====================================================================


                             CERT-Renater

                 Note d'Information No. 2018/VULN236
_____________________________________________________________________

DATE                : 19/07/2018

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco Policy Suite Policy versions
                                  prior to 18.2.0.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-unauth-access
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-cm-default-psswrd
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-pspb-unauth-access
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-ps-osgi-unauth-access

_____________________________________________________________________

 Cisco Security Advisory: Cisco Policy Suite Policy Builder Database
Unauthenticated Access Vulnerability

Advisory ID: cisco-sa-20180718-policy-unauth-access

Revision: 1.0

For Public Release: 2018 July 18 16:00 GMT

Last Updated: 2018 July 18 16:00 GMT

CVE ID(s): CVE-2018-0374

CVSS Score v(3): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the Policy Builder database of Cisco Policy Suite
could allow an unauthenticated, remote attacker to connect directly to
the Policy Builder database.

The vulnerability is due to a lack of authentication. An attacker could
exploit this vulnerability by connecting directly to the Policy Builder
database. A successful exploit could allow the attacker to access and
change any data in the Policy Builder database.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-unauth-access
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-unauth-access"]

_____________________________________________________________________

Cisco Security Advisory: Cisco Policy Suite Cluster Manager Default
Password Vulnerability

Advisory ID: cisco-sa-20180718-policy-cm-default-psswrd

Revision: 1.0

For Public Release: 2018 July 18 16:00 GMT

Last Updated: 2018 July 18 16:00 GMT

CVE ID(s): CVE-2018-0375

CVSS Score v(3): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the Cluster Manager of Cisco Policy Suite could allow
an unauthenticated, remote attacker to log in to an affected system
using the root account, which has default, static user credentials.

The vulnerability is due to the presence of undocumented, static user
credentials for the root account. An attacker could exploit this
vulnerability by using the account to log in to an affected system. An
exploit could allow the attacker to log in to the affected system and
execute arbitrary commands as the root user.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-cm-default-psswrd
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-policy-cm-default-psswrd"]

_____________________________________________________________________

Cisco Security Advisory: Cisco Policy Suite Policy Builder
Unauthenticated Access Vulnerability

Advisory ID: cisco-sa-20180718-pspb-unauth-access

Revision: 1.0

For Public Release: 2018 July 18 16:00 GMT

Last Updated: 2018 July 18 16:00 GMT

CVE ID(s): CVE-2018-0376

CVSS Score v(3): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the Policy Builder interface of Cisco Policy Suite
could allow an unauthenticated, remote attacker to access the Policy
Builder interface.

The vulnerability is due to a lack of authentication. An attacker could
exploit this vulnerability by accessing the Policy Builder interface. A
successful exploit could allow the attacker to make changes to existing
repositories and create new repositories.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-pspb-unauth-access
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-pspb-unauth-access"]

_____________________________________________________________________

Cisco Security Advisory: Cisco Policy Suite OSGi Interface
Unauthenticated Access Vulnerability

Advisory ID: cisco-sa-20180718-ps-osgi-unauth-access

Revision: 1.0

For Public Release: 2018 July 18 16:00 GMT

Last Updated: 2018 July 18 16:00 GMT

CVE ID(s): CVE-2018-0377

CVSS Score v(3): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the Open Systems Gateway initiative (OSGi) interface
of Cisco Policy Suite could allow an unauthenticated, remote attacker to
directly connect to the OSGi interface.

The vulnerability is due to a lack of authentication. An attacker could
exploit this vulnerability by directly connecting to the OSGi interface.
An exploit could allow the attacker to access or change any files that
are accessible by the OSGi process.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-ps-osgi-unauth-access
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-ps-osgi-unauth-access"]



=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================