CVE-2019-1650
published 2019-01-24CVE-2019-1650: A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of…
PriorityP260high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
3.48%
87.6th percentile
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An attacker could exploit this vulnerability by modifying the save command in the CLI of an affected device. A successful exploit could allow the attacker to overwrite arbitrary files on the underlying operating system of an affected device and escalate their privileges to the root user.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_sd-wan_solution | — | — |
| cisco | sd-wan | < 18.4.0 | 18.4.0 |
| cisco | sd-wan_solution | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The attack vector is exploitation of the CLI `save` command with modified/malicious input to overwrite arbitrary files on the underlying OS. Monitor for unexpected use or modification of the `save` command in the Cisco SD-WAN CLI. ↗
- →A successful exploit results in privilege escalation to root on the underlying OS. Alert on unexpected root-level process spawning or file modifications originating from the SD-WAN CLI process. ↗
- ·Exploitation requires the attacker to be authenticated; unauthenticated remote exploitation is not possible. Ensure strong authentication controls are enforced on SD-WAN CLI access. ↗
- ·There are no workarounds available; patching is the only remediation. Track Cisco Bug ID CSCvi69862 for fix status. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
vendor_cisco8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
vendor_cisco·2019-01-23·CVSS 8.8
CVE-2019-1650 [HIGH] CWE-78 Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device.
The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An attacker could exploit this vulnerability by modifying the save command in the CLI of an affected device. A successful exploit could allow the attacker to overwrite arbitrary files on the underlying operating system of an affected device and escalate their privileges to the root user.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at th
Cisco
Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
vendor_cisco·CVSS 3.0
CVE-2019-1650 Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
CVE-2019-1650: Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An attacker could exploit this vulnerability by modifying the save command in the CLI of an affected device. A successful exploit could allow the attacker to overwrite arbitrary files on the underlying operating system of an affected device and escalate their privileges to the root user. Cisco has released software updates that address this vulnerability. There are no
CVSS: 3.0
CWE: CWE-78, CWE-78
Bug IDs: CSCvi69862
GHSA
GHSA-wchj-88hf-ghm5: A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating sy
ghsa_unreviewed·2022-05-13
CVE-2019-1650 [HIGH] CWE-78 GHSA-wchj-88hf-ghm5: A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating sy
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An attacker could exploit this vulnerability by modifying the save command in the CLI of an affected device. A successful exploit could allow the attacker to overwrite arbitrary files on the underlying operating system of an affected device and escalate their privileges to the root user.
No detection rules found.
No writeups or analysis indexed.
2019-01-24
Published