Cisco Policy Suite CVE-2018-15466 Graphite Authentication Bypass Vulnerability
BID:106517
CVE-2018-15466 |Info
Cisco Policy Suite CVE-2018-15466 Graphite Authentication Bypass Vulnerability
| Bugtraq ID: | 106517 |
| Class: | Design Error |
| CVE: |
CVE-2018-15466 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 09 2019 12:00AM |
| Updated: | Jan 09 2019 12:00AM |
| Credit: | Cisco |
| Vulnerable: |
Cisco Policy Suite for Mobile 12.0 |
| Not Vulnerable: |
Cisco Policy Suite for Mobile 18.5 |
Discussion
Cisco Policy Suite CVE-2018-15466 Graphite Authentication Bypass Vulnerability
Cisco Policy Suite is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to bypass authentication mechanism and perform unauthorized actions. This may lead to further attacks.
This issue is being tracked by Cisco bug ID CSCvc95415.
Cisco Policy Suite for Mobile version 12.0.0 is vulnerable.
Cisco Policy Suite is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to bypass authentication mechanism and perform unauthorized actions. This may lead to further attacks.
This issue is being tracked by Cisco bug ID CSCvc95415.
Cisco Policy Suite for Mobile version 12.0.0 is vulnerable.
Exploit / POC
Cisco Policy Suite CVE-2018-15466 Graphite Authentication Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Cisco Policy Suite CVE-2018-15466 Graphite Authentication Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.