CVE-2019-1950

Published Feb 19, 2020

Last updated a year ago

CVSS high 8.4

Overview

Description: A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An attacker who has access to an affected device could log in with elevated privileges. A successful exploit could allow the attacker to take complete control of the device. This vulnerability affects Cisco devices that are running Cisco IOS XE SD-WAN Software releases 16.11 and earlier.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.4
Impact score: 5.9
Exploitability score: 2.5
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-1188
ykramarz@cisco.com: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7D3AD3F-F4FD-432F-8BB1-5EEBE0602D2C",
            "versionEndIncluding": "16.11"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A2D2305B-B69E-4F74-A44E-07B3205CE9F7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "26DD41B3-1D1D-44D3-BA8E-5A66AFEE77E6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5AAD4397-6DCF-493A-BD61-3A890F6F3AB2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3F2F0A8E-97F6-41AC-BE67-4B2D60F9D36B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB9229F3-7BCE-46C4-9879-D57B5BAAE44E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A5A606FE-E6F1-43F9-B1CD-D9DF35FC3573"
          },
          {
            "criteria": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6C8AED7C-DDA3-4C29-BB95-6518C02C551A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5419CB9F-241F-4431-914F-2659BE27BEA5"
          },
          {
            "criteria": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5720462A-BE6B-4E84-A1A1-01E80BBA86AD"
          },
          {
            "criteria": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E8B60888-6E2B-494E-AC65-83337661EE7D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1000-x:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FE2182E7-C813-4966-A36C-E648A9344299"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1001-hx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7594E307-AC80-41EC-AE94-07E664A7D701"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1002-hx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CD2794BD-C8CE-46EF-9857-1723FCF04E46"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "444F688F-79D0-4F22-B530-7BD520080B8F"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "55DD2272-10C2-43B9-9F13-6DC41DBE179B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1006:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7428E0A8-1641-47FB-9CA9-34311DEF660D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1006-x:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DE7401B7-094C-46EB-9869-2F0372E8B26B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1009-x:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8D8A72FD-D8B0-45B5-8FAD-6D8395BB218A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1013:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "854D9594-FE84-4E7B-BA21-A3287F2DC302"
          },
          {
            "criteria": "cpe:2.3:h:cisco:csr1000v:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62081293-8355-4197-A5A8-1E434B808680"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ir1101:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2E80DC31-8EC9-47A2-B961-0A819374A884"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_56128p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "ABB6E612-4246-4408-B3F6-B31E771F5ACB"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_5624q:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "91B129B2-2B31-4DE0-9F83-CC6E0C8729A0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_5648q:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3CBD3CD0-B542-4B23-9C9D-061643BE44E8"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_5672up:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A22A2647-A4C0-4681-BBC5-D95ADBAA0457"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_5672up-16g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "367C2A49-4C4D-471B-9B34-AFAFA5AE9503"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_5696q:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B2BB1A3A-668C-4B0D-8AC2-6B4758B3420B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e1120d-m3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DF77273F-73C0-40EB-BB4E-75269D46F074"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e140s-m2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "757958F5-F58C-4128-B128-D989A56ACA34"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e160d-m2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F62D6B73-1AB7-4B93-A92E-275E78DF114C"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e160s-m3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A0E6AAD9-824C-4126-8347-2FF1895E6D33"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e180d-m2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB3E47EB-9C60-4A06-956A-46B5D2E46239"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ucs-e180d-m3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "155D990F-C7DA-48DD-92CC-18542DBBE572"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References