Improper Verification of Cryptographic Signature in products

#VU51778 Improper Verification of Cryptographic Signature in products

Cybersecurity Help s.r.o.

Published: 2021-03-30

Vulnerability identifier: #VU51778

Vulnerability risk: Low

CVSSv3.1: 5.9 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-1453

CWE-ID: CWE-347

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Cisco IOS XE
Operating systems & Components / Operating system
Catalyst C9500-32C Switch
Hardware solutions / Routers & switches, VoIP, GSM, etc
Catalyst C9500-32QC Switch
Hardware solutions / Routers & switches, VoIP, GSM, etc
Catalyst C9500-24Y4C Switch
Hardware solutions / Routers & switches, VoIP, GSM, etc
Catalyst C9500-48Y4C Switch
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco Catalyst 9400 Series Switches
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco Catalyst 9600 Series Switches
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to an improper check in the code function that manages the verification of the digital signatures of system image files during the initial boot process. An attacker with physical access can boot a malicious software image or execute unsigned code and bypass the image verification check part of the secure boot process of an affected device.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Cisco IOS XE: 17.2.1 - 17.4.1

Catalyst C9500-32C Switch: All versions

Catalyst C9500-32QC Switch: All versions

Catalyst C9500-24Y4C Switch: All versions

Catalyst C9500-48Y4C Switch: All versions

Cisco Catalyst 9400 Series Switches: All versions

Cisco Catalyst 9600 Series Switches: All versions

External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-cat-verify-BQ5hrXgH

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Improper Verification of Cryptographic Signature in Cisco IOS XE Software for the Catalyst 9000 Family