN Solution Command injection vulnerability

Trust: 1.4

sources: JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301

DESCRIPTION

A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting crafted input to the tcpdump utility. The attacker must be authenticated to access the tcpdump utility. A successful exploit could allow the attacker to execute commands with root privileges. This vulnerability affects the following Cisco products if they are running a release of the Cisco SD-WAN Solution prior to Release 18.3.0: vBond Orchestrator Software, vEdge 100 Series Routers, vEdge 1000 Series Routers, vEdge 2000 Series Routers, vEdge 5000 Series Routers, vEdge Cloud Router Platform, vManage Network Management Software, vSmart Controller Software. Cisco Bug IDs: CSCvi69751. Cisco SD-WAN Solution Contains a command injection vulnerability. Vendors have confirmed this vulnerability Bug ID CSCvi69751 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. CiscovBondOrchestratorSoftware and others are products of Cisco. CiscovBondOrchestratorSoftware is a set of secure network extension management software. The vEdge100SeriesRouters is a 100 Series router product. SD-WANSolution is a set of network expansion solutions running in it. Cisco SD-WAN is prone to a local command-injection vulnerability

Trust: 2.52

sources: NVD: CVE-2018-0351 // JVNDB: JVNDB-2018-008389 // CNVD: CNVD-2018-14110 // BID: 104860 // VULHUB: VHN-118553

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2018-14110

AFFECTED PRODUCTS

vendor:	cisco	model:	vedge-pro	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	vsmart controller	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	vbond orchestrator	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	vmanage network management	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	vedge-plus	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	vedge-1000	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge-2000	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge-5000	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge-100	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge 100wm	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge 100b	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	vedge 100m	scope:	lt	version:	18.3.0	Trust: 1.0
vendor:	cisco	model:	mobility services engine	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vbond orchestrator	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 100	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 1000	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 100b	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 100m	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 100wm	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 2000	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge 5000	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge-plus	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vedge-pro	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vmanage network management	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vsmart controller	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	vbond orchestrator software	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	vmanage network management software	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	vsmart controller software	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	vedge cloud router platform	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	vedge series routers	scope:	eq	version:	5000	Trust: 0.6
vendor:	cisco	model:	vedge series routers	scope:	eq	version:	2000	Trust: 0.6
vendor:	cisco	model:	vedge series routers	scope:	eq	version:	1000	Trust: 0.6
vendor:	cisco	model:	vedge series routers	scope:	eq	version:	100	Trust: 0.6
vendor:	cisco	model:	vsmart controller	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	vmanage network management	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	vedge cloud router	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	vedge	scope:	eq	version:	50000	Trust: 0.3
vendor:	cisco	model:	vedge	scope:	eq	version:	20000	Trust: 0.3
vendor:	cisco	model:	vedge	scope:	eq	version:	10000	Trust: 0.3
vendor:	cisco	model:	vbond orchestrator	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	sd-wan	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	sd-wan	scope:	ne	version:	18.3	Trust: 0.3

sources: CNVD: CNVD-2018-14110 // BID: 104860 // JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301 // NVD: CVE-2018-0351

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-0351
value:	HIGH
Trust: 1.0
NVD:	CVE-2018-0351
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2018-14110
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201807-1301
value:	HIGH
Trust: 0.6
VULHUB:	VHN-118553
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2018-0351
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2018-14110
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-118553
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-0351
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2018-14110 // VULHUB: VHN-118553 // JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301 // NVD: CVE-2018-0351

PROBLEMTYPE DATA

problemtype:

CWE-77

Trust: 1.9

sources: VULHUB: VHN-118553 // JVNDB: JVNDB-2018-008389 // NVD: CVE-2018-0351

THREAT TYPE

local

Trust: 0.9

sources: BID: 104860 // CNNVD: CNNVD-201807-1301

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-201807-1301

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-008389

PATCH

title:	cisco-sa-20180718-sdwan-coinj	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-sdwan-coinj	Trust: 0.8
title:	CiscoSD-WANSolution Local Command Injection Vulnerability Patch	url:	https://www.cnvd.org.cn/patchInfo/show/135529	Trust: 0.6
title:	Cisco SD-WAN Solution Fixes for command injection vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=82202	Trust: 0.6

sources: CNVD: CNVD-2018-14110 // JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301

EXTERNAL IDS

db:	NVD	id:	CVE-2018-0351	Trust: 3.4
db:	BID	id:	104860	Trust: 2.6
db:	JVNDB	id:	JVNDB-2018-008389	Trust: 0.8
db:	CNNVD	id:	CNNVD-201807-1301	Trust: 0.7
db:	CNVD	id:	CNVD-2018-14110	Trust: 0.6
db:	VULHUB	id:	VHN-118553	Trust: 0.1

sources: CNVD: CNVD-2018-14110 // VULHUB: VHN-118553 // BID: 104860 // JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301 // NVD: CVE-2018-0351

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180718-sdwan-coinj	Trust: 2.0
url:	http://www.securityfocus.com/bid/104860	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2018-0351	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0351	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: CNVD: CNVD-2018-14110 // VULHUB: VHN-118553 // BID: 104860 // JVNDB: JVNDB-2018-008389 // CNNVD: CNNVD-201807-1301 // NVD: CVE-2018-0351

CREDITS

Cisco

Trust: 0.3

sources: BID: 104860

SOURCES

db:	CNVD	id:	CNVD-2018-14110
db:	VULHUB	id:	VHN-118553
db:	BID	id:	104860
db:	JVNDB	id:	JVNDB-2018-008389
db:	CNNVD	id:	CNNVD-201807-1301
db:	NVD	id:	CVE-2018-0351

LAST UPDATE DATE

2024-11-23T22:34:13.761000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2018-14110	date:	2018-07-27T00:00:00
db:	VULHUB	id:	VHN-118553	date:	2019-10-09T00:00:00
db:	BID	id:	104860	date:	2018-07-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-008389	date:	2018-10-16T00:00:00
db:	CNNVD	id:	CNNVD-201807-1301	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-0351	date:	2024-11-21T03:38:02.407

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2018-14110	date:	2018-07-27T00:00:00
db:	VULHUB	id:	VHN-118553	date:	2018-07-18T00:00:00
db:	BID	id:	104860	date:	2018-07-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-008389	date:	2018-10-16T00:00:00
db:	CNNVD	id:	CNNVD-201807-1301	date:	2018-07-19T00:00:00
db:	NVD	id:	CVE-2018-0351	date:	2018-07-18T23:29:00.680