CVE-2018-0294
First published: Wed Jun 20 2018(Updated: )
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not properly delete sensitive files when certain CLI commands are used to clear the device configuration and reload a device. An attacker could exploit this vulnerability by logging into an affected device as an administrative user and configuring an unauthorized account for the device. The account would not require a password for authentication and would be accessible only via a Secure Shell (SSH) connection to the device. A successful exploit could allow the attacker to configure an unauthorized account that has administrative privileges, does not require a password for authentication, and does not appear in the running configuration or the audit logs for the affected device. This vulnerability affects Firepower 4100 Series Next-Generation Firewalls, Firepower 9300 Security Appliance, Nexus 1000V Series Switches, Nexus 1100 Series Cloud Services Platforms, Nexus 2000 Series Fabric Extenders, Nexus 3500 Platform Switches, Nexus 4000 Series Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvd13993, CSCvd34845, CSCvd34857, CSCvd34862, CSCvd34879, CSCve35753.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco NX-OS | =7.3\(2\)n1\(0.354\) | |
| Cisco Nexus 5000 firmware | ||
| Cisco Nexus 5010 | ||
| Cisco Nexus 5020 | ||
| Cisco Nexus 5548P Firmware | ||
| Cisco Nexus 5548UP Firmware | ||
| Cisco Nexus 5596T Firmware | ||
| Cisco Nexus 5596UP Firmware | ||
| Cisco 56128p | ||
| Cisco Nexus 5624Q Firmware | ||
| Cisco Nexus 5648Q Firmware | ||
| Cisco Nexus 5672UP-16G | ||
| Cisco Nexus 5696Q Firmware | ||
| Cisco NX-OS | =5.2\(1\)sv3\(1.10\) | |
| Cisco Nexus 1000V | ||
| Cisco NX-OS | =8.8\(3.5\)s0 | |
| Cisco Nexus 92160YC Switch | ||
| Cisco Nexus 92304QC Switch | ||
| Cisco Nexus 9236C Switch | ||
| Cisco Nexus 9272Q Switch | ||
| Cisco Nexus | ||
| Cisco Nexus 93120TX Firmware | ||
| Cisco Nexus 93128 Firmware | ||
| Cisco Nexus 93180YC-EX-24 | ||
| Cisco Nexus 9332PQ Firmware | ||
| Cisco Nexus 9372PX-E | ||
| Cisco Nexus 9372TX | ||
| Cisco Nexus 9396PX Firmware | ||
| Cisco Nexus 9396TX Firmware | ||
| Cisco Nexus 9504 firmware | ||
| Cisco Nexus 9508 | ||
| Cisco Nexus 9516 firmware | ||
| Cisco Nexus 9508 | ||
| Cisco x9636q-r | ||
| Cisco Nexus X9636Q-R | ||
| Cisco NX-OS | =7.0\(3\)i2\(4a\) | |
| Cisco Nexus 172tq-xl | ||
| Cisco Nexus 3016Q Firmware | ||
| Cisco Nexus 3048 Firmware | ||
| Cisco Nexus 3064 | ||
| Cisco Nexus 3064 | ||
| Cisco Nexus 3064x | ||
| Cisco Nexus 3100V Firmware | ||
| Cisco Nexus 31128PQ | ||
| Cisco Nexus 3132C-Z Firmware | ||
| Cisco Nexus 3132Q-XL | ||
| Cisco Nexus 3132Q-X/3132Q-XL | ||
| Cisco Nexus 3132Q-XL Firmware | ||
| Cisco Nexus 3164Q Firmware | ||
| Cisco Nexus 3172PQ/PQ-XL | ||
| Cisco Nexus 3172PQ-XL Firmware | ||
| Cisco Nexus 3172TQ Firmware | ||
| Cisco Nexus 3172TQ-XL | ||
| Cisco Nexus 3232C | ||
| Cisco Nexus 3264C-E Firmware | ||
| Cisco Nexus 3264Q Firmware | ||
| Cisco Nexus 34180YC Firmware | ||
| Cisco Nexus 3524-xl | ||
| Cisco Nexus 3524-XL Firmware | ||
| Cisco Nexus 3548-X/XL Firmware | ||
| Cisco Nexus 3548-X/XL | ||
| Cisco Nexus 3548-X/XL | ||
| Cisco Nexus 3636C-R Firmware | ||
| Cisco Nexus 36180YC-R | ||
| Cisco UCS 6120xp | ||
| Cisco UCS 6140xp | ||
| Cisco UCS 6248UP | ||
| Cisco UCS 6296UP | ||
| Cisco UCS 6324 firmware | ||
| Cisco UCS 6332 | ||
| Cisco Firepower Extensible Operating System | >=2.1.1<2.1.1.86 | |
| Cisco Firepower Extensible Operating System | >=2.2<2.2.2.17 | |
| Cisco FX-OS | >=1.1<2.0.1.159 | |
| Cisco Firepower 4110 Next-Generation Firewall | ||
| Cisco Firepower 4120 Next-Generation Firewall | ||
| Cisco Firepower 4140 Next-Generation Firewall | ||
| Cisco Firepower 4150 Next-Generation Firewall | ||
| Cisco Firepower 9300 Security Appliances | ||
| Cisco NX-OS | =4.1\(2\)e1\(1a\) | |
| Cisco Nexus 4001 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-0294?
The severity of CVE-2018-0294 is considered critical as it could allow an authenticated, local attacker to create unauthorized administrator accounts on affected devices.
How do I fix CVE-2018-0294?
To fix CVE-2018-0294, users should update their Cisco FXOS or NX-OS Software to a patched version provided in the security advisory.
Which products are affected by CVE-2018-0294?
CVE-2018-0294 affects specific versions of Cisco FXOS and Cisco NX-OS Software, particularly including certain iterations of NX-OS 7.3 and NX-OS 5.2.
Is CVE-2018-0294 exploitable remotely?
CVE-2018-0294 is not considered remotely exploitable as it requires local authenticated access to configure unauthorized accounts.
What types of attacks can CVE-2018-0294 facilitate?
CVE-2018-0294 can facilitate unauthorized administrative access, potentially leading to a complete compromise of device management controls.
- agent/references
- agent/type
- agent/author
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/7.3\(2\)n1\(0.354\)
- canonical/cisco nexus 5000 firmware
- canonical/cisco nexus 5010
- canonical/cisco nexus 5020
- canonical/cisco nexus 5548p firmware
- canonical/cisco nexus 5548up firmware
- canonical/cisco nexus 5596t firmware
- canonical/cisco nexus 5596up firmware
- canonical/cisco 56128p
- canonical/cisco nexus 5624q firmware
- canonical/cisco nexus 5648q firmware
- canonical/cisco nexus 5672up-16g
- canonical/cisco nexus 5696q firmware
- version/cisco nx-os/5.2\(1\)sv3\(1.10\)
- canonical/cisco nexus 1000v
- version/cisco nx-os/8.8\(3.5\)s0
- canonical/cisco nexus 92160yc switch
- canonical/cisco nexus 92304qc switch
- canonical/cisco nexus 9236c switch
- canonical/cisco nexus 9272q switch
- canonical/cisco nexus
- canonical/cisco nexus 93120tx firmware
- canonical/cisco nexus 93128 firmware
- canonical/cisco nexus 93180yc-ex-24
- canonical/cisco nexus 9332pq firmware
- canonical/cisco nexus 9372px-e
- canonical/cisco nexus 9372tx
- canonical/cisco nexus 9396px firmware
- canonical/cisco nexus 9396tx firmware
- canonical/cisco nexus 9504 firmware
- canonical/cisco nexus 9508
- canonical/cisco nexus 9516 firmware
- canonical/cisco x9636q-r
- canonical/cisco nexus x9636q-r
- version/cisco nx-os/7.0\(3\)i2\(4a\)
- canonical/cisco nexus 172tq-xl
- canonical/cisco nexus 3016q firmware
- canonical/cisco nexus 3048 firmware
- canonical/cisco nexus 3064
- canonical/cisco nexus 3064x
- canonical/cisco nexus 3100v firmware
- canonical/cisco nexus 31128pq
- canonical/cisco nexus 3132c-z firmware
- canonical/cisco nexus 3132q-xl
- canonical/cisco nexus 3132q-x/3132q-xl
- canonical/cisco nexus 3132q-xl firmware
- canonical/cisco nexus 3164q firmware
- canonical/cisco nexus 3172pq/pq-xl
- canonical/cisco nexus 3172pq-xl firmware
- canonical/cisco nexus 3172tq firmware
- canonical/cisco nexus 3172tq-xl
- canonical/cisco nexus 3232c
- canonical/cisco nexus 3264c-e firmware
- canonical/cisco nexus 3264q firmware
- canonical/cisco nexus 34180yc firmware
- canonical/cisco nexus 3524-xl
- canonical/cisco nexus 3524-xl firmware
- canonical/cisco nexus 3548-x/xl firmware
- canonical/cisco nexus 3548-x/xl
- canonical/cisco nexus 3636c-r firmware
- canonical/cisco nexus 36180yc-r
- canonical/cisco ucs 6120xp
- canonical/cisco ucs 6140xp
- canonical/cisco ucs 6248up
- canonical/cisco ucs 6296up
- canonical/cisco ucs 6324 firmware
- canonical/cisco ucs 6332
- canonical/cisco firepower extensible operating system
- version/cisco firepower extensible operating system/2.1.1
- version/cisco firepower extensible operating system/2.2
- canonical/cisco fx-os
- version/cisco fx-os/1.1
- canonical/cisco firepower 4110 next-generation firewall
- canonical/cisco firepower 4120 next-generation firewall
- canonical/cisco firepower 4140 next-generation firewall
- canonical/cisco firepower 4150 next-generation firewall
- canonical/cisco firepower 9300 security appliances
- version/cisco nx-os/4.1\(2\)e1\(1a\)
- canonical/cisco nexus 4001