CVE-2019-1880

Cisco Unified Computing System BIOS Signature Bypass Vulnerability

Severity Score

4.4

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

A vulnerability in the BIOS upgrade utility of Cisco Unified Computing System (UCS) C-Series Rack Servers could allow an authenticated, local attacker to install compromised BIOS firmware on an affected device. The vulnerability is due to insufficient validation of the firmware image file. An attacker could exploit this vulnerability by executing the BIOS upgrade utility with a specific set of options. A successful exploit could allow the attacker to bypass the firmware signature-verification process and install compromised BIOS firmware on an affected device.

Una vulnerabilidad en la utilidad de actualización del BIOS de rack servidores Unified Computing System (UCS) C-Series de Cisco, podría permitir a un atacante local autorizado instalar el firmware del BIOS comprometido en un dispositivo afectado. La vulnerabilidad es debido a una comprobación insuficiente del archivo de imagen del firmware. Un atacante podría explotar esta vulnerabilidad mediante la ejecución de la utilidad de actualización del BIOS con un conjunto específico de opciones. Una operación con éxito podría permitir al atacante omitir el proceso de comprobación de firmas del firmware e instalar el firmware del BIOS comprometido en un dispositivo afectado.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2018-12-06 CVE Reserved
2019-06-05 CVE Published
2023-03-08 EPSS Updated
2024-11-21 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-345: Insufficient Verification of Data Authenticity

CAPEC

References (2)

URL	Tag	Source
http://www.securityfocus.com/bid/108680	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-ucs-biossig-bypass	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 4.0\(2g\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 4.0\(2g\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C125 M5 Search vendor "Cisco" for product "Unified Computing System C125 M5"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 3.0\(4l\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 3.0\(4l\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C220 M4 Search vendor "Cisco" for product "Unified Computing System C220 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	>= 4.0 < 4.0\(2g\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " >= 4.0 < 4.0\(2g\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C220 M4 Search vendor "Cisco" for product "Unified Computing System C220 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 4.0\(4c\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 4.0\(4c\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C220 M5 Search vendor "Cisco" for product "Unified Computing System C220 M5"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 3.0\(4l\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 3.0\(4l\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C240 M4 Search vendor "Cisco" for product "Unified Computing System C240 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	>= 4.0 < 4.0\(2g\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " >= 4.0 < 4.0\(2g\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C240 M4 Search vendor "Cisco" for product "Unified Computing System C240 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 4.0\(4c\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 4.0\(4c\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C240 M5 Search vendor "Cisco" for product "Unified Computing System C240 M5"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 3.0\(4l\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 3.0\(4l\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C460 M4 Search vendor "Cisco" for product "Unified Computing System C460 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	>= 4.0 < 4.0\(2g\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " >= 4.0 < 4.0\(2g\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C460 M4 Search vendor "Cisco" for product "Unified Computing System C460 M4"	-	-	Safe
Cisco Search vendor "Cisco"	Unified Computing System Server Firmware Search vendor "Cisco" for product "Unified Computing System Server Firmware"	< 4.0\(4c\) Search vendor "Cisco" for product "Unified Computing System Server Firmware" and version " < 4.0\(4c\)"	-	Affected	in	Cisco Search vendor "Cisco"	Unified Computing System C480 M5 Search vendor "Cisco" for product "Unified Computing System C480 M5"	-	-	Safe