SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   Cisco NX-OS Vendors:   Cisco
Cisco NX-OS Application Policy Infrastructure Controller (APIC) Lets Remote Authenticated Users Gain Elevated Privileges
SecurityTracker Alert ID:  1033025
SecurityTracker URL:  http://securitytracker.com/id/1033025
CVE Reference:   CVE-2015-4235   (Links to External Site)
Date:  Jul 22 2015
Impact:   Root access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): APICs prior to 1.0(4o), 1.0(3o), 1.1(1j); Nexus 9000 Series ACI prior to 11.0(4o) and 11.1(1j)
Description:   A vulnerability was reported in Cisco NX-OS Application Policy Infrastructure Controller (APIC). A remote authenticated user can gain elevated privileges.

A remote authenticated user can exploit an access control flaw in the cluster management configuration and gain root access to the target system.

Cisco Application Policy Infrastructure Controllers and Cisco Nexus 9000 Series ACI Mode Switches are affected.

The vendor has assigned bug IDs CSCuu72094 and CSCuv11991 to this vulnerability.

Impact:   A remote authenticated user can gain root privileges on the target system.
Solution:   The vendor has issued a fix (1.0(4o), 1.0(3o), 1.1(1j)).

The vendor's advisory is available at:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-apic

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-apic (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents

Subject:  Cisco Security Advisory: Cisco Application Policy Infrastructure Controller Access Control Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco Application Policy Infrastructure Controller Access Control Vulnerability

Advisory ID: cisco-sa-20150722-apic

Revision 1.0

For Public Release 2015 July 22 16:00  UTC (GMT) 

-----------------------------------------------------------------------------------------

Summary
=======

A vulnerability in the cluster management configuration of the Cisco Application Policy Infrastructure Controller (APIC) and the Cisco Nexus 9000 Series ACI Mode Switch could allow an authenticated, remote attacker to access the APIC as the root user.

The vulnerability is due to improper implementation of access controls in the APIC filesystem. An attacker could exploit this vulnerability by accessing the cluster management configuration of the APIC. An exploit could allow the attacker to gain access to the APIC as the root user and perform root-level commands.

Cisco has released software updates that address this vulnerability. 

This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-apic
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org

iQIcBAEBCgAGBQJVrtbDAAoJEIpI1I6i1Mx3btoP/2ab0rglGwG9K0DZbKgg/uk0
v7hAZl9ZAjFJj61v0R5byP286xSMvn6MXz1Jr44epjPF2a3ej4aR01gyTvMO6DUD
UGmheZFvsmbrfd2sqRFHF/x1g2bOIdYq4i7z0BVP9YXJ4T3WR5FE3DxXt1VqZiTK
ywNIWfwDv73LwEJrsSa+z3Z7pT3LxPBavBgtvzjUDizqW8zrpGS+KeMw8ol4Xz4p
VVMtTo4DfXphaC2UiAtzP4UnJl3AQXCKNzYRAU56XxrqlkgQxQg2ZnrP7fJvTXET
U2eHf4pQXkG2+BKl2gCc2onQqdeXmitlFyTlGIZbiJ/iLAY6oxy3SUT4gVZdMUXf
O7BU5rA99maZq65+Ziu/bKuCe1AilKSg4TiSjhu0fIKbiMu1b9mqrgv4n9KaTtWY
UdpiKJGtQQQrrI6r1gZeEIZ2K2/ybMBT3nRm+avD+omRa4R5HX1V+BhWksPF3eA6
H+xtN/pBIBs7ecahWRcdqu9pY76Re/JCtIrlLCHNfBMi6PPEcnUjaE4RpWaumnBO
sCPEp8t0leACiCP11M2ZjMFm6GfrTDTF04AYP+VkAWYXNcfNSxp6MoC4Ee1ygb1/
2ywXDFpFPj4XIwKIgyE6k76ND5r2WuK1e1VEuW4jikGYeeCQ3nmrJFHDc/mmyAum
0emrgf0YLmkfmXrYzv0u
=zm4G
-----END PGP SIGNATURE-----
_______________________________________________
cust-security-announce mailing list
cust-security-announce@cisco.com
To unsubscribe, send the command "unsubscribe" in the subject of your message to cust-security-announce-leave@cisco.com
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC