ID

VAR-201905-0530


CVE

CVE-2019-1807


TITLE

Cisco Umbrella Dashboard Session fixation vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-004375

DESCRIPTION

A vulnerability in the session management functionality of the web UI for the Cisco Umbrella Dashboard could allow an authenticated, remote attacker to access the Dashboard via an active, user session. The vulnerability exists due to the affected application not invalidating an existing session when a user authenticates to the application and changes the users credentials via another authenticated session. An attacker could exploit this vulnerability by using a separate, authenticated, active session to connect to the application through the web UI. A successful exploit could allow the attacker to maintain access to the dashboard via an authenticated user's browser session. Cisco has addressed this vulnerability in the Cisco Umbrella Dashboard. No user action is required. Cisco Umbrella Dashboard Contains a session fixation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This issue is being tracked by Cisco bug ID CSCvo03940. The platform protects against cyber threats such as phishing, malware, and ransomware. This vulnerability stems from the lack of authentication measures or insufficient authentication strength in network systems or products

Trust: 1.98

sources: NVD: CVE-2019-1807 // JVNDB: JVNDB-2019-004375 // BID: 108134 // VULHUB: VHN-150379

AFFECTED PRODUCTS

vendor:ciscomodel:umbrellascope:eqversion:*

Trust: 1.0

vendor:ciscomodel:umbrella virtual appliancescope: - version: -

Trust: 0.8

vendor:ciscomodel:umbrellascope:eqversion:0

Trust: 0.3

sources: BID: 108134 // JVNDB: JVNDB-2019-004375 // NVD: CVE-2019-1807

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-1807
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1807
value: HIGH

Trust: 1.0

NVD: CVE-2019-1807
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201905-055
value: HIGH

Trust: 0.6

VULHUB: VHN-150379
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-1807
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-150379
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-1807
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

ykramarz@cisco.com: CVE-2019-1807
baseSeverity: HIGH
baseScore: 7.6
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: LOW
exploitabilityScore: 2.1
impactScore: 5.5
version: 3.0

Trust: 1.0

sources: VULHUB: VHN-150379 // JVNDB: JVNDB-2019-004375 // CNNVD: CNNVD-201905-055 // NVD: CVE-2019-1807 // NVD: CVE-2019-1807

PROBLEMTYPE DATA

problemtype:CWE-384

Trust: 1.9

sources: VULHUB: VHN-150379 // JVNDB: JVNDB-2019-004375 // NVD: CVE-2019-1807

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201905-055

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201905-055

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-004375

PATCH

title:cisco-sa-20190501-udb-smurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-udb-sm

Trust: 0.8

title:Cisco Umbrella Dashboard Remediation measures for authorization problem vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=92198

Trust: 0.6

sources: JVNDB: JVNDB-2019-004375 // CNNVD: CNNVD-201905-055

EXTERNAL IDS

db:NVDid:CVE-2019-1807

Trust: 2.8

db:BIDid:108134

Trust: 1.0

db:JVNDBid:JVNDB-2019-004375

Trust: 0.8

db:CNNVDid:CNNVD-201905-055

Trust: 0.7

db:AUSCERTid:ESB-2019.1537

Trust: 0.6

db:VULHUBid:VHN-150379

Trust: 0.1

sources: VULHUB: VHN-150379 // BID: 108134 // JVNDB: JVNDB-2019-004375 // CNNVD: CNNVD-201905-055 // NVD: CVE-2019-1807

REFERENCES

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190501-udb-sm

Trust: 2.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-1807

Trust: 1.4

url:http://www.cisco.com/

Trust: 0.9

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1807

Trust: 0.8

url:https://www.auscert.org.au/bulletins/80186

Trust: 0.6

url:https://www.securityfocus.com/bid/108134

Trust: 0.6

sources: VULHUB: VHN-150379 // BID: 108134 // JVNDB: JVNDB-2019-004375 // CNNVD: CNNVD-201905-055 // NVD: CVE-2019-1807

CREDITS

Muhammad Shahzaib?.,Muhammad Shahzaib.

Trust: 0.6

sources: CNNVD: CNNVD-201905-055

SOURCES

db:VULHUBid:VHN-150379
db:BIDid:108134
db:JVNDBid:JVNDB-2019-004375
db:CNNVDid:CNNVD-201905-055
db:NVDid:CVE-2019-1807

LAST UPDATE DATE

2024-11-23T22:44:59.433000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-150379date:2019-10-09T00:00:00
db:BIDid:108134date:2019-05-01T00:00:00
db:JVNDBid:JVNDB-2019-004375date:2019-05-31T00:00:00
db:CNNVDid:CNNVD-201905-055date:2019-05-14T00:00:00
db:NVDid:CVE-2019-1807date:2024-11-21T04:37:25.353

SOURCES RELEASE DATE

db:VULHUBid:VHN-150379date:2019-05-03T00:00:00
db:BIDid:108134date:2019-05-01T00:00:00
db:JVNDBid:JVNDB-2019-004375date:2019-05-31T00:00:00
db:CNNVDid:CNNVD-201905-055date:2019-05-01T00:00:00
db:NVDid:CVE-2019-1807date:2019-05-03T17:29:00.877