Input validation

2023-05-0918:15:00

PRIOn knowledge base

www.prio-n.com

cisco staros

ssh authentication

elevate privileges

user-supplied credentials

nvd

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

JSON

A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote attacker to elevate privileges on an affected device.

This vulnerability is due to insufficient validation of user-supplied credentials. An attacker could exploit this vulnerability by sending a valid low-privileged SSH key to an affected device from a host that has an IP address that is configured as the source for a high-privileged user account. A successful exploit could allow the attacker to log in to the affected device through SSH as a high-privileged user.

There are workarounds that address this vulnerability.

CPENameOperatorVersion
staroslt21.22.14
starosge21.23.0
staroslt21.23.31
starosge21.25.0
staroslt21.25.15
starosge21.26.0
staroslt21.26.17
starosge21.27.0
staroslt21.27.6
starosge21.28.0

Name	Operator	Version
staros	lt	21.22.14
staros	ge	21.23.0
staros	lt	21.23.31
staros	ge	21.25.0
staros	lt	21.25.15
staros	ge	21.26.0
staros	lt	21.26.17
staros	ge	21.27.0
staros	lt	21.27.6
staros	ge	21.28.0