CVE-2018-0255 : A vulnerability in the device manager web interface of Cisco Industrial Ethernet Switches could allow an unauthenticated

A vulnerability in the device manager web interface of Cisco Industrial Ethernet Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a user of an affected system. The vulnerability is due to insufficient CSRF protection by the device manager web interface. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link or visit an attacker-controlled website. A successful exploit could allow the attacker to submit arbitrary requests to an affected device via the device manager web interface with the privileges of the user. This vulnerability affects the following Cisco Industrial Ethernet (IE) Switches if they are running a vulnerable release of Cisco IOS Software: IE 2000 Series, IE 2000U Series, IE 3000 Series, IE 3010 Series, IE 4000 Series, IE 4010 Series, IE 5000 Series. Cisco Bug IDs: CSCvc96405.

Published 2018-04-19 20:29:01

Updated 2019-10-09 23:31:35

Source Cisco Systems, Inc.

View at NVD, CVE.org

Vulnerability category: Cross-site request forgery (CSRF)

Exploit prediction scoring system (EPSS) score for CVE-2018-0255

Probability of exploitation activity in the next 30 days: 0.07%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 31 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2018-0255

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-0255

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
Assigned by:
- nvd@nist.gov (Primary)
- ykramarz@cisco.com (Secondary)

References for CVE-2018-0255

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-iess

Cisco Industrial Ethernet Switches Device Manager Cross-Site Request Forgery Vulnerability
Vendor Advisory
http://www.securitytracker.com/id/1040715

Cisco Industrial Ethernet Switch Access Control Flaw in Device Manager Web Interface Lets Remote Users Conduct Cross-Site Request Forgery Attacks - SecurityTracker
Third Party Advisory;VDB Entry

Products affected by CVE-2018-0255

Cisco » IOS » Version: 15.2(5)e
cpe:2.3:o:cisco:ios:15.2\(5\)e:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2018-0255

Exploit prediction scoring system (EPSS) score for CVE-2018-0255

CVSS scores for CVE-2018-0255

CWE ids for CVE-2018-0255

References for CVE-2018-0255

Products affected by CVE-2018-0255