CVE-2019-1829

{"id": "CVE-2019-1829", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2019-04-18T02:29:05.577", "references": [{"url": "http://www.securityfocus.com/bid/107990", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190417-air-ap-cmdinj", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-16"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the CLI of Cisco Aironet Series Access Points (APs) could allow an authenticated, local attacker to gain access to the underlying Linux operating system (OS) without the proper authentication. The attacker would need valid administrator device credentials. The vulnerability is due to improper validation of user-supplied input for certain CLI commands. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input for a CLI command. A successful exploit could allow the attacker to obtain access to the underlying Linux OS without proper authentication."}, {"lang": "es", "value": "Una vulnerabilidad en la CLI de Aironet Series Access Points (APs) de Cisco Aironet de Cisco podr\u00eda permitir a un atacante local autorizado obtener acceso al sistema operativo Linux (OS) subyacente sin la autenticaci\u00f3n adecuada. El atacante necesitar\u00eda credenciales de dispositivo de administrador v\u00e1lidas. La vulnerabilidad es debido a la composici\u00f3n incorrecta de la entrada proporcionada por el usuario para ciertos comandos de la CLI. Un atacante podr\u00eda aprovechar esta vulnerabilidad al autenticarse en un dispositivo afectado y enviar una entrada creada para un comando de la CLI. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante obtener acceso al sistema operativo Linux subyacente sin la autenticaci\u00f3n adecuada."}], "lastModified": "2020-10-16T17:39:50.443", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:aironet_access_point_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7089C64-F405-45C3-A90D-3EAF6A650498", "versionEndExcluding": "8.3.150.0"}, {"criteria": "cpe:2.3:o:cisco:aironet_access_point_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "157DEA4D-54A7-4F7C-BC6E-13FE00085969", "versionEndExcluding": "8.5.140.0", "versionStartIncluding": "8.5"}, {"criteria": "cpe:2.3:o:cisco:aironet_access_point_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "916CC4E1-D614-4581-8AF7-CF90065E9987", "versionEndExcluding": "8.8.111.0", "versionStartIncluding": "8.6.101.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:aironet_1542d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C5DB7510-2741-464A-8FC9-8419985E330F"}, {"criteria": "cpe:2.3:h:cisco:aironet_1542i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3AE916B2-CAAD-4508-A47E-A7D4D88B077A"}, {"criteria": "cpe:2.3:h:cisco:aironet_1562d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1D717945-EE41-4D0F-86EF-90826EBE9C3E"}, {"criteria": "cpe:2.3:h:cisco:aironet_1562e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "99EAEA92-6589-4DFB-BC4B-8CBA425452D9"}, {"criteria": "cpe:2.3:h:cisco:aironet_1562i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D27AB201-342D-4517-9E05-6088598F4695"}, {"criteria": "cpe:2.3:h:cisco:aironet_1800i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BC836B4D-A489-4300-B0A2-EF0B6E01E623"}, {"criteria": "cpe:2.3:h:cisco:aironet_2800e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "098A82FF-95F7-416A-BADD-C57CE81ACD32"}, {"criteria": "cpe:2.3:h:cisco:aironet_2800i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DD1D5813-9223-4B3F-9DE2-F3EF854FC927"}, {"criteria": "cpe:2.3:h:cisco:aironet_3800e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10D7583E-2B61-40F1-B9A6-701DA08F8CDF"}, {"criteria": "cpe:2.3:h:cisco:aironet_3800i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "945DDBE7-6233-416B-9BEE-7029F047E298"}, {"criteria": "cpe:2.3:h:cisco:aironet_3800p:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0ED89428-750C-4C26-B2A1-E3D63F8B3F44"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:aironet_access_point_firmware:8.5\\(131.0\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FDAB7C18-98CB-4269-AED2-79FCEA30A679"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:aironet_1850e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24E47788-9B54-42C5-AD83-428B22674575"}, {"criteria": "cpe:2.3:h:cisco:aironet_1850i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A333CD0B-4729-4E64-8B52-A3F5138F5B70"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}