CVE-2018-0375: Cisco Policy Suite Cluster Manager Default Password Vulnerability Alert

On July 18, Cisco officially issued a security notice saying that there was a severe vulnerability in the Cluster Manager of its Policy Suite (CPS) (CVE-2018-0375). This vulnerability could allow an unauthenticated, remote attacker to log in to a system with default static user credentials using the root account.

Vulnerability details

The vulnerability is due to the presence of undocumented static user credentials in the root account. An attacker could use this account to log in to an affected system to exploit this vulnerability. Vulnerabilities could allow an attacker to log in to the affected system as root and execute arbitrary commands.

CVSS 3.0 Rating:

Base 9.8 CVSS: 3.0/AV: N/AC: L/PR: N/UI: N/S: U/C: H/I: H/A: H/E: X/RL: X/RC: X

Affected version

• Cisco Policy Suite < 18.2.0

Unaffected version

• Cisco Policy Suite >= 18.2.0

Solution

The Cisco official has released a corresponding new version to fix the above vulnerability; users should update the upgrade to protect.