CISCO : Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106990

Categoría: CISCO

Título: Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability

Resumen: A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked.

Descripción: Summary:
A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked.

Vulnerability Insight:
The vulnerability exists because the affected software does not transfer certificate revocation lists (CRLs) across Autonomic Control Plane (ACP) channels. An attacker could exploit this vulnerability by connecting an autonomic node, which has a known and revoked certificate, to the autonomic domain of an affected system.

Vulnerability Impact:
A successful exploit could allow the attacker to insert a previously trusted autonomic node into the autonomic domain of an affected system after the certificate for the node has been revoked.

Solution:
Administrators can mitigate this vulnerability by doing the following for autonomic nodes that were disconnected from the Autonomic Network domain:

- Ensure that the certificate and key information for the node is deleted properly

- Update the Autonomic Networking whitelist file on the registrar

These actions will prevent the autonomic node from re-establishing connectivity to the Autonomic Network domain of an affected system.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-6664
BugTraq ID: 99986
http://www.securityfocus.com/bid/99986
http://www.securitytracker.com/id/1038997

Copyright Copyright (C) 2017 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106990
Categoría:	CISCO
Título:	Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability
Resumen:	A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked.
Descripción:	Summary: A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked. Vulnerability Insight: The vulnerability exists because the affected software does not transfer certificate revocation lists (CRLs) across Autonomic Control Plane (ACP) channels. An attacker could exploit this vulnerability by connecting an autonomic node, which has a known and revoked certificate, to the autonomic domain of an affected system. Vulnerability Impact: A successful exploit could allow the attacker to insert a previously trusted autonomic node into the autonomic domain of an affected system after the certificate for the node has been revoked. Solution: Administrators can mitigate this vulnerability by doing the following for autonomic nodes that were disconnected from the Autonomic Network domain: - Ensure that the certificate and key information for the node is deleted properly - Update the Autonomic Networking whitelist file on the registrar These actions will prevent the autonomic node from re-establishing connectivity to the Autonomic Network domain of an affected system. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6664 BugTraq ID: 99986 http://www.securityfocus.com/bid/99986 http://www.securitytracker.com/id/1038997
Copyright	Copyright (C) 2017 Greenbone AG