Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-12649

A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install and boot a malicious software image or execute unsigned binaries on an affected device. The vulnerability exists because, under certain circumstances, an affected device can be configured to not verify the digital signatures of system image files during the boot process. An attacker could exploit this vulnerability by abusing a specific feature that is part of the device boot process. A successful exploit could allow the attacker to install and boot a malicious software image or execute unsigned binaries on the targeted device.

Published

2019-09-25T20:15:10.557

Last Modified

2024-11-21T04:23:15.607

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Secondary
CWE-347
Type: Primary
CWE-347

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xe	16.8\(1\)	Yes
Hardware	cisco	catalyst_3850-12s-e	-	No
Hardware	cisco	catalyst_3850-12s-s	-	No
Hardware	cisco	catalyst_3850-12xs-e	-	No
Hardware	cisco	catalyst_3850-12xs-s	-	No
Hardware	cisco	catalyst_3850-16xs-e	-	No
Hardware	cisco	catalyst_3850-16xs-s	-	No
Hardware	cisco	catalyst_3850-24p-e	-	No
Hardware	cisco	catalyst_3850-24p-l	-	No
Hardware	cisco	catalyst_3850-24p-s	-	No
Hardware	cisco	catalyst_3850-24pw-s	-	No
Hardware	cisco	catalyst_3850-24s-e	-	No
Hardware	cisco	catalyst_3850-24s-s	-	No
Hardware	cisco	catalyst_3850-24t-e	-	No
Hardware	cisco	catalyst_3850-24t-l	-	No
Hardware	cisco	catalyst_3850-24t-s	-	No
Hardware	cisco	catalyst_3850-24u-e	-	No
Hardware	cisco	catalyst_3850-24u-l	-	No
Hardware	cisco	catalyst_3850-24u-s	-	No
Hardware	cisco	catalyst_3850-24xs-e	-	No
Hardware	cisco	catalyst_3850-24xs-s	-	No
Hardware	cisco	catalyst_3850-24xu-e	-	No
Hardware	cisco	catalyst_3850-24xu-l	-	No
Hardware	cisco	catalyst_3850-24xu-s	-	No
Hardware	cisco	catalyst_3850-32xs-e	-	No
Hardware	cisco	catalyst_3850-32xs-s	-	No
Hardware	cisco	catalyst_3850-48f-e	-	No
Hardware	cisco	catalyst_3850-48f-l	-	No
Hardware	cisco	catalyst_3850-48f-s	-	No
Hardware	cisco	catalyst_3850-48p-e	-	No
Hardware	cisco	catalyst_3850-48p-l	-	No
Hardware	cisco	catalyst_3850-48p-s	-	No
Hardware	cisco	catalyst_3850-48pw-s	-	No
Hardware	cisco	catalyst_3850-48t-e	-	No
Hardware	cisco	catalyst_3850-48t-l	-	No
Hardware	cisco	catalyst_3850-48t-s	-	No
Hardware	cisco	catalyst_3850-48u-e	-	No
Hardware	cisco	catalyst_3850-48u-l	-	No
Hardware	cisco	catalyst_3850-48u-s	-	No
Hardware	cisco	catalyst_3850-48xs-e	-	No
Hardware	cisco	catalyst_3850-48xs-f-e	-	No
Hardware	cisco	catalyst_3850-48xs-f-s	-	No
Hardware	cisco	catalyst_3850-48xs-s	-	No
Hardware	cisco	catalyst_9300	-	No
Hardware	cisco	catalyst_9300-24p-a	-	No
Hardware	cisco	catalyst_9300-24p-e	-	No
Hardware	cisco	catalyst_9300-24s-a	-	No
Hardware	cisco	catalyst_9300-24s-e	-	No
Hardware	cisco	catalyst_9300-24t-a	-	No
Hardware	cisco	catalyst_9300-24t-e	-	No
Hardware	cisco	catalyst_9300-24u-a	-	No
Hardware	cisco	catalyst_9300-24u-e	-	No
Hardware	cisco	catalyst_9300-24ux-a	-	No
Hardware	cisco	catalyst_9300-24ux-e	-	No
Hardware	cisco	catalyst_9300-48p-a	-	No
Hardware	cisco	catalyst_9300-48p-e	-	No
Hardware	cisco	catalyst_9300-48s-a	-	No
Hardware	cisco	catalyst_9300-48s-e	-	No
Hardware	cisco	catalyst_9300-48t-a	-	No
Hardware	cisco	catalyst_9300-48t-e	-	No
Hardware	cisco	catalyst_9300-48u-a	-	No
Hardware	cisco	catalyst_9300-48u-e	-	No
Hardware	cisco	catalyst_9300-48un-a	-	No
Hardware	cisco	catalyst_9300-48un-e	-	No
Hardware	cisco	catalyst_9300-48uxm-a	-	No
Hardware	cisco	catalyst_9300-48uxm-e	-	No
Hardware	cisco	catalyst_9300l	-	No
Hardware	cisco	catalyst_9300l-24p-4g-a	-	No
Hardware	cisco	catalyst_9300l-24p-4g-e	-	No
Hardware	cisco	catalyst_9300l-24p-4x-a	-	No
Hardware	cisco	catalyst_9300l-24p-4x-e	-	No
Hardware	cisco	catalyst_9300l-24t-4g-a	-	No
Hardware	cisco	catalyst_9300l-24t-4g-e	-	No
Hardware	cisco	catalyst_9300l-24t-4x-a	-	No
Hardware	cisco	catalyst_9300l-24t-4x-e	-	No
Hardware	cisco	catalyst_9300l-48p-4g-a	-	No
Hardware	cisco	catalyst_9300l-48p-4g-e	-	No
Hardware	cisco	catalyst_9300l-48p-4x-a	-	No
Hardware	cisco	catalyst_9300l-48p-4x-e	-	No
Hardware	cisco	catalyst_9300l-48t-4g-a	-	No
Hardware	cisco	catalyst_9300l-48t-4g-e	-	No
Hardware	cisco	catalyst_9300l-48t-4x-a	-	No
Hardware	cisco	catalyst_9300l-48t-4x-e	-	No
Hardware	cisco	catalyst_c3850-12x48u-e	-	No
Hardware	cisco	catalyst_c3850-12x48u-l	-	No
Hardware	cisco	catalyst_c3850-12x48u-s	-	No
Operating System	cisco	ios	16.9.1	Yes

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-iosxe-digsig-bypass Vendor Advisory ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-iosxe-digsig-bypass Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)