CVE-2018-15370 - A vulnerability in Cisco IOS ROM Monitor (ROMMON) Software for Cisco Catalyst 6800 Series Switches c

CVE-2018-15370

Summary

A vulnerability in Cisco IOS ROM Monitor (ROMMON) Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is due to the presence of a hidden command in the affected software. An attacker could exploit this vulnerability by connecting to an affected device via the console, forcing the device into ROMMON mode, and writing a malicious pattern to a specific memory address on the device. A successful exploit could allow the attacker to bypass signature validation checks by Cisco Secure Boot technology and load a compromised software image on the affected device. A compromised software image is any software image that has not been digitally signed by Cisco.

References

Vulnerable Configurations

cpe:2.3:o:cisco:ios_rom_monitor:15.1\(2\)sy3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_rom_monitor:15.1\(2\)sy3:*:*:*:*:*:*:*

CVSS

Base:	4.6 (as of 09-10-2019 - 23:35)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	105412
cisco	20180926 Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability

Last major update

09-10-2019 - 23:35

Published

05-10-2018 - 14:29

Last modified

09-10-2019 - 23:35