CVE-2018-0399
published 2018-07-18CVE-2018-0399: Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve a cleartext…
PriorityP260critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
1.89%
77.0th percentile
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve a cleartext password from an affected system. Cisco Bug IDs: CSCvg71044.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | finesse | — | — |
| cisco | finesse | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerability affects the web-based management interface of Cisco Finesse; monitor for unauthenticated requests to the Finesse management interface that may indicate SSRF attempts or credential harvesting. ↗
- →Track Cisco Bug IDs CSCvg71018 and CSCvg71044 for patch status; unpatched Cisco Finesse instances are the target surface for both the SSRF and cleartext password disclosure vulnerabilities. ↗
- ·There are no workarounds available for these vulnerabilities; patching is the only remediation path. ↗
- ·The cleartext password exposure occurs via the web-based management interface, meaning credentials may be transmitted or stored in cleartext and interceptable by an unauthenticated remote attacker. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_cisco5.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Multiple Vulnerabilities in Cisco Finesse
vendor_cisco·2018-07-18·CVSS 5.8
CVE-2018-0398 [MEDIUM] CWE-19 Multiple Vulnerabilities in Cisco Finesse
Multiple Vulnerabilities in Cisco Finesse
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack or retrieve a cleartext password from an affected system.
For more information about these vulnerabilities, see the Details section of this security advisory.
There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-finesse
Cisco
Multiple Vulnerabilities in Cisco Finesse
vendor_cisco·CVSS 3.0
CVE-2018-0399 Multiple Vulnerabilities in Cisco Finesse
CVE-2018-0399: Multiple Vulnerabilities in Cisco Finesse
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack or retrieve a cleartext password from an affected system. For more information about these vulnerabilities, see the
CVSS: 3.0
CWE: CWE-19, CWE-264, CWE-19, CWE-264
Bug IDs: CSCvg71018, CSCvg71044, CSCvg71018, CSCvg71044
GHSA
GHSA-8h8w-q442-78j7: Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve a cleartex
ghsa_unreviewed·2022-05-13
CVE-2018-0399 [CRITICAL] CWE-918 GHSA-8h8w-q442-78j7: Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve a cleartex
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve a cleartext password from an affected system. Cisco Bug IDs: CSCvg71044.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-07-18
Published