Detections
Analytics

Cisco IOS Software Catalyst 6500 Series 802.1x Authentication Bypass (cisco-sa-20190327-c6500)

medium Nessus Plugin ID 134951

Language:

Synopsis

The remote device is missing a vendor-supplied security patch

Description

According to its self-reported version, Cisco IOS Software is affected by a vulnerability in the 802.1x function on Catalyst 6500 Series Switches due to how the 802.1x packets are handled in the process path. An unauthenticated, adjacent attacker can exploit this, by attempting to connect to the network on an 802.1x configured port, in order to intermittently obtain access to the network.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCvk25074

See Also

http://www.nessus.org/u?7b826d15

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk25074

Plugin Details

Severity: Medium

ID: 134951

File Name: cisco-sa-20190327-ios-c6500.nasl

Version: 1.8

Type: combined

Family: CISCO

Published: 3/27/2020

Updated: 1/14/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:P/A:N

CVSS Score Source: CVE-2019-1758

CVSS v3

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: Settings/ParanoidReport, Host/Cisco/IOS/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 3/27/2019

Vulnerability Publication Date: 3/27/2019

Reference Information

CVE: CVE-2019-1758

CWE: 665

CISCO-SA: cisco-sa-20190327-ios-c6500

CISCO-BUG-ID: CSCvk25074