Lucene search

[email protected]NVD:CVE-2018-0428

HistoryAug 15, 2018 - 8:29 p.m.

CVE-2018-0428

2018-08-1520:29:01

CWE-269

CWE-284

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

Percentile

5.1%

JSON

A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to improper implementation of access controls. An attacker could exploit this vulnerability by authenticating to the device as a specific user to gain the information needed to elevate privileges to root in a separate login shell. A successful exploit could allow the attacker to escape the CLI subshell and execute system-level commands on the underlying operating system as root. Cisco Bug IDs: CSCvj93548.

Affected configurations

Nvd

Node

ciscoweb_security_applianceMatch11.0.0-fcs-250

ciscoweb_security_applianceMatch11.5.0-fcs-000

ciscoweb_security_applianceMatchwsa10.0.0-959

ciscoweb_security_applianceMatchwsa10.5.0-fcs-000

VendorProductVersionCPE
ciscoweb_security_appliance11.0.0-fcs-250cpe:2.3:h:cisco:web_security_appliance:11.0.0-fcs-250:*:*:*:*:*:*:*
ciscoweb_security_appliance11.5.0-fcs-000cpe:2.3:h:cisco:web_security_appliance:11.5.0-fcs-000:*:*:*:*:*:*:*
ciscoweb_security_appliancewsa10.0.0-959cpe:2.3:h:cisco:web_security_appliance:wsa10.0.0-959:*:*:*:*:*:*:*
ciscoweb_security_appliancewsa10.5.0-fcs-000cpe:2.3:h:cisco:web_security_appliance:wsa10.5.0-fcs-000:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	web_security_appliance	11.0.0-fcs-250	cpe:2.3:h:cisco:web_security_appliance:11.0.0-fcs-250:::::::*
cisco	web_security_appliance	11.5.0-fcs-000	cpe:2.3:h:cisco:web_security_appliance:11.5.0-fcs-000:::::::*
cisco	web_security_appliance	wsa10.0.0-959	cpe:2.3:h:cisco:web_security_appliance:wsa10.0.0-959:::::::*
cisco	web_security_appliance	wsa10.5.0-fcs-000	cpe:2.3:h:cisco:web_security_appliance:wsa10.5.0-fcs-000:::::::*

References

www.securityfocus.com/bid/105104

www.securitytracker.com/id/1041536

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-wsa-escalation

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2018-0428

cvelist1 nessus2 prion1 cve1 cisco1