CVE-2019-1649
Description
A vulnerability in the logic that handles access control to one of the hardware components in Ciscos proprietary Secure Boot implementation could allow an authenticated, local attacker to write a modified firmware image to the component. This vulnerability affects multiple Cisco products that support hardware-based Secure Boot functionality. The vulnerability is due to an improper check on the area of code that manages on-premise updates to a Field Programmable Gate Array (FPGA) part of the Secure Boot hardware implementation. An attacker with elevated privileges and access to the underlying operating system that is running on the affected device could exploit this vulnerability by writing a modified firmware image to the FPGA. A successful exploit could either cause the device to become unusable (and require a hardware replacement) or allow tampering with the Secure Boot verification process, which under some circumstances may allow the attacker to install and boot a malicious software image. An attacker will need to fulfill all the following conditions to attempt to exploit this vulnerability: Have privileged administrative access to the device. Be able to access the underlying operating system running on the device; this can be achieved either by using a supported, documented mechanism or by exploiting another vulnerability that would provide an attacker with such access. Develop or have access to a platform-specific exploit. An attacker attempting to exploit this vulnerability across multiple affected platforms would need to research each one of those platforms and then develop a platform-specific exploit. Although the research process could be reused across different platforms, an exploit developed for a given hardware platform is unlikely to work on a different hardware platform.
Risk Information
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco 5000 Series Enterprise Network Compute System | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco ASR 9000 Series Aggregation Services Routers | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Catalyst 9500 Series Switches | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 9000 Series Switches | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7000 10-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7000 18-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7000 9-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7000 4-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9710 Multilayer Director | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9250i Multiservice Fabric Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7700 10-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7700 18-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7700 6-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9148S 16G Multilayer Fabric Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9706 Multilayer Director | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Nexus 7700 2-Slot Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9396S 16G Multilayer Fabric Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9132T 32-Gbps 32-Port Fibre Channel Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9148T 32-Gbps 48-Port Fibre Channel Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco MDS 9396T 32-Gbps 96-Port Fibre Channel Switch | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco 1000 Series Routers | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco ONS 15454 Series Multiservice Provisioning Platforms | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For Cisco Application Extension Platform | NCM |
| Cisco Secure Boot Hardware Tampering Vulnerability For CiscoPro Workgroup EtherSwitch Software | NCM |
| Improper Locking Vulnerability (CVE-2019-1649) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1700011 | Security Update for Cisco 5000 Series Enterprise Network Compute System 4.1(1c) |
| PATCH-1705564 | Security Update for Cisco ASR 9000 Series Aggregation Services Routers 5.3.0.1i.BASE |
| PATCH-1705904 | Security Update for Cisco Catalyst 9500 Series Switches Denali-16.3.4a |
| PATCH-1706000 | Security Update for Cisco Nexus 9000 Series Switches 15.1(4c) |
| PATCH-1705011 | Security Update for Cisco Nexus 7000 10-Slot Switch 8.4(2) |
| PATCH-1705012 | Security Update for Cisco Nexus 7000 18-Slot Switch 8.4(2) |
| PATCH-1705013 | Security Update for Cisco Nexus 7000 9-Slot Switch 8.4(2) |
| PATCH-1705014 | Security Update for Cisco Nexus 7000 4-Slot Switch 8.4(2) |
| PATCH-1705015 | Security Update for Cisco MDS 9710 Multilayer Director 8.4(2) |
| PATCH-1705016 | Security Update for Cisco MDS 9250i Multiservice Fabric Switch 8.4(2) |
| PATCH-1705017 | Security Update for Cisco Nexus 7700 10-Slot Switch 8.4(2) |
| PATCH-1705018 | Security Update for Cisco Nexus 7700 18-Slot Switch 8.4(2) |
| PATCH-1705019 | Security Update for Cisco Nexus 7700 6-Slot Switch 8.4(2) |
| PATCH-1705020 | Security Update for Cisco MDS 9148S 16G Multilayer Fabric Switch 8.4(2) |
| PATCH-1705021 | Security Update for Cisco MDS 9706 Multilayer Director 8.4(2) |
| PATCH-1705022 | Security Update for Cisco Nexus 7700 2-Slot Switch 8.4(2) |
| PATCH-1705023 | Security Update for Cisco MDS 9396S 16G Multilayer Fabric Switch 8.4(2) |
| PATCH-1705024 | Security Update for Cisco MDS 9132T 32-Gbps 32-Port Fibre Channel Switch 8.4(2) |
| PATCH-1705025 | Security Update for Cisco MDS 9148T 32-Gbps 48-Port Fibre Channel Switch 8.4(2) |
| PATCH-1705026 | Security Update for Cisco MDS 9396T 32-Gbps 96-Port Fibre Channel Switch 8.4(2) |
| PATCH-1706026 | Security Update for CAF-1.2.0.0 |
| PATCH-1705963 | Security Update for Cisco ONS 15454 Series Multiservice Provisioning Platforms 10.6(2) |
| PATCH-1705914 | Security Update for Cisco Application Extension Platform 1.0.3.16 |
| PATCH-1706035 | Security Update for CiscoPro Workgroup EtherSwitch Software 6.0(2)A8(4) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234