CVE-2019-1804
Summary
| CVE | CVE-2019-1804 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-05-03 17:29:00 UTC |
| Updated | 2021-11-03 19:57:00 UTC |
| Description | A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. An exploit could allow the attacker to access the system with the privileges of the root user. This vulnerability is only exploitable over IPv6; IPv4 is not vulnerable. |
Risk And Classification
Problem Types: CWE-1188
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | Nexus 93108tc-ex | - | All | All | All |
| Hardware | Cisco | Nexus 93108tc-ex | - | All | All | All |
| Operating System | Cisco | Nexus 93108tc-ex Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 93108tc-ex Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 93108tc-ex Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 93120tx | - | All | All | All |
| Hardware | Cisco | Nexus 93120tx | - | All | All | All |
| Operating System | Cisco | Nexus 93120tx Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 93120tx Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 93120tx Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 93128tx | - | All | All | All |
| Hardware | Cisco | Nexus 93128tx | - | All | All | All |
| Operating System | Cisco | Nexus 93128tx Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 93128tx Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 93128tx Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 93180yc-ex | - | All | All | All |
| Hardware | Cisco | Nexus 93180yc-ex | - | All | All | All |
| Operating System | Cisco | Nexus 93180yc-ex Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 93180yc-ex Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 93180yc-ex Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9332pq | - | All | All | All |
| Hardware | Cisco | Nexus 9332pq | - | All | All | All |
| Operating System | Cisco | Nexus 9332pq Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9332pq Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9332pq Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9372px | - | All | All | All |
| Hardware | Cisco | Nexus 9372px | - | All | All | All |
| Operating System | Cisco | Nexus 9372px Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9372px Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9372px Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9372tx | - | All | All | All |
| Hardware | Cisco | Nexus 9372tx | - | All | All | All |
| Operating System | Cisco | Nexus 9372tx Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9372tx Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9372tx Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9396px | - | All | All | All |
| Hardware | Cisco | Nexus 9396px | - | All | All | All |
| Operating System | Cisco | Nexus 9396px Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9396px Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9396px Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9396tx | - | All | All | All |
| Hardware | Cisco | Nexus 9396tx | - | All | All | All |
| Operating System | Cisco | Nexus 9396tx Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9396tx Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9396tx Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9500 | - | All | All | All |
| Hardware | Cisco | Nexus 9500 | - | All | All | All |
| Operating System | Cisco | Nexus 9500 Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9500 Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9500 Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9504 | - | All | All | All |
| Hardware | Cisco | Nexus 9504 | - | All | All | All |
| Operating System | Cisco | Nexus 9504 Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9504 Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9504 Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9508 | - | All | All | All |
| Hardware | Cisco | Nexus 9508 | - | All | All | All |
| Operating System | Cisco | Nexus 9508 Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9508 Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9508 Firmware | 14.0\(3d\) | All | All | All |
| Hardware | Cisco | Nexus 9516 | - | All | All | All |
| Hardware | Cisco | Nexus 9516 | - | All | All | All |
| Operating System | Cisco | Nexus 9516 Firmware | 14.0(3d) | All | All | All |
| Operating System | Cisco | Nexus 9516 Firmware | 14.0\(3d\) | All | All | All |
| Operating System | Cisco | Nexus 9516 Firmware | 14.0\(3d\) | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability | CISCO | tools.cisco.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.