CVE-2019-1804

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
ciscoCNA
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
cisconexus_9332pq_firmware
14.0\(3d\)
cisconexus_93180yc-ex_firmware
14.0\(3d\)
cisconexus_93128tx_firmware
14.0\(3d\)
cisconexus_93120tx_firmware
14.0\(3d\)
cisconexus_93108tc-ex_firmware
14.0\(3d\)
cisconexus_9516_firmware
14.0\(3d\)
cisconexus_9508_firmware
14.0\(3d\)
cisconexus_9504_firmware
14.0\(3d\)
cisconexus_9500_firmware
14.0\(3d\)
cisconexus_9396tx_firmware
14.0\(3d\)
cisconexus_9396px_firmware
14.0\(3d\)
cisconexus_9372tx_firmware
14.0\(3d\)
cisconexus_9372px_firmware
14.0\(3d\)
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-nexus9k-sshkey