Strix
26.1K

CVE-2019-1804

CRITICALCVSS 9.8/10EPSS 3.39%

Last modified

CVE-2019-1804 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. EPSS estimates a 3.39% chance of exploitation in the next 30 days.

Description

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.

Metrics

CVSS 3.1
9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
3.39%

87.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoNexus 9332pq Firmware14.0\(3d\)
CiscoNexus 93180yc-Ex Firmware14.0\(3d\)
CiscoNexus 93128tx Firmware14.0\(3d\)
CiscoNexus 93120tx Firmware14.0\(3d\)
CiscoNexus 93108tc-Ex Firmware14.0\(3d\)
CiscoNexus 9516 Firmware14.0\(3d\)
CiscoNexus 9508 Firmware14.0\(3d\)
CiscoNexus 9504 Firmware14.0\(3d\)
CiscoNexus 9500 Firmware14.0\(3d\)
CiscoNexus 9396tx Firmware14.0\(3d\)
CiscoNexus 9396px Firmware14.0\(3d\)
CiscoNexus 9372tx Firmware14.0\(3d\)
CiscoNexus 9372px Firmware14.0\(3d\)

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-1804?
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.
How severe is CVE-2019-1804?
CVE-2019-1804 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 3.39% probability of exploitation in the next 30 days.
How do I fix CVE-2019-1804?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-1804?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST