CVE-2019-1810

A vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital signatures are not properly verified during CLI command execution. An attacker could exploit this vulnerability to install an unsigned software image on an affected device. Note: If the device has not been patched for the vulnerability previously disclosed in the Cisco Security Advisory cisco-sa-20190306-nxos-sig-verif, a successful exploit could allow the attacker to boot a malicious software image.

Published : 2019-05-15 23:29 Updated : 2019-05-23 10:29

4.6
CVSS Score More info
Score 4.6 / 10
4.6
Vendor Product Version URI
Cisco Nx-os 6.2%281%29 cpe:/o:cisco:nx-os:6.2%281%29
Cisco Nx-os 6.2%281n%29 cpe:/o:cisco:nx-os:6.2%281n%29
Cisco Nx-os 6.2%282%29 cpe:/o:cisco:nx-os:6.2%282%29
Cisco Nx-os 6.2%282a%29 cpe:/o:cisco:nx-os:6.2%282a%29
Cisco Nx-os 6.2%283%29 cpe:/o:cisco:nx-os:6.2%283%29
Cisco Nx-os 6.2%283n%29 cpe:/o:cisco:nx-os:6.2%283n%29
Cisco Nx-os 6.2%285%29 cpe:/o:cisco:nx-os:6.2%285%29
Cisco Nx-os 6.2%285a%29 cpe:/o:cisco:nx-os:6.2%285a%29
Cisco Nx-os 6.2%286%29 cpe:/o:cisco:nx-os:6.2%286%29
Cisco Nx-os 6.2%286b%29 cpe:/o:cisco:nx-os:6.2%286b%29
Cisco Nx-os 6.2%287%29 cpe:/o:cisco:nx-os:6.2%287%29
Cisco Nx-os 6.2%288%29 cpe:/o:cisco:nx-os:6.2%288%29
Cisco Nx-os 6.2%288a%29 cpe:/o:cisco:nx-os:6.2%288a%29
Cisco Nx-os 6.2%288b%29 cpe:/o:cisco:nx-os:6.2%288b%29
Cisco Nx-os 6.2%2810%29 cpe:/o:cisco:nx-os:6.2%2810%29
Cisco Nx-os 6.2%2811b%29 cpe:/o:cisco:nx-os:6.2%2811b%29
Cisco Nx-os 6.2%2812%29 cpe:/o:cisco:nx-os:6.2%2812%29
Cisco Nx-os 6.2%2814%29s1 cpe:/o:cisco:nx-os:6.2%2814%29s1
Cisco Nx-os 7.0%280%29n1%281%29 cpe:/o:cisco:nx-os:7.0%280%29n1%281%29
Cisco Nx-os 7.0%281%29n1%281%29 cpe:/o:cisco:nx-os:7.0%281%29n1%281%29
Cisco Nx-os 7.0%281%29n1%283%29 cpe:/o:cisco:nx-os:7.0%281%29n1%283%29
Cisco Nx-os 7.0%282%29n1%281%29 cpe:/o:cisco:nx-os:7.0%282%29n1%281%29
Cisco Nx-os 7.0%283%29 cpe:/o:cisco:nx-os:7.0%283%29
Cisco Nx-os 7.0%283%29i1%281a%29 cpe:/o:cisco:nx-os:7.0%283%29i1%281a%29
Cisco Nx-os 7.0%283%29i1%281b%29 cpe:/o:cisco:nx-os:7.0%283%29i1%281b%29
Cisco Nx-os 7.0%283%29i1%282%29 cpe:/o:cisco:nx-os:7.0%283%29i1%282%29
Cisco Nx-os 7.0%283%29i2%280.373%29 cpe:/o:cisco:nx-os:7.0%283%29i2%280.373%29
Cisco Nx-os 7.0%283%29i7 cpe:/o:cisco:nx-os:7.0%283%29i7
Cisco Nx-os 7.0%283%29n1%281%29 cpe:/o:cisco:nx-os:7.0%283%29n1%281%29
Cisco Nx-os 7.0%284%29n1%281%29 cpe:/o:cisco:nx-os:7.0%284%29n1%281%29
Cisco Nx-os 7.0%285%29n1%281%29 cpe:/o:cisco:nx-os:7.0%285%29n1%281%29
Cisco Nx-os 7.0%285%29n1%281a%29 cpe:/o:cisco:nx-os:7.0%285%29n1%281a%29
Cisco Nx-os 7.0%286%29n1%281%29 cpe:/o:cisco:nx-os:7.0%286%29n1%281%29
Cisco Nx-os 7.0%287%29n1%281%29 cpe:/o:cisco:nx-os:7.0%287%29n1%281%29
Cisco Nx-os 7.0%288%29n1%281%29 cpe:/o:cisco:nx-os:7.0%288%29n1%281%29
Cisco Nx-os 7.1%280%29n1%281a%29 cpe:/o:cisco:nx-os:7.1%280%29n1%281a%29
Cisco Nx-os 7.1%280%29n1%281b%29 cpe:/o:cisco:nx-os:7.1%280%29n1%281b%29
Cisco Nx-os 7.1%281%29n1%281%29 cpe:/o:cisco:nx-os:7.1%281%29n1%281%29
Cisco Nx-os 7.1%282%29n1%281%29 cpe:/o:cisco:nx-os:7.1%282%29n1%281%29
Cisco Nx-os 7.1%283%29n1%281%29 cpe:/o:cisco:nx-os:7.1%283%29n1%281%29
Cisco Nx-os 7.1%283%29n1%282%29 cpe:/o:cisco:nx-os:7.1%283%29n1%282%29
Cisco Nx-os 7.1%283%29n1%282.1%29 cpe:/o:cisco:nx-os:7.1%283%29n1%282.1%29
Cisco Nx-os 7.1%283%29n1%283.12%29 cpe:/o:cisco:nx-os:7.1%283%29n1%283.12%29
Cisco Nx-os 7.1%284%29n1%281%29 cpe:/o:cisco:nx-os:7.1%284%29n1%281%29
Cisco Nx-os 7.2%280%29n1%280.1%29 cpe:/o:cisco:nx-os:7.2%280%29n1%280.1%29
Cisco Nx-os 7.2%280%29n1%281%29 cpe:/o:cisco:nx-os:7.2%280%29n1%281%29
Cisco Nx-os 7.2%280%29zz%2899.1%29 cpe:/o:cisco:nx-os:7.2%280%29zz%2899.1%29
Cisco Nx-os 7.2%280%29zz%2899.3%29 cpe:/o:cisco:nx-os:7.2%280%29zz%2899.3%29
Cisco Nx-os 7.2%281%29n1%281%29 cpe:/o:cisco:nx-os:7.2%281%29n1%281%29
Cisco Nx-os 7.3%280%29n1%281%29 cpe:/o:cisco:nx-os:7.3%280%29n1%281%29
Cisco Nx-os 7.3%280%29zn%280.9%29 cpe:/o:cisco:nx-os:7.3%280%29zn%280.9%29
Cisco Nx-os 7.3%280%29zn%280.81%29 cpe:/o:cisco:nx-os:7.3%280%29zn%280.81%29
Cisco Nx-os 7.3%280%29zn%280.83%29 cpe:/o:cisco:nx-os:7.3%280%29zn%280.83%29
Cisco Nx-os 7.3%282%29n1%280.296%29 cpe:/o:cisco:nx-os:7.3%282%29n1%280.296%29
Cisco Nx-os 7.3%282%29n1%280.395%29 cpe:/o:cisco:nx-os:7.3%282%29n1%280.395%29
Cisco Nx-os 8.0%281%29s2 cpe:/o:cisco:nx-os:8.0%281%29s2
Cisco Nx-os 8.1%280.2%29s0 cpe:/o:cisco:nx-os:8.1%280.2%29s0
Cisco Nx-os 8.1%280.59%29s0 cpe:/o:cisco:nx-os:8.1%280.59%29s0
Cisco Nx-os 8.1%280.112%29s0 cpe:/o:cisco:nx-os:8.1%280.112%29s0
Cisco Nx-os 8.1%281%29 cpe:/o:cisco:nx-os:8.1%281%29
Cisco Nx-os 8.1%281%29s5 cpe:/o:cisco:nx-os:8.1%281%29s5
Cisco Nx-os 8.3%280%29cv%280.342%29 cpe:/o:cisco:nx-os:8.3%280%29cv%280.342%29
Cisco Nx-os 8.3%280%29cv%280.345%29 cpe:/o:cisco:nx-os:8.3%280%29cv%280.345%29
Cisco Nx-os 9.1%281%29sv1%283.1.8%29 cpe:/o:cisco:nx-os:9.1%281%29sv1%283.1.8%29
  1. Cisco (1) Search CVE
    1. Nx-os (64) Search CVE
      1. 6.2%281%29
      2. 6.2%281n%29
      3. 6.2%282%29
      4. 6.2%282a%29
      5. 6.2%283%29
      6. 6.2%283n%29
      7. 6.2%285%29
      8. 6.2%285a%29
      9. 6.2%286%29
      10. 6.2%286b%29
      11. 6.2%287%29
      12. 6.2%288%29
      13. 6.2%288a%29
      14. 6.2%288b%29
      15. 6.2%2810%29
      16. 6.2%2811b%29
      17. 6.2%2812%29
      18. 6.2%2814%29s1
      19. 7.0%280%29n1%281%29
      20. 7.0%281%29n1%281%29
      21. 7.0%281%29n1%283%29
      22. 7.0%282%29n1%281%29
      23. 7.0%283%29
      24. 7.0%283%29i1%281a%29
      25. 7.0%283%29i1%281b%29
      26. 7.0%283%29i1%282%29
      27. 7.0%283%29i2%280.373%29
      28. 7.0%283%29i7
      29. 7.0%283%29n1%281%29
      30. 7.0%284%29n1%281%29
      31. 7.0%285%29n1%281%29
      32. 7.0%285%29n1%281a%29
      33. 7.0%286%29n1%281%29
      34. 7.0%287%29n1%281%29
      35. 7.0%288%29n1%281%29
      36. 7.1%280%29n1%281a%29
      37. 7.1%280%29n1%281b%29
      38. 7.1%281%29n1%281%29
      39. 7.1%282%29n1%281%29
      40. 7.1%283%29n1%281%29
      41. 7.1%283%29n1%282%29
      42. 7.1%283%29n1%282.1%29
      43. 7.1%283%29n1%283.12%29
      44. 7.1%284%29n1%281%29
      45. 7.2%280%29n1%280.1%29
      46. 7.2%280%29n1%281%29
      47. 7.2%280%29zz%2899.1%29
      48. 7.2%280%29zz%2899.3%29
      49. 7.2%281%29n1%281%29
      50. 7.3%280%29n1%281%29
      51. 7.3%280%29zn%280.9%29
      52. 7.3%280%29zn%280.81%29
      53. 7.3%280%29zn%280.83%29
      54. 7.3%282%29n1%280.296%29
      55. 7.3%282%29n1%280.395%29
      56. 8.0%281%29s2
      57. 8.1%280.2%29s0
      58. 8.1%280.59%29s0
      59. 8.1%280.112%29s0
      60. 8.1%281%29
      61. 8.1%281%29s5
      62. 8.3%280%29cv%280.342%29
      63. 8.3%280%29cv%280.345%29
      64. 9.1%281%29sv1%283.1.8%29

CWE

ID Name Description Links
CWE-347 Improper Verification of Cryptographic Signature The software does not verify, or incorrectly verifies, the cryptographic signature for data. CVE

History of changes

Date Event
2019-05-23 10:29
2019-05-17 18:42
2019-05-15 23:29

New CVE