Cisco Expressway Gateway Directory Traversal Vulnerability (CVE-2019-1854) Advisory

From this webpage screenshot, the following key information about the vulnerability can be extracted: Vulnerability Overview: - Description: A directory traversal vulnerability was discovered in Cisco Expressway Gateway, allowing attackers to access the management web interface. - Product: Cisco Expressway Gateway. - Affected Versions: 11.5.1, possibly other versions. - Fixed Versions: See Cisco Bug ID CSCvo47769 [1]. Vulnerability Details: - Vulnerability Type: Directory Traversal - Security Risk: Medium - Vendor URL: Cisco Security Advisory - CVE ID: CVE-2019-1854 - CVE URL: CVE Details Introduction and Additional Information: - Cisco Expressway provides simple, highly secure access for users outside the firewall to all collaboration workloads, including video, voice, content, IM, and presence. - Expressway Gateway acts as a reverse proxy, implementing authentication mechanisms and forwarding authorized requests based on encoded information in the request URL. Proof of Concept: - First, the attacker must authenticate to the Cisco Expressway Gateway using HTTP Basic Authentication. Mitigation: - Prevent unauthorized parties from accessing the Cisco Expressway Gateway. Fix: - Refer to Cisco Bug ID CSCvo47769 [1] for affected software versions and available patches. Security Risk: - The vulnerability can be exploited to access management interfaces that are normally unreachable, enabling attackers to read or modify sensitive information via these interfaces. Timeline: - 2019-02-01: Vulnerability identified - 2019-02-20: Customer approved disclosure to vendor - 2019-02-21: Vendor notified and confirmation received - 2019-04-16: Vendor announced public disclosure - 2019-05-01: Vendor released advisory - 2019-05-16: Customer approved advisory release - 2019-05-17: Report published References: - Cisco Bug ID - Expressway Series - DEFCON 26: Orange Tsai - Parser Logic Attacks in Detail - Apache Tomcat

Goal Reached Thanks to every supporter — we hit 100%!

Cisco Expressway Gateway Directory Traversal Vulnerability (CVE-2019-1854) Advisory

More from this source