Published: 03/05/2019 Updated: 13/10/2020
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an malicious user to bypass client-side certificate authentication and revert to password authentication. The vulnerability exists because OpenSSH mishandles the authentication process. An attacker could exploit this vulnerability by attempting to connect to the device via SSH. A successful exploit could allow the malicious user to access the configuration as an administrative user if the default credentials are not changed. There are no workarounds available; however, if client-side certificate authentication is enabled, disable it and use strong password authentication. Client-side certificate authentication is disabled by default.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco sg200-50_firmware

cisco sg200-50p_firmware

cisco sg200-50fp_firmware

cisco sg200-26_firmware

cisco sg200-26p_firmware

cisco sg200-26fp_firmware

cisco sg200-18_firmware

cisco sg200-10fp_firmware

cisco sg200-08_firmware

cisco sg200-08p_firmware

cisco sf200-24_firmware

cisco sf200-24p_firmware

cisco sf200-24fp_firmware

cisco sf200-48_firmware

cisco sf200-48p_firmware

cisco sf302-08pp_firmware

cisco sf302-08mpp_firmware

cisco sg300-10pp_firmware

cisco sg300-10mpp_firmware

cisco sf300-24pp_firmware

cisco sf300-48pp_firmware

cisco sg300-28pp_firmware

cisco sf300-08_firmware

cisco sf300-48p_firmware

cisco sg300-10mp_firmware

cisco sg300-10p_firmware

cisco sg300-10_firmware

cisco sg300-28p_firmware

cisco sf300-24p_firmware

cisco sf302-08mp_firmware

cisco sg300-28_firmware

cisco sf300-48_firmware

cisco sg300-20_firmware

cisco sf302-08p_firmware

cisco sg300-52_firmware

cisco sf300-24_firmware

cisco sf302-08_firmware

cisco sf300-24mp_firmware

cisco sg300-10sfp_firmware

cisco sg300-28mp_firmware

cisco sg300-52p_firmware

cisco sg300-52mp_firmware

cisco sg500-28mpp_firmware

cisco sg500-52mp_firmware

cisco sg500xg-8f8t_firmware

cisco sf500-24_firmware

cisco sf500-24p_firmware

cisco sf500-48_firmware

cisco sf500-48p_firmware

cisco sg500-28_firmware

cisco sg500-28p_firmware

cisco sg500-52_firmware

cisco sg500-52p_firmware

cisco sg500x-24_firmware

cisco sg500x-24p_firmware

cisco sg500x-48_firmware

cisco sg500x-48p_firmware

cisco sg250x-24_firmware

cisco sg250x-24p_firmware

cisco sg250x-48_firmware

cisco sg250x-48p_firmware

cisco sg250-08_firmware

cisco sg250-08hp_firmware

cisco sg250-10p_firmware

cisco sg250-18_firmware

cisco sg250-26_firmware

cisco sg250-26hp_firmware

cisco sg250-26p_firmware

cisco sg250-50_firmware

cisco sg250-50hp_firmware

cisco sg250-50p_firmware

cisco sf250-24_firmware

cisco sf250-24p_firmware

cisco sf250-48_firmware

cisco sf250-48hp_firmware

cisco sg350-10_firmware

cisco sg350-10p_firmware

cisco sg350-10mp_firmware

cisco sg355-10p_firmware

cisco sg350-28_firmware

cisco sg350-28p_firmware

cisco sg350-28mp_firmware

cisco sf350-48_firmware

cisco sf350-48p_firmware

cisco sf350-48mp_firmware

cisco sg350xg-2f10_firmware

cisco sg350xg-24f_firmware

cisco sg350xg-24t_firmware

cisco sg350xg-48t_firmware

cisco sg350x-24_firmware

cisco sg350x-24p_firmware

cisco sg350x-24mp_firmware

cisco sg350x-48_firmware

cisco sg350x-48p_firmware

cisco sg350x-48mp_firmware

cisco sx550x-16ft_firmware

cisco sx550x-24ft_firmware

cisco sx550x-12f_firmware

cisco sx550x-24f_firmware

cisco sx550x-24_firmware

cisco sx550x-52_firmware

cisco sg550x-24_firmware

cisco sg550x-24p_firmware

cisco sg550x-24mp_firmware

cisco sg550x-24mpp_firmware

cisco sg550x-48_firmware

cisco sg550x-48p_firmware

cisco sg550x-48mp_firmware

cisco sf550x-24_firmware

cisco sf550x-24p_firmware

cisco sf550x-24mp_firmware

cisco sf550x-48_firmware

cisco sf550x-48p_firmware

cisco sf550x-48mp_firmware

Vendor Advisories

A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to password authentication The vulnerability exists because OpenSSH mishandles the authentication process An attacker could exploit this vulnerability by att ...

Recent Articles

Cisco Warns of Critical Nexus 9000 Data Center Flaw
Threatpost • Tara Seals • 02 May 2019

A critical vulnerability in Cisco’s software-defined networking (SDN) software could allow an unauthenticated, remote attacker to connect to a vulnerable data-center switch and take it over, with the privileges of the root user.
The bug (CVE-2019-1804), which has a CVSS severity rating of 9.8 out of 10, exists in the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software, which is part of Cisco’s SDN approach. Enterprises use ACI to deploy and control app...