CVE-2018-0163
First published: Wed Mar 28 2018(Updated: )
A vulnerability in the 802.1x multiple-authentication (multi-auth) feature of Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass the authentication phase on an 802.1x multi-auth port. The vulnerability is due to a logic change error introduced into the code. An attacker could exploit this vulnerability by trying to access an 802.1x multi-auth port after a successful supplicant has authenticated. An exploit could allow the attacker to bypass the 802.1x access controls and obtain access to the network. Cisco Bug IDs: CSCvg69701.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | =15.4\(3\)m6 | |
| Cisco IOS | =15.4\(3\)m6a | |
| Cisco IOS | =15.4\(3\)m7 | |
| Cisco IOS | =15.4\(3\)m7a | |
| Cisco IOS | =15.4\(3\)m8 | |
| Cisco IOS | =15.4\(3.0i\)m6 | |
| Cisco IOS | =15.5\(3\)m3 | |
| Cisco IOS | =15.5\(3\)m4 | |
| Cisco IOS | =15.5\(3\)m4a | |
| Cisco IOS | =15.5\(3\)m4b | |
| Cisco IOS | =15.5\(3\)m4c | |
| Cisco IOS | =15.5\(3\)m5 | |
| Cisco IOS | =15.5\(3\)m5a | |
| Cisco IOS | =15.5\(3\)m6 | |
| Cisco IOS | =15.5\(3\)m6a | |
| Cisco IOS | =15.6\(1\)t2 | |
| Cisco IOS | =15.6\(1\)t3 | |
| Cisco IOS | =15.6\(2\)t1 | |
| Cisco IOS | =15.6\(2\)t2 | |
| Cisco IOS | =15.6\(2\)t3 | |
| Cisco IOS | =15.6\(3\)m | |
| Cisco IOS | =15.6\(3\)m0a | |
| Cisco IOS | =15.6\(3\)m1 | |
| Cisco IOS | =15.6\(3\)m1a | |
| Cisco IOS | =15.6\(3\)m1b | |
| Cisco IOS | =15.6\(3\)m2 | |
| Cisco IOS | =15.6\(3\)m2a | |
| Cisco IOS | =15.6\(3\)m3 | |
| Cisco IOS | =15.6\(3\)m3a | |
| Cisco IOS | =15.7\(3\)m | |
| Cisco IOS | =15.7\(3\)m0a | |
| Cisco IOS | =15.7\(3\)m1 | |
| Cisco IOS | =15.7\(3\)m2 | |
| Cisco 1120 Connected Grid Router | ||
| Cisco 1240 Connected Grid Router | ||
| Cisco 1905 Serial Integrated Services Router | ||
| Cisco 1906c Integrated Services Router | ||
| Cisco 1921 Integrated Services Router | ||
| Cisco 1941 Integrated Services Router | ||
| Cisco 1941w Integrated Services Router | ||
| Cisco 2010 Connected Grid Router | ||
| Cisco 2901 Integrated Services Router | ||
| Cisco 2911 Integrated Services Router | ||
| Cisco 2911a Integrated Services Router | ||
| Cisco 2921 Integrated Services Router | ||
| Cisco 2951 Integrated Services Router | ||
| Cisco 3925 Integrated Services Router | ||
| Cisco 3925e Integrated Services Router | ||
| Cisco 3945 Integrated Services Router | ||
| Cisco 3945e Integrated Services Router | ||
| Cisco 5915 Embedded Service Router | ||
| Cisco 5921 Embedded Services Router | ||
| Cisco 5940 Embedded Services Router | ||
| Cisco 800 Series Routers | ||
| Cisco 800m Integrated Services Router | ||
| Cisco 809 Industrial Integrated Services Router | ||
| Cisco 812 3g Integrated Services Router | ||
| Cisco 812 Cifi Integrated Services Router | ||
| Cisco 819 Hardened 3g | ||
| Cisco 819 Hardened Dual Radio 802.11n Wifi Integrated Services Router | ||
| Cisco 819 Hardened Integrated Services Router | ||
| Cisco 819 Integrated Services Router | ||
| Cisco 819 Non-hardened 4g Lte M2m | ||
| Cisco 819 Non-hardened Secure Multi-mode 4g Lte M2m Isr Router | ||
| Cisco 829 Industrial Integrated Services Router | ||
| Cisco 860vae-w Integrated Services Router | ||
| Cisco 861 Integrated Services Router | ||
| Cisco 861w Integrated Services Router | ||
| Cisco 866vae Integrated Services Router | ||
| Cisco 867vae Integrated Services Router | ||
| Cisco 880-voice Integrated Services Router | ||
| Cisco 881-cube Integrated Services Router | ||
| Cisco 881 3g | ||
| Cisco 881 3g Integrated Services Router | ||
| Cisco 881 Secure Fast Ethernet | ||
| Cisco 881w Integrated Services Router | ||
| Cisco 886va-cube Integrated Services Router | ||
| Cisco 886va-w Integrated Services Router | ||
| Cisco 886va Integrated Services Router | ||
| Cisco 886vag 3g Integrated Services Router | ||
| Cisco 887 Multi-mode Vdsl2\/asdl2\+ Pots | ||
| Cisco 887va-cube Integrated Services Router | ||
| Cisco 887va-w Integrated Services Router | ||
| Cisco 887va Integrated Services Router | ||
| Cisco 887vag 3g Integrated Services Router | ||
| Cisco 887vagw 3g | ||
| Cisco 887vam-w Integrated Services Router | ||
| Cisco 887vamg 3g Integrated Services Router | ||
| Cisco 888-cube Integrated Services Router | ||
| Cisco 888 Integrated Services Router | ||
| Cisco 888e-cube Integrated Services Router | ||
| Cisco 888e Integrated Services Router | ||
| Cisco 888eg 3g Integrated Services Router | ||
| Cisco 888w Integrated Services Router | ||
| Cisco 891-24x Integrated Services Router | ||
| Cisco 891 Integrated Services Router | ||
| Cisco 891w Integrated Services Router | ||
| Cisco 892 Integrated Services Router | ||
| Cisco 892f-cube Integrated Services Router | ||
| Cisco 892w Integrated Services Router | ||
| Cisco 896 Multi-mode Vdsl2\/adsl2\+ Isdn | ||
| Cisco 897 Multi-mode Vdsl2\/adsl2\+ Pots | ||
| Cisco 897 Multi-mode Vdsl2\/adsl2\+ Pots Annex M | ||
| Cisco 898 Secure G.shdsl Efm\/atm | ||
| Cisco C866vae Integrated Services Router | ||
| Cisco C867vae Integrated Services Router | ||
| Cisco C881 Integrated Services Router | ||
| Cisco C881w Integrated Services Router | ||
| Cisco C886va Integrated Services Routers | ||
| Cisco C886vaj Integrated Services Router | ||
| Cisco C887va Integrated Services Routers | ||
| Cisco C887vam Integrated Services Routers | ||
| Cisco C888 Integrated Services Router | ||
| Cisco C888ea Integrated Services Router | ||
| Cisco C891f Integrated Services Routers | ||
| Cisco C891fw Integrated Services Router | ||
| Cisco C892fsp Integrated Services Router | ||
| Cisco C896va Integrated Services Router | ||
| Cisco C897va-m Integrated Services Router | ||
| Cisco C897va Integrated Services Router | ||
| Cisco C897vam-w Integrated Services Router | ||
| Cisco C897vaw Integrated Services Router | ||
| Cisco C898ea Integrated Services Router | ||
| Cisco C899 Secure Gigabit Ethernet | ||
| Cisco Vg204xm Analog Voice Gateway | ||
| Cisco Vg350 Analog Voice Gateway | ||
| Cisco Vg3x0 Analog Voice Gateway | ||
| Rockwellautomation Stratix 5900 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/15.4\(3\)m6
- version/cisco ios/15.4\(3\)m6a
- version/cisco ios/15.4\(3\)m7
- version/cisco ios/15.4\(3\)m7a
- version/cisco ios/15.4\(3\)m8
- version/cisco ios/15.4\(3.0i\)m6
- version/cisco ios/15.5\(3\)m3
- version/cisco ios/15.5\(3\)m4
- version/cisco ios/15.5\(3\)m4a
- version/cisco ios/15.5\(3\)m4b
- version/cisco ios/15.5\(3\)m4c
- version/cisco ios/15.5\(3\)m5
- version/cisco ios/15.5\(3\)m5a
- version/cisco ios/15.5\(3\)m6
- version/cisco ios/15.5\(3\)m6a
- version/cisco ios/15.6\(1\)t2
- version/cisco ios/15.6\(1\)t3
- version/cisco ios/15.6\(2\)t1
- version/cisco ios/15.6\(2\)t2
- version/cisco ios/15.6\(2\)t3
- version/cisco ios/15.6\(3\)m
- version/cisco ios/15.6\(3\)m0a
- version/cisco ios/15.6\(3\)m1
- version/cisco ios/15.6\(3\)m1a
- version/cisco ios/15.6\(3\)m1b
- version/cisco ios/15.6\(3\)m2
- version/cisco ios/15.6\(3\)m2a
- version/cisco ios/15.6\(3\)m3
- version/cisco ios/15.6\(3\)m3a
- version/cisco ios/15.7\(3\)m
- version/cisco ios/15.7\(3\)m0a
- version/cisco ios/15.7\(3\)m1
- version/cisco ios/15.7\(3\)m2
- canonical/cisco 1120 connected grid router
- canonical/cisco 1240 connected grid router
- canonical/cisco 1905 serial integrated services router
- canonical/cisco 1906c integrated services router
- canonical/cisco 1921 integrated services router
- canonical/cisco 1941 integrated services router
- canonical/cisco 1941w integrated services router
- canonical/cisco 2010 connected grid router
- canonical/cisco 2901 integrated services router
- canonical/cisco 2911 integrated services router
- canonical/cisco 2911a integrated services router
- canonical/cisco 2921 integrated services router
- canonical/cisco 2951 integrated services router
- canonical/cisco 3925 integrated services router
- canonical/cisco 3925e integrated services router
- canonical/cisco 3945 integrated services router
- canonical/cisco 3945e integrated services router
- canonical/cisco 5915 embedded service router
- canonical/cisco 5921 embedded services router
- canonical/cisco 5940 embedded services router
- canonical/cisco 800 series routers
- canonical/cisco 800m integrated services router
- canonical/cisco 809 industrial integrated services router
- canonical/cisco 812 3g integrated services router
- canonical/cisco 812 cifi integrated services router
- canonical/cisco 819 hardened 3g
- canonical/cisco 819 hardened dual radio 802.11n wifi integrated services router
- canonical/cisco 819 hardened integrated services router
- canonical/cisco 819 integrated services router
- canonical/cisco 819 non-hardened 4g lte m2m
- canonical/cisco 819 non-hardened secure multi-mode 4g lte m2m isr router
- canonical/cisco 829 industrial integrated services router
- canonical/cisco 860vae-w integrated services router
- canonical/cisco 861 integrated services router
- canonical/cisco 861w integrated services router
- canonical/cisco 866vae integrated services router
- canonical/cisco 867vae integrated services router
- canonical/cisco 880-voice integrated services router
- canonical/cisco 881-cube integrated services router
- canonical/cisco 881 3g
- canonical/cisco 881 3g integrated services router
- canonical/cisco 881 secure fast ethernet
- canonical/cisco 881w integrated services router
- canonical/cisco 886va-cube integrated services router
- canonical/cisco 886va-w integrated services router
- canonical/cisco 886va integrated services router
- canonical/cisco 886vag 3g integrated services router
- canonical/cisco 887 multi-mode vdsl2\/asdl2\+ pots
- canonical/cisco 887va-cube integrated services router
- canonical/cisco 887va-w integrated services router
- canonical/cisco 887va integrated services router
- canonical/cisco 887vag 3g integrated services router
- canonical/cisco 887vagw 3g
- canonical/cisco 887vam-w integrated services router
- canonical/cisco 887vamg 3g integrated services router
- canonical/cisco 888-cube integrated services router
- canonical/cisco 888 integrated services router
- canonical/cisco 888e-cube integrated services router
- canonical/cisco 888e integrated services router
- canonical/cisco 888eg 3g integrated services router
- canonical/cisco 888w integrated services router
- canonical/cisco 891-24x integrated services router
- canonical/cisco 891 integrated services router
- canonical/cisco 891w integrated services router
- canonical/cisco 892 integrated services router
- canonical/cisco 892f-cube integrated services router
- canonical/cisco 892w integrated services router
- canonical/cisco 896 multi-mode vdsl2\/adsl2\+ isdn
- canonical/cisco 897 multi-mode vdsl2\/adsl2\+ pots
- canonical/cisco 897 multi-mode vdsl2\/adsl2\+ pots annex m
- canonical/cisco 898 secure g.shdsl efm\/atm
- canonical/cisco c866vae integrated services router
- canonical/cisco c867vae integrated services router
- canonical/cisco c881 integrated services router
- canonical/cisco c881w integrated services router
- canonical/cisco c886va integrated services routers
- canonical/cisco c886vaj integrated services router
- canonical/cisco c887va integrated services routers
- canonical/cisco c887vam integrated services routers
- canonical/cisco c888 integrated services router
- canonical/cisco c888ea integrated services router
- canonical/cisco c891f integrated services routers
- canonical/cisco c891fw integrated services router
- canonical/cisco c892fsp integrated services router
- canonical/cisco c896va integrated services router
- canonical/cisco c897va-m integrated services router
- canonical/cisco c897va integrated services router
- canonical/cisco c897vam-w integrated services router
- canonical/cisco c897vaw integrated services router
- canonical/cisco c898ea integrated services router
- canonical/cisco c899 secure gigabit ethernet
- canonical/cisco vg204xm analog voice gateway
- canonical/cisco vg350 analog voice gateway
- canonical/cisco vg3x0 analog voice gateway
- vendor/rockwellautomation
- canonical/rockwellautomation stratix 5900