Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20190327-CALL-HOME-CERT
HistoryMar 27, 2019 - 4:00 p.m.

Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability

2019-03-2716:00:00
tools.cisco.com
36

0.001 Low

EPSS

Percentile

48.7%

JSON

A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate.

The vulnerability is due to insufficient certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-call-home-cert [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-call-home-cert”]

Affected configurations

Vulners
Node
ciscoiosMatch15.2e
OR
ciscoiosMatch15.2ex
OR
ciscoiosMatch15.5s
OR
ciscoiosMatch15.2ea
OR
ciscoiosMatch15.6s
OR
ciscoiosMatch15.6t
OR
ciscoiosMatch15.6sp
OR
ciscoiosMatch15.6sn
OR
ciscoiosMatch15.3jd
OR
ciscoiosMatch15.6m
OR
ciscoiosMatch15.3jda
OR
ciscoiosMatch15.7m
OR
ciscoiosMatch12.2i
OR
ciscocisco_iosMatch3.6exe
OR
ciscocisco_iosMatch3.7exe
OR
ciscocisco_iosMatch3.16sxe
OR
ciscocisco_iosMatch3.17sxe
OR
ciscocisco_iosMatch16.2xe
OR
ciscocisco_iosMatch3.8exe
OR
ciscocisco_iosMatch16.3xe
OR
ciscocisco_iosMatch16.4xe
OR
ciscocisco_iosMatch16.5xe
OR
ciscocisco_iosMatch3.18sxe
OR
ciscocisco_iosMatch3.18spxe
OR
ciscocisco_iosMatch3.9exe
OR
ciscocisco_iosMatch16.6xe
OR
ciscocisco_iosMatch16.7xe
OR
ciscocisco_iosMatch16.8xe
OR
ciscocisco_iosMatch16.9xe
OR
ciscocisco_iosMatch3.10exe
OR
ciscoiosMatch15.2\(2\)e4
OR
ciscoiosMatch15.2\(2\)e5
OR
ciscoiosMatch15.2\(4\)e2
OR
ciscoiosMatch15.2\(3\)e4
OR
ciscoiosMatch15.2\(5\)e
OR
ciscoiosMatch15.2\(4\)e3
OR
ciscoiosMatch15.2\(2\)e6
OR
ciscoiosMatch15.2\(5a\)e
OR
ciscoiosMatch15.2\(5\)e1
OR
ciscoiosMatch15.2\(5b\)e
OR
ciscoiosMatch15.2\(4m\)e3
OR
ciscoiosMatch15.2\(2\)e5a
OR
ciscoiosMatch15.2\(5c\)e
OR
ciscoiosMatch15.2\(3\)e5
OR
ciscoiosMatch15.2\(2\)e5b
OR
ciscoiosMatch15.2\(4n\)e2
OR
ciscoiosMatch15.2\(4o\)e2
OR
ciscoiosMatch15.2\(5a\)e1
OR
ciscoiosMatch15.2\(4\)e4
OR
ciscoiosMatch15.2\(2\)e7
OR
ciscoiosMatch15.2\(5\)e2
OR
ciscoiosMatch15.2\(4p\)e1
OR
ciscoiosMatch15.2\(6\)e
OR
ciscoiosMatch15.2\(5\)e2b
OR
ciscoiosMatch15.2\(4\)e5
OR
ciscoiosMatch15.2\(5\)e2c
OR
ciscoiosMatch15.2\(2\)e8
OR
ciscoiosMatch15.2\(4m\)e2
OR
ciscoiosMatch15.2\(4o\)e3
OR
ciscoiosMatch15.2\(4q\)e1
OR
ciscoiosMatch15.2\(6\)e0a
OR
ciscoiosMatch15.2\(6\)e1
OR
ciscoiosMatch15.2\(2\)e7b
OR
ciscoiosMatch15.2\(4\)e5a
OR
ciscoiosMatch15.2\(6\)e0c
OR
ciscoiosMatch15.2\(4\)e6
OR
ciscoiosMatch15.2\(6\)e1a
OR
ciscoiosMatch15.2\(6\)e1s
OR
ciscoiosMatch15.2\(4s\)e1
OR
ciscoiosMatch15.2\(4s\)e2
OR
ciscoiosMatch15.2\(5\)ex
OR
ciscoiosMatch15.5\(3\)s1
OR
ciscoiosMatch15.5\(3\)s1a
OR
ciscoiosMatch15.5\(3\)s2
OR
ciscoiosMatch15.5\(3\)s3
OR
ciscoiosMatch15.5\(3\)s4
OR
ciscoiosMatch15.5\(3\)s5
OR
ciscoiosMatch15.5\(3\)s6
OR
ciscoiosMatch15.5\(3\)s6a
OR
ciscoiosMatch15.5\(3\)s7
OR
ciscoiosMatch15.5\(3\)s6b
OR
ciscoiosMatch15.2\(5\)ea
OR
ciscoiosMatch15.2\(4\)ea8
OR
ciscoiosMatch15.6\(1\)s
OR
ciscoiosMatch15.6\(2\)s
OR
ciscoiosMatch15.6\(2\)s1
OR
ciscoiosMatch15.6\(1\)s1
OR
ciscoiosMatch15.6\(1\)s2
OR
ciscoiosMatch15.6\(2\)s2
OR
ciscoiosMatch15.6\(1\)s3
OR
ciscoiosMatch15.6\(2\)s3
OR
ciscoiosMatch15.6\(1\)s4
OR
ciscoiosMatch15.6\(2\)s4
OR
ciscoiosMatch15.6\(1\)t
OR
ciscoiosMatch15.6\(2\)t
OR
ciscoiosMatch15.6\(1\)t0a
OR
ciscoiosMatch15.6\(1\)t1
OR
ciscoiosMatch15.6\(2\)t1
OR
ciscoiosMatch15.6\(1\)t2
OR
ciscoiosMatch15.6\(2\)t0a
OR
ciscoiosMatch15.6\(2\)t2
OR
ciscoiosMatch15.6\(1\)t3
OR
ciscoiosMatch15.6\(2\)t3
OR
ciscoiosMatch15.6\(2\)sp
OR
ciscoiosMatch15.6\(2\)sp1
OR
ciscoiosMatch15.6\(2\)sp2
OR
ciscoiosMatch15.6\(2\)sp3
OR
ciscoiosMatch15.6\(2\)sp4
OR
ciscoiosMatch15.6\(1\)sn
OR
ciscoiosMatch15.6\(1\)sn1
OR
ciscoiosMatch15.6\(2\)sn
OR
ciscoiosMatch15.6\(1\)sn2
OR
ciscoiosMatch15.6\(1\)sn3
OR
ciscoiosMatch15.6\(3\)sn
OR
ciscoiosMatch15.6\(4\)sn
OR
ciscoiosMatch15.6\(5\)sn
OR
ciscoiosMatch15.6\(6\)sn
OR
ciscoiosMatch15.6\(7\)sn
OR
ciscoiosMatch15.6\(7\)sn1
OR
ciscoiosMatch15.6\(7\)sn2
OR
ciscoiosMatch15.6\(7\)sn3
OR
ciscoiosMatch15.3\(3\)jd15
OR
ciscoiosMatch15.6\(3\)m
OR
ciscoiosMatch15.6\(3\)m1
OR
ciscoiosMatch15.6\(3\)m0a
OR
ciscoiosMatch15.6\(3\)m1a
OR
ciscoiosMatch15.6\(3\)m1b
OR
ciscoiosMatch15.6\(3\)m2
OR
ciscoiosMatch15.6\(3\)m2a
OR
ciscoiosMatch15.6\(3\)m3
OR
ciscoiosMatch15.6\(3\)m3a
OR
ciscoiosMatch15.6\(3\)m4
OR
ciscoiosMatch15.3\(3\)jda15
OR
ciscoiosMatch15.7\(3\)m
OR
ciscoiosMatch15.7\(3\)m1
OR
ciscoiosMatch15.7\(3\)m0a
OR
ciscoiosMatch15.7\(3\)m2
OR
ciscoiosMatch12.2\(6\)i1
OR
ciscocisco_iosMatch3.6.4exe
OR
ciscocisco_iosMatch3.6.5exe
OR
ciscocisco_iosMatch3.6.6exe
OR
ciscocisco_iosMatch3.6.5aexe
OR
ciscocisco_iosMatch3.6.5bexe
OR
ciscocisco_iosMatch3.6.7exe
OR
ciscocisco_iosMatch3.6.8exe
OR
ciscocisco_iosMatch3.6.7aexe
OR
ciscocisco_iosMatch3.6.7bexe
OR
ciscocisco_iosMatch3.7.4exe
OR
ciscocisco_iosMatch3.7.5exe
OR
ciscocisco_iosMatch3.16.1sxe
OR
ciscocisco_iosMatch3.16.1asxe
OR
ciscocisco_iosMatch3.16.2sxe
OR
ciscocisco_iosMatch3.16.2asxe
OR
ciscocisco_iosMatch3.16.3sxe
OR
ciscocisco_iosMatch3.16.2bsxe
OR
ciscocisco_iosMatch3.16.3asxe
OR
ciscocisco_iosMatch3.16.4sxe
OR
ciscocisco_iosMatch3.16.4asxe
OR
ciscocisco_iosMatch3.16.4bsxe
OR
ciscocisco_iosMatch3.16.4gsxe
OR
ciscocisco_iosMatch3.16.5sxe
OR
ciscocisco_iosMatch3.16.4csxe
OR
ciscocisco_iosMatch3.16.4dsxe
OR
ciscocisco_iosMatch3.16.4esxe
OR
ciscocisco_iosMatch3.16.6sxe
OR
ciscocisco_iosMatch3.16.5asxe
OR
ciscocisco_iosMatch3.16.5bsxe
OR
ciscocisco_iosMatch3.16.7sxe
OR
ciscocisco_iosMatch3.16.6bsxe
OR
ciscocisco_iosMatch3.16.7asxe
OR
ciscocisco_iosMatch3.16.7bsxe
OR
ciscocisco_iosMatch3.17.0sxe
OR
ciscocisco_iosMatch3.17.1sxe
OR
ciscocisco_iosMatch3.17.2sxe
OR
ciscocisco_iosMatch3.17.1asxe
OR
ciscocisco_iosMatch3.17.3sxe
OR
ciscocisco_iosMatch3.17.4sxe
OR
ciscocisco_iosMatch16.2.1xe
OR
ciscocisco_iosMatch16.2.2xe
OR
ciscocisco_iosMatch3.8.2exe
OR
ciscocisco_iosMatch3.8.3exe
OR
ciscocisco_iosMatch3.8.4exe
OR
ciscocisco_iosMatch3.8.5exe
OR
ciscocisco_iosMatch3.8.5aexe
OR
ciscocisco_iosMatch3.8.6exe
OR
ciscocisco_iosMatch16.3.1xe
OR
ciscocisco_iosMatch16.3.2xe
OR
ciscocisco_iosMatch16.3.3xe
OR
ciscocisco_iosMatch16.3.1axe
OR
ciscocisco_iosMatch16.3.4xe
OR
ciscocisco_iosMatch16.3.5xe
OR
ciscocisco_iosMatch16.3.5bxe
OR
ciscocisco_iosMatch16.3.6xe
OR
ciscocisco_iosMatch16.4.1xe
OR
ciscocisco_iosMatch16.4.2xe
OR
ciscocisco_iosMatch16.4.3xe
OR
ciscocisco_iosMatch16.5.1xe
OR
ciscocisco_iosMatch16.5.1axe
OR
ciscocisco_iosMatch16.5.1bxe
OR
ciscocisco_iosMatch16.5.2xe
OR
ciscocisco_iosMatch16.5.3xe
OR
ciscocisco_iosMatch3.18.0asxe
OR
ciscocisco_iosMatch3.18.0sxe
OR
ciscocisco_iosMatch3.18.1sxe
OR
ciscocisco_iosMatch3.18.2sxe
OR
ciscocisco_iosMatch3.18.3sxe
OR
ciscocisco_iosMatch3.18.4sxe
OR
ciscocisco_iosMatch3.18.0spxe
OR
ciscocisco_iosMatch3.18.1spxe
OR
ciscocisco_iosMatch3.18.1aspxe
OR
ciscocisco_iosMatch3.18.1gspxe
OR
ciscocisco_iosMatch3.18.1bspxe
OR
ciscocisco_iosMatch3.18.1cspxe
OR
ciscocisco_iosMatch3.18.2spxe
OR
ciscocisco_iosMatch3.18.1hspxe
OR
ciscocisco_iosMatch3.18.2aspxe
OR
ciscocisco_iosMatch3.18.1ispxe
OR
ciscocisco_iosMatch3.18.3spxe
OR
ciscocisco_iosMatch3.18.4spxe
OR
ciscocisco_iosMatch3.18.3aspxe
OR
ciscocisco_iosMatch3.18.3bspxe
OR
ciscocisco_iosMatch3.9.0exe
OR
ciscocisco_iosMatch3.9.1exe
OR
ciscocisco_iosMatch3.9.2exe
OR
ciscocisco_iosMatch3.9.2bexe
OR
ciscocisco_iosMatch16.6.1xe
OR
ciscocisco_iosMatch16.6.2xe
OR
ciscocisco_iosMatch16.6.3xe
OR
ciscocisco_iosMatch16.7.1xe
OR
ciscocisco_iosMatch16.7.1axe
OR
ciscocisco_iosMatch16.7.1bxe
OR
ciscocisco_iosMatch16.7.2xe
OR
ciscocisco_iosMatch16.8.1xe
OR
ciscocisco_iosMatch16.8.1axe
OR
ciscocisco_iosMatch16.8.1bxe
OR
ciscocisco_iosMatch16.8.1sxe
OR
ciscocisco_iosMatch16.8.1cxe
OR
ciscocisco_iosMatch16.8.1dxe
OR
ciscocisco_iosMatch16.8.2xe
OR
ciscocisco_iosMatch16.9.1bxe
OR
ciscocisco_iosMatch16.9.1sxe
OR
ciscocisco_iosMatch16.9.1cxe
OR
ciscocisco_iosMatch3.10.0exe
OR
ciscocisco_iosMatch3.10.1exe
OR
ciscocisco_iosMatch3.10.0cexe
OR
ciscocisco_iosMatch3.10.1aexe
OR
ciscocisco_iosMatch3.10.1sexe
CPENameOperatorVersion
ioseq15.2E
ioseq15.2EX
ioseq15.5S
ioseq15.2EA
ioseq15.6S
ioseq15.6T
ioseq15.6SP
ioseq15.6SN
ioseq15.3JD
ioseq15.6M
Rows per page:
1-10 of 2471

Related

cve 1
nvd 1
cvelist 1
prion 1
nessus 1
ibm 1
cve
cve
CVE-2019-1757
2019-03-28 01:29:00
nvd
nvd
CVE-2019-1757
2019-03-28 01:29:00
cvelist
cvelist
CVE-2019-1757 Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability
2019-03-27 00:00:00
prion
prion
Design/Logic Flaw
2019-03-28 01:29:00
nessus
nessus
Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability
2019-04-05 00:00:00
ibm
ibm
Security Bulletin: IBM Tivoli Network Manager is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2019-1757)
2022-07-20 15:58:25

0.001 Low

EPSS

Percentile

48.7%

JSON
Related for CISCO-SA-20190327-CALL-HOME-CERT
cve1nvd1cvelist1prion1nessus1ibm1