CVE-2018-0437
Summary
| CVE | CVE-2018-0437 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-10-05 14:29:00 UTC |
| Updated | 2019-10-09 23:32:00 UTC |
| Description | A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials. This vulnerability is due to improper implementation of file system permissions, which could allow non-administrative users to place files within restricted directories. An attacker could exploit this vulnerability by placing an executable file within the restricted directory, which when executed by the ERC client, would run with Administrator privileges. |
Risk And Classification
Problem Types: CWE-269
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cisco | Umbrella Enterprise Roaming Client | All | All | All | All |
| Application | Cisco | Umbrella Enterprise Roaming Client | All | All | All | All |
| Application | Cisco | Umbrella Roaming Module | All | All | All | All |
| Application | Cisco | Umbrella Roaming Module | 4.3(1095) | All | All | All |
| Application | Cisco | Umbrella Roaming Module | 4.3\(1095\) | All | All | All |
| Application | Cisco | Umbrella Roaming Module | All | All | All | All |
| Application | Cisco | Umbrella Roaming Module | 4.3\(1095\) | All | All | All |
| Operating System | Microsoft | Windows | - | All | All | All |
| Operating System | Microsoft | Windows | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Umbrella Enterprise Roaming Client and Enterprise Roaming Module Privilege Escalation Vulnerability | CISCO | tools.cisco.com | Vendor Advisory |
| Cisco Umbrella ERC and Umbrella Roaming Module Local Privilege Escalation Vulnerability | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Cisco Umbrella Roaming Client 2.0.168 - Local Privilege Escalation - Windows_x86-64 local Exploit | EXPLOIT-DB | www.exploit-db.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.