CVE-2018-0428 is a vulnerability in Cisco Web Security Appliance
Published on August 15, 2018
A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to improper implementation of access controls. An attacker could exploit this vulnerability by authenticating to the device as a specific user to gain the information needed to elevate privileges to root in a separate login shell. A successful exploit could allow the attacker to escape the CLI subshell and execute system-level commands on the underlying operating system as root. Cisco Bug IDs: CSCvj93548.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2018-0428 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2018-0428
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-0428 are published in Cisco Web Security Appliance:
Affected Versions
Cisco Systems, Inc. Web Security Appliance Version unspecified is affected by CVE-2018-0428Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.