Phone : +91 9582 90 7788 | Email : sales@itmonteur.net

Register & Request Quote | Submit Support Ticket

Home » Firewall » Cisco warns of a critical vulnerability in Nexus data-center switches

Cisco warns of a critical vulnerability in Nexus data-center switches

  • The security flaw could allow attackers to surreptitiously access system resources of data centers.
  • Designated as CVE-2019-1804, the flaw was given a severity rating of 9.8 out of 10.

A severe vulnerability in Nexus switches has been uncovered by the Cisco team. The flaw was disclosed by the networking company in its security advisories released this week. Secure Shell (SSH protocol) in the Cisco Nexus 9000 series led to this vulnerability which, as a consequence, can allow unauthorized users to have root privileges in the affected system. Attackers could exploit this flaw to execute malicious programs to corrupt data centers.

A detailed picture

  • In an advisory, Cisco indicated that the flaw, tracked CVE-2019-1804, was the result of a default SSH key pair, present in Nexus devices. “An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials,” the advisory read.
  • The advisory further mentioned that the flaw is only exploitable over IPv6. IPv4 was not vulnerable.
  • The vulnerability affected the Nexus 9000 Series Fabric Switches in ACI mode that were running Cisco NX-OS versions prior to 14.1(1). However, Cisco has released software updates to fix this critical vulnerability.
  • Cisco has also fixed two more vulnerabilities in the Nexus 9000 series. While one of them was an authentication flaw, the other one is a privilege escalation vulnerability.

Other products remedied

The 41 security advisories published yesterday addresses security vulnerabilities found in Cisco’s other products. They include Cisco Umbrella, Cisco Firepower Threat Defense, Cisco RV320 and RV325 routers, Cisco IP Phone 7800 and 8800 series, Cisco Adaptive Security Appliance, Cisco Expressway and Cisco Prime.

Flaws ranged from cross-site scripting, cross-site request forgery to high-priority privilege escalation vulnerabilities.

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

 

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

 

Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.

 

Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 9582 90 7788 | Support Number : +91-9654016484
Sales Email : sales@itmonteur.net | Support Email : support@itmonteur.net

Register & Request Quote | Submit Support Ticket