Sign-up

ID

VAR-201808-0304


CVE

CVE-2018-0428


TITLE

Cisco Web Security Appliance Access control vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-009161

DESCRIPTION

A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to improper implementation of access controls. An attacker could exploit this vulnerability by authenticating to the device as a specific user to gain the information needed to elevate privileges to root in a separate login shell. A successful exploit could allow the attacker to escape the CLI subshell and execute system-level commands on the underlying operating system as root. Cisco Bug IDs: CSCvj93548. Vendors have confirmed this vulnerability Bug ID CSCvj93548 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state

Trust: 1.71

sources: NVD: CVE-2018-0428 // JVNDB: JVNDB-2018-009161 // VULHUB: VHN-118630

AFFECTED PRODUCTS

vendor:ciscomodel:web security appliancescope:eqversion:11.5.0-fcs-000

Trust: 1.6

vendor:ciscomodel:web security appliancescope:eqversion:wsa10.5.0-fcs-000

Trust: 1.6

vendor:ciscomodel:web security appliancescope:eqversion:wsa10.0.0-959

Trust: 1.6

vendor:ciscomodel:web security appliancescope:eqversion:11.0.0-fcs-250

Trust: 1.6

vendor:ciscomodel:web security the appliancescope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2018-009161 // CNNVD: CNNVD-201808-455 // NVD: CVE-2018-0428

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0428
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-0428
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201808-455
value: MEDIUM

Trust: 0.6

VULHUB: VHN-118630
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2018-0428
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-118630
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0428
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-118630 // JVNDB: JVNDB-2018-009161 // CNNVD: CNNVD-201808-455 // NVD: CVE-2018-0428

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.9

problemtype:CWE-269

Trust: 1.1

sources: VULHUB: VHN-118630 // JVNDB: JVNDB-2018-009161 // NVD: CVE-2018-0428

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201808-455

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-009161

PATCH
title:cisco-sa-20180815-wsa-escalationurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-wsa-escalation
Trust: 0.8
title:Cisco Web Security Appliance Fixes for access control error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=83756
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2018-009161 // 
            
            
            
            CNNVD: CNNVD-201808-455

EXTERNAL IDS
db:NVDid:CVE-2018-0428
Trust: 2.5
db:SECTRACKid:1041536
Trust: 1.7
db:BIDid:105104
Trust: 1.7
db:JVNDBid:JVNDB-2018-009161
Trust: 0.8
db:CNNVDid:CNNVD-201808-455
Trust: 0.7
db:VULHUBid:VHN-118630
Trust: 0.1
sources:
            
            
            VULHUB: VHN-118630 // 
            
            
            
            JVNDB: JVNDB-2018-009161 // 
            
            
            
            CNNVD: CNNVD-201808-455 // 
            
            
            
            NVD: CVE-2018-0428

REFERENCES
url:http://www.securityfocus.com/bid/105104
Trust: 1.7
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180815-wsa-escalation
Trust: 1.7
url:http://www.securitytracker.com/id/1041536
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0428
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0428
Trust: 0.8
sources:
            
            
            VULHUB: VHN-118630 // 
            
            
            
            JVNDB: JVNDB-2018-009161 // 
            
            
            
            CNNVD: CNNVD-201808-455 // 
            
            
            
            NVD: CVE-2018-0428

SOURCES
db:VULHUBid:VHN-118630
db:JVNDBid:JVNDB-2018-009161
db:CNNVDid:CNNVD-201808-455
db:NVDid:CVE-2018-0428

LAST UPDATE DATE
2024-11-23T21:38:26.815000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-118630date:2019-10-09T00:00:00
db:JVNDBid:JVNDB-2018-009161date:2018-11-09T00:00:00
db:CNNVDid:CNNVD-201808-455date:2019-10-17T00:00:00
db:NVDid:CVE-2018-0428date:2024-11-21T03:38:12.540

SOURCES RELEASE DATE
db:VULHUBid:VHN-118630date:2018-08-15T00:00:00
db:JVNDBid:JVNDB-2018-009161date:2018-11-09T00:00:00
db:CNNVDid:CNNVD-201808-455date:2018-08-16T00:00:00
db:NVDid:CVE-2018-0428date:2018-08-15T20:29:01.360