CVE-2018-15439
Cisco Small Business Switches Privileged Access Vulnerability
In short
A Cisco Small Business Switch can be accessed remotely without a password due to a hidden privileged account that is automatically enabled. An attacker can log in with full administrator rights and take complete control of the network device.
Technical detail
An unauthenticated remote attacker can bypass authentication by exploiting a privileged account that is enabled under specific circumstances without administrator notification (CWE-798: Use of Hardcoded Credentials). The attack vector is network-based with no authentication required, allowing arbitrary command execution with full administrative privileges on affected Cisco Small Business Switches.
Summary generated and translated by AI from the official description.
A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account without notifying administrators of the system. An attacker could exploit this vulnerability by using this account to log in to an affected device and execute commands with full admin rights. Cisco has not released software updates that address this vulnerability. This advisory will be updated with fixed software information once fixed software becomes available. There is a workaround to address this vulnerability.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Cisco · Cisco Small Business 300 Series Managed SwitchesWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →