What is the severity of cisco-sa-20190501-apic-encrypt?

The severity of cisco-sa-20190501-apic-encrypt is considered high due to the potential for an unauthenticated local attacker to gain access to sensitive information.

How do I fix cisco-sa-20190501-apic-encrypt?

To fix cisco-sa-20190501-apic-encrypt, ensure you apply the latest updates and patches provided by Cisco for the Application Policy Infrastructure Controller.

Who is affected by cisco-sa-20190501-apic-encrypt?

Cisco Application Policy Infrastructure Controller (APIC) users are affected by the cisco-sa-20190501-apic-encrypt vulnerability.

What causes the vulnerability cisco-sa-20190501-apic-encrypt?

The cisco-sa-20190501-apic-encrypt vulnerability is caused by the insecure removal of cleartext encryption keys from the device.

Can cisco-sa-20190501-apic-encrypt be exploited remotely?

No, cisco-sa-20190501-apic-encrypt requires physical access to the affected device for exploitation.

Vulnerability/
cisco-sa-20190501-apic-encrypt

medium

4.6

CWE

320

1/5/2019

cisco-sa-20190501-apic-encrypt: Cisco Application Policy Infrastructure Controller Recoverable Encryption Key Vulnerability

First published: Wed May 01 2019(Updated: )

A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an unauthenticated, local attacker with physical access to obtain sensitive information from an affected device. The vulnerability is due to insecure removal of cleartext encryption keys stored on local partitions in the hard drive of an affected device. An attacker could exploit this vulnerability by retrieving data from the physical disk on the affected partition(s). A successful exploit could allow the attacker to retrieve encryption keys, possibly allowing the attacker to further decrypt other data and sensitive information on the device, which could lead to the disclosure of confidential information. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-apic-encrypt

Credit: Costin Enache Detack GmbH

Affected Software	Affected Version	How to fix
Cisco Application Policy Infrastructure Controller (APIC)

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-apic-encrypt (Advisory)

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2019-1586

Frequently Asked Questions

What is the severity of cisco-sa-20190501-apic-encrypt?
The severity of cisco-sa-20190501-apic-encrypt is considered high due to the potential for an unauthenticated local attacker to gain access to sensitive information.
How do I fix cisco-sa-20190501-apic-encrypt?
To fix cisco-sa-20190501-apic-encrypt, ensure you apply the latest updates and patches provided by Cisco for the Application Policy Infrastructure Controller.
Who is affected by cisco-sa-20190501-apic-encrypt?
Cisco Application Policy Infrastructure Controller (APIC) users are affected by the cisco-sa-20190501-apic-encrypt vulnerability.
What causes the vulnerability cisco-sa-20190501-apic-encrypt?
The cisco-sa-20190501-apic-encrypt vulnerability is caused by the insecure removal of cleartext encryption keys from the device.
Can cisco-sa-20190501-apic-encrypt be exploited remotely?
No, cisco-sa-20190501-apic-encrypt requires physical access to the affected device for exploitation.

agent/type
agent/event
agent/last-modified-date
agent/first-publish-date
collector/cisco-advisory
source/Cisco
agent/title
agent/weakness
agent/severity
agent/author
agent/references
agent/description
agent/source
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco application policy infrastructure controller (apic)