CVE-2018-0089 : A vulnerability in the Policy and Charging Rules Function (PCRF) of the Cisco Po

A vulnerability in the Policy and Charging Rules Function (PCRF) of the Cisco Policy Suite (CPS) could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access to the internal VLAN where CPS is deployed. The vulnerability is due to incorrect permissions of certain system files and not sufficiently protecting sensitive data that is at rest. An attacker could exploit the vulnerability by using certain tools available on the internal network interface to request and view system files. An exploit could allow the attacker to find out sensitive information about the application. Cisco Bug IDs: CSCvf77666.

Published 2018-01-18 06:29:00

Updated 2019-10-09 23:31:13

Source Cisco Systems, Inc.

View at NVD, CVE.org

Products affected by CVE-2018-0089

Cisco » Policy Suite » Version: 11.0.0
cpe:2.3:a:cisco:policy_suite:11.0.0:*:*:*:*:*:*:*
Matching versions
Cisco » Policy Suite » Version: 10.0.0
cpe:2.3:a:cisco:policy_suite:10.0.0:*:*:*:*:*:*:*
Matching versions
Cisco » Policy Suite » Version: 11.1.0
cpe:2.3:a:cisco:policy_suite:11.1.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-0089

EPSS FAQ

0.72%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 70 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-0089

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2018-0089

CWE-264

Assigned by: ykramarz@cisco.com (Secondary)
CWE-312 Cleartext Storage of Sensitive Information

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

Assigned by: nvd@nist.gov (Primary)
CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-0089

http://www.securityfocus.com/bid/102758

Cisco Policy Suite CVE-2018-0089 Information Disclosure Vulnerability
Third Party Advisory;VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-cps

Cisco Policy Suite Unauthenticated Information Disclosure Vulnerability
Vendor Advisory

Jump to

Vulnerability Details : CVE-2018-0089

Products affected by CVE-2018-0089

Exploit prediction scoring system (EPSS) score for CVE-2018-0089

CVSS scores for CVE-2018-0089

CWE ids for CVE-2018-0089

References for CVE-2018-0089