CVE-2019-1859MEDIUM
Description
A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to password authentication. The vulnerability exists because OpenSSH mishandles the authentication process. An attacker could exploit this vulnerability by attempting to connect to the device via SSH. A successful exploit could allow the attacker to access the configuration as an administrative user if the default credentials are not changed. There are no workarounds available; however, if client-side certificate authentication is enabled, disable it and use strong password authentication. Client-side certificate authentication is disabled by default.
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-scbv
Details
Source: MITRE
Published: 2019-05-03
Updated: 2020-10-13
Type: CWE-295
Risk Information
CVSS v2.0
Base Score: 6.5
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8
Severity: MEDIUM
CVSS v3.0
Base Score: 7.2
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.2
Severity: HIGH
Vulnerable Software
Configuration 1
AND
OR
OR
Configuration 2
AND
OR
OR
Configuration 3
AND
OR
OR
Configuration 4
AND
OR
OR
Configuration 5
AND
OR
OR
Configuration 6
AND
OR
OR
Configuration 7
AND
OR
OR
Configuration 8
AND
OR
OR
Configuration 9
AND
OR
OR
Configuration 10
AND
OR
OR
Configuration 11
AND
OR
OR
Configuration 12
AND
OR
OR
Configuration 13
AND
OR
OR
Configuration 14
AND
OR
OR
Configuration 15
AND
OR
OR
Configuration 16
AND
OR
OR
Configuration 17
AND
OR
OR
Configuration 18
AND
OR
OR
Configuration 19
AND
OR
OR
Configuration 20
AND
OR
OR
Configuration 21
AND
OR
OR
Configuration 22
AND
OR
OR
Configuration 23
AND
OR
OR
Configuration 24
AND
OR
OR
Configuration 25
AND
OR
OR
Configuration 26
AND
OR
OR
Configuration 27
AND
OR
OR
Configuration 28
AND
OR
OR
Configuration 29
AND
OR
OR
Configuration 30
AND
OR
OR
Configuration 31
AND
OR
OR
Configuration 32
AND
OR
OR
Configuration 33
AND
OR
OR
Configuration 34
AND
OR
OR
Configuration 35
AND
OR
OR
Configuration 36
AND
OR
OR
Configuration 37
AND
OR
OR
Configuration 38
AND
OR
OR
Configuration 39
AND
OR
OR
Configuration 40
AND
OR
OR
Configuration 41
AND
OR
OR
Configuration 42
AND
OR
OR
Configuration 43
AND
OR
OR
Configuration 44
AND
OR
OR
Configuration 45
AND
OR
OR
Configuration 46
AND
OR
OR
Configuration 47
AND
OR
OR
Configuration 48
AND
OR
OR
Configuration 49
AND
OR
OR
Configuration 50
AND
OR
OR
Configuration 51
AND
OR
OR
Configuration 52
AND
OR
OR
Configuration 53
AND
OR
OR
Configuration 54
AND
OR
OR
Configuration 55
AND
OR
OR
Configuration 56
AND
OR
OR
Configuration 57
AND
OR
OR
Configuration 58
AND
OR
OR
Configuration 59
AND
OR
OR
Configuration 60
AND
OR
OR
Configuration 61
AND
OR
OR
Configuration 62
AND
OR
OR
Configuration 63
AND
OR
OR
Configuration 64
AND
OR
OR
Configuration 65
AND
OR
OR
Configuration 66
AND
OR
OR
Configuration 67
AND
OR
OR
Configuration 68
AND
OR
OR
Configuration 69
AND
OR
OR
Configuration 70
AND
OR
OR
Configuration 71
AND
OR
OR
Configuration 72
AND
OR
OR
Configuration 73
AND
OR
OR
Configuration 74
AND
OR
OR
Configuration 75
AND
OR
OR
Configuration 76
AND
OR
OR
Configuration 77
AND
OR
OR
Configuration 78
AND
OR
OR
Configuration 79
AND
OR
OR
Configuration 80
AND
OR
OR
Configuration 81
AND
OR
OR
Configuration 82
AND
OR
OR
Configuration 83
AND
OR
OR
Configuration 84
AND
OR
OR
Configuration 85
AND
OR
OR
Configuration 86
AND
OR
OR
Configuration 87
AND
OR
OR
Configuration 88
AND
OR
OR
Configuration 89
AND
OR
OR
Configuration 90
AND
OR
OR
Configuration 91
AND
OR
OR
Configuration 92
AND
OR
OR
Configuration 93
AND
OR
OR
Configuration 94
AND
OR
OR
Configuration 95
AND
OR
OR
Configuration 96
AND
OR
OR
Configuration 97
AND
OR
OR
Configuration 98
AND
OR
OR
Configuration 99
AND
OR
OR
Configuration 100
AND
OR
OR
Configuration 101
AND
OR
OR
Configuration 102
AND
OR
OR
Configuration 103
AND
OR
OR
Configuration 104
AND
OR
OR
Configuration 105
AND
OR
OR
Configuration 106
AND
OR
OR
Configuration 107
AND
OR
OR
Configuration 108
AND
OR
OR
Configuration 109
AND
OR
OR
Configuration 110
AND
OR
OR
Configuration 111
AND
OR
OR
Configuration 112
AND
OR
OR
Configuration 113
AND
OR
OR
Configuration 114
AND
OR
OR