CVE-2017-6767
First published: Wed Aug 16 2017(Updated: )
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote attacker to gain higher privileges than the account is assigned. The attacker will be granted the privileges of the last user to log in, regardless of whether those privileges are higher or lower than what should have been granted. The attacker cannot gain root-level privileges. The vulnerability is due to a limitation with how Role-Based Access Control (RBAC) grants privileges to remotely authenticated users when login occurs via SSH directly to the local management interface of the APIC. An attacker could exploit this vulnerability by authenticating to the targeted device. The attacker's privilege level will be modified to match that of the last user to log in via SSH. An exploit could allow the attacker to gain elevated privileges and perform CLI commands that should be restricted by the attacker's configured role. Cisco Bug IDs: CSCvc34335. Known Affected Releases: 1.0(1e), 1.0(1h), 1.0(1k), 1.0(1n), 1.0(2j), 1.0(2m), 1.0(3f), 1.0(3i), 1.0(3k), 1.0(3n), 1.0(4h), 1.0(4o); 1.1(0.920a), 1.1(1j), 1.1(3f); 1.2 Base, 1.2(2), 1.2(3), 1.2.2; 1.3(1), 1.3(2), 1.3(2f); 2.0 Base, 2.0(1).
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(1e\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(1h\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(1k\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(1n\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(2j\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(2m\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(3f\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(3i\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(3k\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(3n\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(4h\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.0\(4o\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.1\(0.920a\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.1\(1j\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.1\(3f\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.2\(2\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.2\(3\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.2.2 | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.2_base | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.3\(1\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.3\(2\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =1.3\(2f\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =2.0\(1\) | |
| Cisco Application Policy Infrastructure Controller (APIC) | =2.0_base |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-6767?
CVE-2017-6767 has been rated as a high-severity vulnerability.
How do I fix CVE-2017-6767?
To fix CVE-2017-6767, it is recommended to upgrade to the latest version of Cisco Application Policy Infrastructure Controller (APIC) that addresses this vulnerability.
Who is affected by CVE-2017-6767?
CVE-2017-6767 affects authenticated users of Cisco Application Policy Infrastructure Controller (APIC) versions listed in the affected software.
What type of attack can exploit CVE-2017-6767?
CVE-2017-6767 can be exploited by an authenticated, remote attacker to gain unauthorized privileges.
What could happen if CVE-2017-6767 is exploited?
If CVE-2017-6767 is exploited, an attacker could gain higher privileges than intended, potentially leading to unauthorized access to sensitive functions.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco application policy infrastructure controller (apic)
- version/cisco application policy infrastructure controller (apic)/1.0\(1e\)
- version/cisco application policy infrastructure controller (apic)/1.0\(1h\)
- version/cisco application policy infrastructure controller (apic)/1.0\(1k\)
- version/cisco application policy infrastructure controller (apic)/1.0\(1n\)
- version/cisco application policy infrastructure controller (apic)/1.0\(2j\)
- version/cisco application policy infrastructure controller (apic)/1.0\(2m\)
- version/cisco application policy infrastructure controller (apic)/1.0\(3f\)
- version/cisco application policy infrastructure controller (apic)/1.0\(3i\)
- version/cisco application policy infrastructure controller (apic)/1.0\(3k\)
- version/cisco application policy infrastructure controller (apic)/1.0\(3n\)
- version/cisco application policy infrastructure controller (apic)/1.0\(4h\)
- version/cisco application policy infrastructure controller (apic)/1.0\(4o\)
- version/cisco application policy infrastructure controller (apic)/1.1\(0.920a\)
- version/cisco application policy infrastructure controller (apic)/1.1\(1j\)
- version/cisco application policy infrastructure controller (apic)/1.1\(3f\)
- version/cisco application policy infrastructure controller (apic)/1.2\(2\)
- version/cisco application policy infrastructure controller (apic)/1.2\(3\)
- version/cisco application policy infrastructure controller (apic)/1.2.2
- version/cisco application policy infrastructure controller (apic)/1.2_base
- version/cisco application policy infrastructure controller (apic)/1.3\(1\)
- version/cisco application policy infrastructure controller (apic)/1.3\(2\)
- version/cisco application policy infrastructure controller (apic)/1.3\(2f\)
- version/cisco application policy infrastructure controller (apic)/2.0\(1\)
- version/cisco application policy infrastructure controller (apic)/2.0_base