Sign-up

ID

VAR-201902-0423


CVE

CVE-2019-1659


TITLE

Cisco Prime Collaboration Assurance Vulnerabilities related to certificate validation

Trust: 0.8

sources: JVNDB: JVNDB-2019-001955

DESCRIPTION

A vulnerability in the Identity Services Engine (ISE) integration feature of Cisco Prime Infrastructure (PI) could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack against the Secure Sockets Layer (SSL) tunnel established between ISE and PI. The vulnerability is due to improper validation of the server SSL certificate when establishing the SSL tunnel with ISE. An attacker could exploit this vulnerability by using a crafted SSL certificate and could then intercept communications between the ISE and PI. A successful exploit could allow the attacker to view and alter potentially sensitive information that the ISE maintains about clients that are connected to the network. This vulnerability affects Cisco Prime Infrastructure Software Releases 2.2 through 3.4.0 when the PI server is integrated with ISE, which is disabled by default. Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks or impersonate trusted servers, which will aid in further attacks. This issue is being tracked by Cisco Bug ID CSCvj87015. Cisco Prime Infrastructure 3.5 is vulnerable; other versions may be affected

Trust: 1.98

sources: NVD: CVE-2019-1659 // JVNDB: JVNDB-2019-001955 // BID: 107092 // VULHUB: VHN-148751

AFFECTED PRODUCTS

vendor:ciscomodel:prime infrastructurescope:gteversion:2.2

Trust: 1.0

vendor:ciscomodel:prime infrastructurescope:lteversion:3.4.0

Trust: 1.0

vendor:ciscomodel:prime infrastructurescope:eqversion:3.4.0 for up to 2.2

Trust: 0.8

vendor:ciscomodel:prime infrastructurescope:eqversion:3.5

Trust: 0.3

sources: BID: 107092 // JVNDB: JVNDB-2019-001955 // NVD: CVE-2019-1659

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-1659
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1659
value: HIGH

Trust: 1.0

NVD: CVE-2019-1659
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201902-804
value: HIGH

Trust: 0.6

VULHUB: VHN-148751
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-1659
severity: MEDIUM
baseScore: 5.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-148751
severity: MEDIUM
baseScore: 5.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-1659
baseSeverity: HIGH
baseScore: 7.4
vectorString: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 2.2
impactScore: 5.2
version: 3.0

Trust: 2.8

sources: VULHUB: VHN-148751 // JVNDB: JVNDB-2019-001955 // CNNVD: CNNVD-201902-804 // NVD: CVE-2019-1659 // NVD: CVE-2019-1659

PROBLEMTYPE DATA

problemtype:CWE-295

Trust: 1.9

sources: VULHUB: VHN-148751 // JVNDB: JVNDB-2019-001955 // NVD: CVE-2019-1659

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201902-804

TYPE

trust management problem

Trust: 0.6

sources: CNNVD: CNNVD-201902-804

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-001955

PATCH
title:cisco-sa-20190220-prime-validationurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-prime-validation
Trust: 0.8
title:Cisco Prime Infrastructure Software Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=89598
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2019-001955 // 
            
            
            
            CNNVD: CNNVD-201902-804

EXTERNAL IDS
db:NVDid:CVE-2019-1659
Trust: 2.8
db:BIDid:107092
Trust: 2.0
db:JVNDBid:JVNDB-2019-001955
Trust: 0.8
db:NSFOCUSid:42798
Trust: 0.6
db:AUSCERTid:ESB-2019.0537
Trust: 0.6
db:CNNVDid:CNNVD-201902-804
Trust: 0.6
db:VULHUBid:VHN-148751
Trust: 0.1
sources:
            
            
            VULHUB: VHN-148751 // 
            
            
            
            BID: 107092 // 
            
            
            
            JVNDB: JVNDB-2019-001955 // 
            
            
            
            CNNVD: CNNVD-201902-804 // 
            
            
            
            NVD: CVE-2019-1659

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190220-prime-validation
Trust: 2.6
url:http://www.securityfocus.com/bid/107092
Trust: 2.3
url:https://nvd.nist.gov/vuln/detail/cve-2019-1659
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1659
Trust: 0.8
url:https://vigilance.fr/vulnerability/cisco-prime-infrastructure-man-in-the-middle-via-ssl-certificate-not-validated-28576
Trust: 0.6
url:https://www.auscert.org.au/bulletins/75894
Trust: 0.6
url:http://www.nsfocus.net/vulndb/42798
Trust: 0.6
url:http://www.cisco.com
Trust: 0.3
url:http://www.cisco.com/c/en/us/products/cloud-systems-management/prime-infrastructure/index.html
Trust: 0.3
sources:
            
            
            VULHUB: VHN-148751 // 
            
            
            
            BID: 107092 // 
            
            
            
            JVNDB: JVNDB-2019-001955 // 
            
            
            
            CNNVD: CNNVD-201902-804 // 
            
            
            
            NVD: CVE-2019-1659

CREDITS
??,The vendor reported this issue.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201902-804

SOURCES
db:VULHUBid:VHN-148751
db:BIDid:107092
db:JVNDBid:JVNDB-2019-001955
db:CNNVDid:CNNVD-201902-804
db:NVDid:CVE-2019-1659

LAST UPDATE DATE
2024-11-23T22:58:46.654000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-148751date:2019-10-09T00:00:00
db:BIDid:107092date:2019-02-20T00:00:00
db:JVNDBid:JVNDB-2019-001955date:2019-03-29T00:00:00
db:CNNVDid:CNNVD-201902-804date:2019-10-17T00:00:00
db:NVDid:CVE-2019-1659date:2024-11-21T04:37:02.113

SOURCES RELEASE DATE
db:VULHUBid:VHN-148751date:2019-02-21T00:00:00
db:BIDid:107092date:2019-02-20T00:00:00
db:JVNDBid:JVNDB-2019-001955date:2019-03-29T00:00:00
db:CNNVDid:CNNVD-201902-804date:2019-02-20T00:00:00
db:NVDid:CVE-2019-1659date:2019-02-21T15:29:00.237