CVE-2019-1710 : What You Need to Know
Learn about CVE-2019-1710, a critical vulnerability in Cisco IOS XR 64-Bit Software for ASR 9000 Series Routers. Find out the impact, affected versions, and mitigation steps.
Cisco IOS XR 64-Bit Software for Cisco ASR 9000 Series Aggregation Services Routers Network Isolation Vulnerability
Understanding CVE-2019-1710
This CVE involves a vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS XR 64-bit Software.
What is CVE-2019-1710?
The vulnerability allows an unauthorized remote attacker to access internal applications on the sysadmin VM due to improper segregation of the secondary management interface.
The Impact of CVE-2019-1710
- Attackers can gain unauthorized access to internal applications, leading to unstable conditions, denial of service, and remote unauthorized access to the device.
Technical Details of CVE-2019-1710
This section provides detailed technical information about the vulnerability.
Vulnerability Description
- The vulnerability arises from incorrect isolation of the secondary management interface from internal sysadmin applications.
Affected Systems and Versions
- Product: Cisco IOS XR Software
- Versions Affected: < 6.5.3, < 7.0.1
Exploitation Mechanism
- Attack Complexity: Low
- Attack Vector: Network
- Privileges Required: None
- Impact: High severity with a base score of 9.8
Mitigation and Prevention
Steps to address and prevent exploitation of CVE-2019-1710.
Immediate Steps to Take
- Update affected systems to Cisco IOS XR 64-bit Software versions 6.5.3 or 7.0.1.
- Modify the calvados_boostrap.cfg file and reload the device.
Long-Term Security Practices
- Regularly monitor and update system software.
- Implement network segmentation and access controls.
Patching and Updates
- Apply patches and updates provided by Cisco to address the vulnerability.