Guest

Preview Tool

Cisco Bug: CSCvt81656 - Cyber Vision Center & HW Sensor Arbitrary File Write Vulnerability

Last Modified

Aug 24, 2020

Products (1)

  • Cisco Cyber Vision Appliances

Known Affected Releases

3.0.1

Description (partial)

Symptom:
A vulnerability in Cisco Cyber Vision Center and hardware sensors could allow an unauthenticated, physically connected attacker to write aribtrary files to the file system of an affected device.

The vulnerability is due to insufficient validation for files that can be loaded through a physical connection on an affected device.  A successful attack could load arbitrary files in an isolated partition without significant impact.

Conditions:
Default configuration
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.