CVE-2018-0336

Severity Score

8.8

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in the batch provisioning feature of Cisco Prime Collaboration Provisioning could allow an authenticated, remote attacker to escalate privileges to the Administrator level. The vulnerability is due to insufficient authorization enforcement on batch processing. An attacker could exploit this vulnerability by uploading a batch file and having the batch file processed by the system. A successful exploit could allow the attacker to escalate privileges to the Administrator level. Cisco Bug IDs: CSCvd86578.

Una vulnerabilidad en la característica de aprovisionamiento de lotes en Cisco Prime Collaboration Provisioning podría permitir que un atacante remoto autenticado escale sus privilegios a nivel de Administrador. Esta vulnerabilidad se debe a una aplicación de autorización insuficiente del procesamiento de lotes. Un atacante podría explotar esta vulnerabilidad subiendo un archivo por lotes y haciendo que dicho archivo sea procesado por el sistema. Una explotación con éxito podría permitir a un atacante escalar sus privilegios a nivel de Administrador. Cisco Bug IDs: CSCvd86578.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-11-27 CVE Reserved
2018-06-07 CVE Published
2024-08-02 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-264: Permissions, Privileges, and Access Controls
CWE-862: Missing Authorization

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/104429	Third Party Advisory
http://www.securitytracker.com/id/1041083	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-escalation	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Prime Collaboration Search vendor "Cisco" for product "Prime Collaboration"				12.1 Search vendor "Cisco" for product "Prime Collaboration" and version "12.1"		-		Affected