Detections
Analytics

Cisco NX-OS Software NX-API Privilege Escalation (CVE-2018-0330)

high Tenable OT Security Plugin ID 501381

Synopsis

The remote OT asset is affected by a vulnerability.

Description

A vulnerability in the NX-API management application programming interface (API) in devices running, or based on, Cisco NX-OS Software could allow an authenticated, remote attacker to execute commands with elevated privileges. The vulnerability is due to a failure to properly validate certain parameters included within an NX-API request. An attacker that can successfully authenticate to the NX-API could submit a request designed to bypass NX-OS role assignment. A successful exploit could allow the attacker to execute commands with elevated privileges. This vulnerability affects the following if configured to use the NX-API feature: MDS 9000 Series Multilayer Switches, Nexus 2000 Series Switches, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in standalone NX-OS mode.
Cisco Bug IDs: CSCvc73177, CSCve40903, CSCve40911.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

http://www.securitytracker.com/id/1041169

http://www.nessus.org/u?ca36efb9

Plugin Details

Severity: High

ID: 501381

Version: 1.1

Type: remote

Family: Tenable.ot

Published: 7/25/2023

Updated: 7/26/2023

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS Score Source: CVE-2018-0330

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:nx-os:5.2, cpe:/o:cisco:nx-os:6.0, cpe:/o:cisco:nx-os:6.2, cpe:/o:cisco:nx-os:7, cpe:/o:cisco:nx-os:7.0, cpe:/o:cisco:nx-os:7.1, cpe:/o:cisco:nx-os:7.2, cpe:/o:cisco:nx-os:8, cpe:/o:cisco:nx-os:8.0, cpe:/o:cisco:nx-os:8.2

Required KB Items: Tenable.ot/Cisco

Exploit Ease: No known exploits are available

Patch Publication Date: 6/20/2018

Vulnerability Publication Date: 6/20/2018

Reference Information

CVE: CVE-2018-0330

CWE: 78