Cisco Prime Data Center Network Manager up to 10.1 Administrative Console Credentials access control
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 8.2 | $0-$5k | 0.00 |
Summary
A vulnerability identified as critical has been detected in Cisco Prime Data Center Network Manager up to 10.1. The affected element is an unknown function of the component Administrative Console. This manipulation as part of Credentials causes access control. This vulnerability is tracked as CVE-2017-6640. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.
Details
A vulnerability classified as critical was found in Cisco Prime Data Center Network Manager up to 10.1. Affected by this vulnerability is some unknown functionality of the component Administrative Console. The manipulation as part of a Credentials leads to a access control vulnerability. The CWE definition for the vulnerability is CWE-264. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, remote attacker to log in to the administrative console of a DCNM server by using an account that has a default, static password. The account could be granted root- or system-level privileges. The vulnerability exists because the affected software has a default user account that has a default, static password. The user account is created automatically when the software is installed. An attacker could exploit this vulnerability by connecting remotely to an affected system and logging in to the affected software by using the credentials for this default user account. A successful exploit could allow the attacker to use this default user account to log in to the affected software and gain access to the administrative console of a DCNM server. This vulnerability affects Cisco Prime Data Center Network Manager (DCNM) Software releases prior to Release 10.2(1) for Microsoft Windows, Linux, and Virtual Appliance platforms. Cisco Bug IDs: CSCvd95346.
The bug was discovered 06/07/2017. The weakness was disclosed 06/08/2017 as cisco-sa-20170607-dcnm2 as confirmed advisory (Website). The advisory is shared at tools.cisco.com. This vulnerability is known as CVE-2017-6640 since 03/09/2017. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1068 for this issue.
The vulnerability scanner Nessus provides a plugin with the ID 100993 (Cisco Prime Data Center Network Manager 10.1.x < 10.2.1 Multiple Vulnerabilities (remote check)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CISCO and running in the context r.
Upgrading to version 10.2(1) eliminates this vulnerability. A possible mitigation has been published before and not just after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (100993) and SecurityFocus (BID 98937†). The entry VDB-102096 is pretty similar. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.5VulDB Meta Temp Score: 8.4
VulDB Base Score: 7.3
VulDB Temp Score: 7.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 9.8
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Access controlCWE: CWE-264
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 100993
Nessus Name: Cisco Prime Data Center Network Manager 10.1.x < 10.2.1 Multiple Vulnerabilities (remote check)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
OpenVAS ID: 802459
OpenVAS Name: Cisco Prime Data Center Network Manager Server Static Credential Vulnerability
OpenVAS File: 🔍
OpenVAS Family: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: Prime Data Center Network Manager 10.2(1)
Timeline
03/09/2017 🔍06/07/2017 🔍
06/07/2017 🔍
06/07/2017 🔍
06/08/2017 🔍
06/08/2017 🔍
06/08/2017 🔍
06/22/2017 🔍
12/26/2020 🔍
Sources
Vendor: cisco.comAdvisory: cisco-sa-20170607-dcnm2
Researcher: Antonius Mulder
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2017-6640 (🔍)
GCVE (CVE): GCVE-0-2017-6640
GCVE (VulDB): GCVE-100-102097
SecurityFocus: 98937 - Cisco Prime Data Center Network Manager (DCNM) Default Account Authentication Bypass Vulnerability
SecurityTracker: 1038625
See also: 🔍
Entry
Created: 06/08/2017 20:24Updated: 12/26/2020 14:31
Changes: 06/08/2017 20:24 (74), 10/14/2019 16:59 (5), 12/26/2020 14:27 (2), 12/26/2020 14:31 (1)
Complete: 🔍
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.