CVE-2019-1810: Cisco Nexus 3000 Series and 9000 Series Switches in NX-OS Mode CLI Command Software Image Signature Verification Vulnerability
First published: Wed May 15 2019(Updated: )
A vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital signatures are not properly verified during CLI command execution. An attacker could exploit this vulnerability to install an unsigned software image on an affected device. Note: If the device has not been patched for the vulnerability previously disclosed in the Cisco Security Advisory cisco-sa-20190306-nxos-sig-verif, a successful exploit could allow the attacker to boot a malicious software image.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Nx-os | >=6.1\(2\)i3\(4\)<7.0\(3\)i7\(5\) | |
| Cisco Nx-os | >=7.0\(3\)i7\(5a\)<9.2\(2\) | |
| Cisco N3k-c3164q | ||
| Cisco Nx-os | >=7.0\(3\)i3\(1\)<7.0\(3\)i7\(1\) | |
| Cisco Nx-os | >=7.0\(3\)i7\(2\)<9.2\(1\) | |
| Cisco N3k-c3232c | ||
| Cisco Nx-os | >=7.0\(3\)i4\(1\)<7.0\(3\)i7\(5\) | |
| Cisco N9k-c92304qc | ||
| Cisco Nx-os | >=7.0\(3\)i4\(2\)<7.0\(3\)i7\(5\) | |
| Cisco N9k-c9232c |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-1810?
CVE-2019-1810 is a vulnerability in the Image Signature Verification feature used in an NX-OS CLI command in Cisco Nexus 3000 Series and 9000 Series Switches.
How does CVE-2019-1810 affect me?
CVE-2019-1810 allows an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device.
Which software versions of Cisco Nexus are affected by CVE-2019-1810?
CVE-2019-1810 affects Cisco Nexus 3000 Series and 9000 Series Switches running NX-OS versions between 6.1(2)i3(4) to 7.0(3)i7(5) and between 7.0(3)i7(5a) to 9.2(2).
What is the severity level of CVE-2019-1810?
CVE-2019-1810 has a severity level of 6.7 (medium).
How can I fix CVE-2019-1810?
To fix CVE-2019-1810, upgrade to a fixed software release.
- collector/nvd-index
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/6.1\(2\)i3\(4\)
- version/cisco nx-os/7.0\(3\)i7\(5a\)
- canonical/cisco n3k-c3164q
- version/cisco nx-os/7.0\(3\)i3\(1\)
- version/cisco nx-os/7.0\(3\)i7\(2\)
- canonical/cisco n3k-c3232c
- version/cisco nx-os/7.0\(3\)i4\(1\)
- canonical/cisco n9k-c92304qc
- version/cisco nx-os/7.0\(3\)i4\(2\)
- canonical/cisco n9k-c9232c