Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-1842

A vulnerability in the Secure Shell (SSH) authentication function of Cisco IOS XR Software could allow an authenticated, remote attacker to successfully log in to an affected device using two distinct usernames. The vulnerability is due to a logic error that may occur when certain sequences of actions are processed during an SSH login event on the affected device. An attacker could exploit this vulnerability by initiating an SSH session to the device with a specific sequence that presents the two usernames. A successful exploit could result in logging data misrepresentation, user enumeration, or, in certain circumstances, a command authorization bypass. See the Details section for more information.

Published

2019-06-05T17:29:00.430

Last Modified

2024-11-21T04:37:30.750

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.4 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:P/I:P/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.0

Impact Score

4.9

Weaknesses

Type: Secondary
CWE-285
Type: Primary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xr_firmware	6.1.2.tools	Yes
Operating System	cisco	ios_xr_firmware	6.1.3.tools	Yes
Operating System	cisco	ios_xr_firmware	6.2.3.tools	Yes
Operating System	cisco	ios_xr_firmware	6.4.2.tools	Yes
Hardware	cisco	asr_9001	-	No
Hardware	cisco	asr_9006	-	No
Hardware	cisco	asr_9010	-	No
Hardware	cisco	asr_9901	-	No
Hardware	cisco	asr_9904	-	No
Hardware	cisco	asr_9906	-	No
Hardware	cisco	asr_9910	-	No
Hardware	cisco	asr_9912	-	No
Hardware	cisco	asr_9922	-	No
Hardware	cisco	crs-1_16-slot_line_card_chassis	-	No
Hardware	cisco	crs-1_16-slot_single-shelf_system	-	No
Hardware	cisco	crs-1_4-slot_single-shelf_system	-	No
Hardware	cisco	crs-1_8-slot_line_card_chassis	-	No
Hardware	cisco	crs-1_8-slot_single-shelf_system	-	No
Hardware	cisco	crs-1_fabric_card_chassis	-	No
Hardware	cisco	crs-1_line_card_chassis_\(dual\)	-	No
Hardware	cisco	crs-1_line_card_chassis_\(multi\)	-	No
Hardware	cisco	crs-1_multishelf_system	-	No
Hardware	cisco	crs-3_16-slot_single-shelf_system	-	No
Hardware	cisco	crs-3_4-slot_single-shelf_system	-	No
Hardware	cisco	crs-3_8-slot_single-shelf_system	-	No
Hardware	cisco	crs-3_multishelf_system	-	No
Hardware	cisco	crs-8\/s-b_crs	-	No
Hardware	cisco	crs-8\/scrs	-	No
Hardware	cisco	crs-x_16-slot_single-shelf_system	-	No
Hardware	cisco	crs-x_multishelf_system	-	No
Hardware	cisco	ncs_6008-8-slot_chassis	-	No
Hardware	cisco	network_convergence_system_5508	-	No

References

http://www.securityfocus.com/bid/108687 Third Party Advisory, VDB Entry ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-iosxr-ssh Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/108687 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-iosxr-ssh Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)