CVE-2017-12342 : A vulnerability in the Open Agent Container (OAC) feature of Cisco Nexus Series

A vulnerability in the Open Agent Container (OAC) feature of Cisco Nexus Series Switches could allow an unauthenticated, local attacker to read and send packets outside the scope of the OAC. The vulnerability is due to insufficient internal security measures in the OAC feature. An attacker could exploit this vulnerability by crafting specific packets for communication on the device-internal network. A successful exploit could allow the attacker to run code on the underlying host operating system. OAC is not enabled by default. For a device to be vulnerable, an administrator would need to install and activate this feature. This vulnerability affects the following Cisco Nexus Series Switches: Nexus 2000 Series Fabric Extenders, Nexus 5000 Series Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches. Cisco Bug IDs: CSCve53542, CSCvf36621.

Published 2017-11-30 09:29:01

Updated 2019-10-09 23:22:59

Source Cisco Systems, Inc.

View at NVD, CVE.org

Products affected by CVE-2017-12342

Cisco » Nx-os » Version: 8.1(1)
cpe:2.3:o:cisco:nx-os:8.1\(1\):*:*:*:*:*:*:*
Matching versions
Cisco » Nx-os » Version: 7.0(0)hsk(0.357)
cpe:2.3:o:cisco:nx-os:7.0\(0\)hsk\(0.357\):*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-12342

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 24 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-12342

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
6.8	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L	2.5	3.7	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: Low Integrity: Low Availability: Low

CWE ids for CVE-2017-12342

CWE-264

Assigned by: ykramarz@cisco.com (Secondary)
CWE-668 Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-12342

http://www.securitytracker.com/id/1039940

Cisco NX-OS Open Agent Container Access Control Bug Lets Local Users Gain Elevated Privileges - SecurityTracker
Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/102027

Multiple Cisco Nexus Series Switches CVE-2017-12342 Local Code Execution Vulnerability
Third Party Advisory;VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-nxos9

Cisco Nexus Series Switches Open Agent Container Code Execution Vulnerability
Vendor Advisory

Jump to

Vulnerability Details : CVE-2017-12342

Products affected by CVE-2017-12342

Exploit prediction scoring system (EPSS) score for CVE-2017-12342

CVSS scores for CVE-2017-12342

CWE ids for CVE-2017-12342

References for CVE-2017-12342