Sign-up

ID

VAR-201901-0360


CVE

CVE-2019-1657


TITLE

Cisco AMP Threat Grid Vulnerabilities related to certificate and password management

Trust: 0.8

sources: JVNDB: JVNDB-2019-001421

DESCRIPTION

A vulnerability in Cisco AMP Threat Grid could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to unsafe creation of API keys. An attacker could exploit this vulnerability by using insecure credentials to gain unauthorized access to the affected device. An exploit could allow the attacker to gain unauthorized access to information by using the API key credentials

Trust: 1.98

sources: NVD: CVE-2019-1657 // JVNDB: JVNDB-2019-001421 // BID: 106711 // VULHUB: VHN-148729

AFFECTED PRODUCTS

vendor:ciscomodel:amp threat grid cloudscope:ltversion:3.5.68

Trust: 1.0

vendor:ciscomodel:amp threat grid appliancescope:ltversion:2.5

Trust: 1.0

vendor:ciscomodel:amp threat grid the appliance softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:amp threat grid cloud base softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:amp threat grid cloudscope:eqversion:3.5

Trust: 0.3

vendor:ciscomodel:amp threat grid cloudscope:eqversion:3.1

Trust: 0.3

vendor:ciscomodel:amp threat grid cloudscope:eqversion:3.0

Trust: 0.3

vendor:ciscomodel:amp threat grid appliancescope:eqversion:2.1.1

Trust: 0.3

vendor:ciscomodel:amp threat grid cloudscope:neversion:3.5.68

Trust: 0.3

vendor:ciscomodel:amp threat grid appliancescope:neversion:2.5

Trust: 0.3

sources: BID: 106711 // JVNDB: JVNDB-2019-001421 // NVD: CVE-2019-1657

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-1657
value: MEDIUM

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1657
value: MEDIUM

Trust: 1.0

NVD: CVE-2019-1657
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201901-878
value: MEDIUM

Trust: 0.6

VULHUB: VHN-148729
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-1657
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-148729
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

ykramarz@cisco.com: CVE-2019-1657
baseSeverity: MEDIUM
baseScore: 4.3
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 1.4
version: 3.0

Trust: 1.8

nvd@nist.gov: CVE-2019-1657
baseSeverity: MEDIUM
baseScore: 4.3
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 1.4
version: 3.1

Trust: 1.0

sources: VULHUB: VHN-148729 // JVNDB: JVNDB-2019-001421 // CNNVD: CNNVD-201901-878 // NVD: CVE-2019-1657 // NVD: CVE-2019-1657

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.0

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-255

Trust: 0.9

sources: VULHUB: VHN-148729 // JVNDB: JVNDB-2019-001421 // NVD: CVE-2019-1657

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201901-878

TYPE

trust management problem

Trust: 0.6

sources: CNNVD: CNNVD-201901-878

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-001421

PATCH
title:cisco-sa-20190123-threat-gridurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-threat-grid
Trust: 0.8
title:Cisco AMP Threat Grid Cloud  and AMP Threat Grid Appliance software Repair measures for information disclosure vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=88949
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2019-001421 // 
            
            
            
            CNNVD: CNNVD-201901-878

EXTERNAL IDS
db:NVDid:CVE-2019-1657
Trust: 2.8
db:BIDid:106711
Trust: 2.0
db:JVNDBid:JVNDB-2019-001421
Trust: 0.8
db:CNNVDid:CNNVD-201901-878
Trust: 0.7
db:NSFOCUSid:43894
Trust: 0.6
db:CNVDid:CNVD-2020-12742
Trust: 0.1
db:VULHUBid:VHN-148729
Trust: 0.1
sources:
            
            
            VULHUB: VHN-148729 // 
            
            
            
            BID: 106711 // 
            
            
            
            JVNDB: JVNDB-2019-001421 // 
            
            
            
            CNNVD: CNNVD-201901-878 // 
            
            
            
            NVD: CVE-2019-1657

REFERENCES
url:http://www.securityfocus.com/bid/106711
Trust: 2.3
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190123-threat-grid
Trust: 2.0
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1657
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2019-1657
Trust: 0.8
url:http://www.nsfocus.net/vulndb/43894
Trust: 0.6
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-148729 // 
            
            
            
            BID: 106711 // 
            
            
            
            JVNDB: JVNDB-2019-001421 // 
            
            
            
            CNNVD: CNNVD-201901-878 // 
            
            
            
            NVD: CVE-2019-1657

CREDITS
Ryan S,Cisco would like to thank Ryan S. for reporting this vulnerability.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201901-878

SOURCES
db:VULHUBid:VHN-148729
db:BIDid:106711
db:JVNDBid:JVNDB-2019-001421
db:CNNVDid:CNNVD-201901-878
db:NVDid:CVE-2019-1657

LAST UPDATE DATE
2024-11-23T23:11:56.426000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-148729date:2020-10-05T00:00:00
db:BIDid:106711date:2019-01-23T00:00:00
db:JVNDBid:JVNDB-2019-001421date:2019-03-05T00:00:00
db:CNNVDid:CNNVD-201901-878date:2022-03-18T00:00:00
db:NVDid:CVE-2019-1657date:2024-11-21T04:37:01.840

SOURCES RELEASE DATE
db:VULHUBid:VHN-148729date:2019-01-24T00:00:00
db:BIDid:106711date:2019-01-23T00:00:00
db:JVNDBid:JVNDB-2019-001421date:2019-03-05T00:00:00
db:CNNVDid:CNNVD-201901-878date:2019-01-24T00:00:00
db:NVDid:CVE-2019-1657date:2019-01-24T16:29:00.457