CVE-2019-1859

CVE Database · CVE-2019-1859

CVE-2019-1859

· HIGHModified

CVSS v3.1

7.2

EPSS

0.85%

Published

May 3, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to password authentication. The vulnerability exists because OpenSSH mishandles the authentication process. An attacker could exploit this vulnerability by attempting to connect to the device via SSH. A successful exploit could allow the attacker to access the configuration as an administrative user if the default credentials are not changed. There are no workarounds available; however, if client-side certificate authentication is enabled, disable it and use strong password authentication. Client-side certificate authentication is disabled by default.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-285CWE-295

Affected Products (228)

cisco · sg200-50_firmware (up to 1.4.10.6)vulnerable

cisco · sg200-50

cisco · sg200-50p_firmware (up to 1.4.10.6)vulnerable

cisco · sg200-50p

cisco · sg200-50fp_firmware (up to 1.4.10.6)vulnerable

cisco · sg200-50fp

cisco · sg200-26_firmware (up to 1.4.10.6)vulnerable

cisco · sg200-26

cisco · sg200-26p_firmware (up to 1.4.10.6)vulnerable

cisco · sg200-26p

· sg200-26fp_firmware

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-scbv

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-scbv

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs