Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-6768

A vulnerability in the build procedure for certain executable system files installed at boot time on Cisco Application Policy Infrastructure Controller (APIC) devices could allow an authenticated, local attacker to gain root-level privileges. The vulnerability is due to a custom executable system file that was built to use relative search paths for libraries without properly validating the library to be loaded. An attacker could exploit this vulnerability by authenticating to the device and loading a malicious library that can escalate the privilege level. A successful exploit could allow the attacker to gain root-level privileges and take full control of the device. The attacker must have valid user credentials to log in to the device. Cisco Bug IDs: CSCvc96087. Known Affected Releases: 1.1(0.920a), 1.1(1j), 1.1(3f); 1.2 Base, 1.2(2), 1.2(3), 1.2.2; 1.3(1), 1.3(2), 1.3(2f); 2.0 Base, 2.0(1).

Published

2017-08-17T20:29:00.433

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-426

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	application_policy_infrastructure_controller	1.1\(0.920a\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.1\(1j\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.1\(3f\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.2\(2\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.2\(3\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.2.2	Yes
Application	cisco	application_policy_infrastructure_controller	1.2_base	Yes
Application	cisco	application_policy_infrastructure_controller	1.3\(1\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.3\(2\)	Yes
Application	cisco	application_policy_infrastructure_controller	1.3\(2f\)	Yes
Application	cisco	application_policy_infrastructure_controller	2.0\(1\)	Yes
Application	cisco	application_policy_infrastructure_controller	2.0_base	Yes

References

http://www.securityfocus.com/bid/100363 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1039179 Third Party Advisory, VDB Entry ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-apic2 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/100363 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1039179 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-apic2 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)