Strix
26.1K

CVE-2018-15439

CRITICALCVSS 9.8/10EPSS 49.74%

Last modified

CVE-2018-15439 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system. EPSS estimates a 49.74% chance of exploitation in the next 30 days.

Description

A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system. An attacker could exploit this vulnerability by using this account to log in to an affected device and execute commands with full admin rights. Cisco has not released software updates that address this vulnerability. This advisory will be updated with fixed software information once fixed software becomes available. There is a workaround to address this vulnerability.

Metrics

CVSS 3.1
9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
49.74%

98.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoSg200-50 FirmwareAll versions
CiscoSg200-50p FirmwareAll versions
CiscoSg200-50fp FirmwareAll versions
CiscoSg200-26 FirmwareAll versions
CiscoSg200-26p FirmwareAll versions
CiscoSg200-26fp FirmwareAll versions
CiscoSg200-18 FirmwareAll versions
CiscoSg200-10fp FirmwareAll versions
CiscoSg200-08 FirmwareAll versions
CiscoSg200-08p FirmwareAll versions
CiscoSf200-24 FirmwareAll versions
CiscoSf200-24p FirmwareAll versions
CiscoSf200-24fp FirmwareAll versions
CiscoSf200-48 FirmwareAll versions
CiscoSf200-48p FirmwareAll versions
CiscoSf302-08pp FirmwareAll versions
CiscoSf302-08mpp FirmwareAll versions
CiscoSg300-10pp FirmwareAll versions
CiscoSg300-10mpp FirmwareAll versions
CiscoSf300-24pp FirmwareAll versions
CiscoSf300-48pp FirmwareAll versions
CiscoSg300-28pp FirmwareAll versions
CiscoSf300-08 FirmwareAll versions
CiscoSf300-48p FirmwareAll versions
CiscoSg300-10mp FirmwareAll versions
CiscoSg300-10p FirmwareAll versions
CiscoSg300-10 FirmwareAll versions
CiscoSg300-28p FirmwareAll versions
CiscoSf300-24p FirmwareAll versions
CiscoSf302-08mp FirmwareAll versions
CiscoSg300-28 FirmwareAll versions
CiscoSf300-48 FirmwareAll versions
CiscoSg300-20 FirmwareAll versions
CiscoSf302-08p FirmwareAll versions
CiscoSg300-52 FirmwareAll versions
CiscoSf300-24 FirmwareAll versions
CiscoSf302-08 FirmwareAll versions
CiscoSf300-24mp FirmwareAll versions
CiscoSg300-10sfp FirmwareAll versions
CiscoSg300-28mp FirmwareAll versions
CiscoSg300-52p FirmwareAll versions
CiscoSg300-52mp FirmwareAll versions
CiscoSg500-28mpp FirmwareAll versions
CiscoSg500-52mp FirmwareAll versions
CiscoSg500xg-8f8t FirmwareAll versions
CiscoSf500-24 FirmwareAll versions
CiscoSf500-24p FirmwareAll versions
CiscoSf500-48 FirmwareAll versions
CiscoSf500-48p FirmwareAll versions
CiscoSg500-28 FirmwareAll versions

Showing 50 of 114 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2018-15439?
A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system. An attacker could exploit this vulnerability by using this account to log in to an affected device and execute commands with full admin rights. Cisco has not released software updates that address this vulnerability. This advisory will be updated with fixed software information once fixed software becomes available. There is a workaround to address this vulnerability.
How severe is CVE-2018-15439?
CVE-2018-15439 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 49.74% probability of exploitation in the next 30 days.
How do I fix CVE-2018-15439?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-15439?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST