CVE-2018-15370

Опубликовано: 05 окт. 2018

Источник: nvd

CVSS3: 6.8

CVSS2: 4.6

EPSS Низкий

Описание

A vulnerability in Cisco IOS ROM Monitor (ROMMON) Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a hidden command in the affected software. An attacker could exploit this vulnerability by connecting to an affected device via the console, forcing the device into ROMMON mode, and writing a malicious pattern to a specific memory address on the device. A successful exploit could allow the attacker to bypass signature validation checks by Cisco Secure Boot technology and load a compromised software image on the affected device. A compromised software image is any software image that has not been digitally signed by Cisco.

Ссылки

http://www.securityfocus.com/bid/105412
Third Party Advisory
VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-catalyst6800
Vendor Advisory
http://www.securityfocus.com/bid/105412
Third Party Advisory
VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-catalyst6800
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:cisco:ios_rom_monitor:15.1\(2\)sy3:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00071

Низкий

6.8 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-264

NVD-CWE-noinfo

Связанные уязвимости

GHSA-vhr4-h7vg-cgj6

CVSS3: 6.8

github

больше 3 лет назад

BDU:2018-01630

CVSS3: 6.4

fstec

больше 7 лет назад

Уязвимость операционной системы Cisco IOS ROM Monitor, связанная с наличием скрытой команды, позволяющая нарушителю обойти проверку подписи и загрузить вредоносный образ программного обеспечения