CVE-2019-1600
Cisco FXOS and NX-OS Software Unauthorized Directory Access Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to access sensitive information that is stored in the file system of an affected system. The vulnerability is due to improper implementation of file system permissions. An attacker could exploit this vulnerability by accessing and modifying restricted files. A successful exploit could allow the attacker to access sensitive and critical files. Firepower 4100 Series Next-Generation Firewalls are affected in versions prior to 2.2.2.91 and 2.3.1.110. Firepower 9300 Series Next-Generation Firewalls are affected in versions prior to 2.2.2.91 and 2.3.1.110. MDS 9000 Series Multilayer Switches are affected in versions prior to 6.2(25), 8.1(1b), and 8.3(1). Nexus 3000 Series Switches are affected in versions prior to 7.0(3)I4(9) and 7.0(3)I7(4). Nexus 3500 Platform Switches are affected in versions prior to 6.0(2)A8(10) and 7.0(3)I7(4). Nexus 3600 Platform Switches are affected in versions prior to 7.0(3)F3(5). Nexus 2000, 5500, 5600, and 6000 Series Switches are affected in versions prior to 7.1(5)N1(1b) and 7.3(3)N1(1). Nexus 7000 and 7700 Series Switches are affected in versions prior to 6.2(22), 7.3(3)D1(1), and 8.2(3). Nexus 9000 Series Switches-Standalone are affected in versions prior to 7.0(3)I4(9) and 7.0(3)I7(4). Nexus 9500 R-Series Line Cards and Fabric Modules are affected in versions prior to 7.0(3)F3(5).
Una vulnerabilidad en los permisos de sistema de archivos del software Cisco FXOS y Cisco NX-OS podría permitir que un atacante local autenticado acceda a información sensible que se almacena en el sistema de archivos de un sistema afectado. Esta vulnerabilidad se debe a la implementación incorrecta de permisos de sistemas de archivos. Un atacante podría explotar esta vulnerabilidad modificando y accediendo a los archivos restringidos. Un exploit con éxito podría permitir que el atacante acceda a archivos críticos y sensibles. Los firewalls de Firepower 4100 Series Next-Generation se ven afectados en versiones anteriores a las 2.2.2.91 y 2.3.1.110. Los firewalls de Firepower 9300 Series Next-Generation se ven afectados en versiones anteriores a las 2.2.2.91 y 2.3.1.110. Los switches de MDS 9000 Series Multilayer se ven afectados en versiones anteriores a las 6.2(25), 8.1(1b) y 8.3(1). Los switches de Nexus 3000 Series se ven afectados en versiones anteriores a las 7.0(3)I4(9) y 7.0(3)I7(4). Los switches de Nexus 3500 Platform se ven afectados en versiones anteriores a la 6.0(2)A8(10) y 7.0(3)I7(4). Los switches de Nexus 3600 Platform se ven afectados en versiones anteriores a la 7.0(3)F3(5). Los switches de Nexus, en sus series 5500, 5600 y 6000, se ven afectados en versiones anteriores a las 7.1(5)N1(1b) y 7.3(3)N1(1). Los switches de Nexus, en sus series 7000 y 7700, se ven afectados en versiones anteriores a las 6.2(22), 7.3(3)D1(1) y 8.2(3). Los switches de Nexus 9000 Series-Standalone se ven afectados en versiones anteriores a las 7.0(3)I4(9) y 7.0(3)I7(4). Los switches de Nexus 9500 R-Series Line Cards y Fabric Modules se ven afectados en versiones anteriores a la 7.0(3)F3(5).
CVSS Scores
SSVC
- Decision:Track*
Timeline
- 2018-12-06 CVE Reserved
- 2019-03-07 CVE Published
- 2023-03-08 EPSS Updated
- 2024-11-20 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
- CWE-732: Incorrect Permission Assignment for Critical Resource
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/107399 | Third Party Advisory | |
| http://www.securityfocus.com/bid/107404 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-directory | 2023-04-20 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System" | >= 1.1 < 2.2.2.91 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 2.2.2.91" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 4100 Search vendor "Cisco" for product "Firepower 4100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System" | >= 1.1 < 2.2.2.91 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 2.2.2.91" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 9300 Search vendor "Cisco" for product "Firepower 9300" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System" | >= 2.3 < 2.3.1.110 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.3 < 2.3.1.110" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 4100 Search vendor "Cisco" for product "Firepower 4100" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System" | >= 2.3 < 2.3.1.110 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.3 < 2.3.1.110" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 9300 Search vendor "Cisco" for product "Firepower 9300" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 8.2 < 8.3\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 8.2 < 8.3\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Mds 9000 Search vendor "Cisco" for product "Mds 9000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.0\(3\)i5 < 7.0\(3\)i7\(4\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.0\(3\)i5 < 7.0\(3\)i7\(4\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 3000 Search vendor "Cisco" for product "Nexus 3000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.0\(3\) < 7.0\(3\)i7\(4\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.0\(3\) < 7.0\(3\)i7\(4\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 3500 Search vendor "Cisco" for product "Nexus 3500" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.0\(3\)f3 < 7.0\(3\)f3\(5\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.0\(3\)f3 < 7.0\(3\)f3\(5\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 3600 Search vendor "Cisco" for product "Nexus 3600" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)n1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)n1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 2000 Search vendor "Cisco" for product "Nexus 2000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)n1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)n1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 5500 Search vendor "Cisco" for product "Nexus 5500" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)n1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)n1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 5600 Search vendor "Cisco" for product "Nexus 5600" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)n1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)n1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 6000 Search vendor "Cisco" for product "Nexus 6000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 8.0 < 8.2\(3\) Search vendor "Cisco" for product "Nx-os" and version " >= 8.0 < 8.2\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7000 Search vendor "Cisco" for product "Nexus 7000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 8.0 < 8.2\(3\) Search vendor "Cisco" for product "Nx-os" and version " >= 8.0 < 8.2\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7700 Search vendor "Cisco" for product "Nexus 7700" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.0\(3\)i5 < 7.0\(3\)i7\(4\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.0\(3\)i5 < 7.0\(3\)i7\(4\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9000 Search vendor "Cisco" for product "Nexus 9000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.0\(3\)f1 < 7.0\(3\)f3\(5\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.0\(3\)f1 < 7.0\(3\)f3\(5\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9500 Search vendor "Cisco" for product "Nexus 9500" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.3 < 8.1\(1b\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.3 < 8.1\(1b\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Mds 9000 Search vendor "Cisco" for product "Mds 9000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 5.2. < 6.2\(25\) Search vendor "Cisco" for product "Nx-os" and version " >= 5.2. < 6.2\(25\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Mds 9000 Search vendor "Cisco" for product "Mds 9000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.0\(3\)i4\(9\) Search vendor "Cisco" for product "Nx-os" and version " < 7.0\(3\)i4\(9\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 3000 Search vendor "Cisco" for product "Nexus 3000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 6.0\(2\)a8\(10\) Search vendor "Cisco" for product "Nx-os" and version " < 6.0\(2\)a8\(10\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 3500 Search vendor "Cisco" for product "Nexus 3500" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.1\(5\)n1\(1b\) Search vendor "Cisco" for product "Nx-os" and version " < 7.1\(5\)n1\(1b\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 2000 Search vendor "Cisco" for product "Nexus 2000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.1\(5\)n1\(1b\) Search vendor "Cisco" for product "Nx-os" and version " < 7.1\(5\)n1\(1b\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 5500 Search vendor "Cisco" for product "Nexus 5500" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.1\(5\)n1\(1b\) Search vendor "Cisco" for product "Nx-os" and version " < 7.1\(5\)n1\(1b\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 5600 Search vendor "Cisco" for product "Nexus 5600" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.1\(5\)n1\(1b\) Search vendor "Cisco" for product "Nx-os" and version " < 7.1\(5\)n1\(1b\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 6000 Search vendor "Cisco" for product "Nexus 6000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)d1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)d1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7000 Search vendor "Cisco" for product "Nexus 7000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | >= 7.2 < 7.3\(3\)d1\(1\) Search vendor "Cisco" for product "Nx-os" and version " >= 7.2 < 7.3\(3\)d1\(1\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7700 Search vendor "Cisco" for product "Nexus 7700" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 6.2\(22\) Search vendor "Cisco" for product "Nx-os" and version " < 6.2\(22\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7000 Search vendor "Cisco" for product "Nexus 7000" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 6.2\(22\) Search vendor "Cisco" for product "Nx-os" and version " < 6.2\(22\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 7700 Search vendor "Cisco" for product "Nexus 7700" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | < 7.0\(3\)i4\(9\) Search vendor "Cisco" for product "Nx-os" and version " < 7.0\(3\)i4\(9\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9000 Search vendor "Cisco" for product "Nexus 9000" | - | - |
Safe
|