CVE-2019-1804

CVE Database · CVE-2019-1804

CVE-2019-1804

· CRITICALModified

CVSS v3.1

9.8

EPSS

3.39%

Published

May 3, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-310CWE-1188

Affected Products (26)

cisco · nexus_9332pq_firmwarevulnerable

cisco · nexus_9332pq

cisco · nexus_93180yc-ex_firmwarevulnerable

cisco · nexus_93180yc-ex

cisco · nexus_93128tx_firmwarevulnerable

cisco · nexus_93128tx

cisco · nexus_93120tx_firmwarevulnerable

cisco · nexus_93120tx

cisco · nexus_93108tc-ex_firmwarevulnerable

cisco · nexus_93108tc-ex

cisco · nexus_9516_firmwarevulnerable

· nexus_9516

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs