Vulnerability Name:

CVE-2018-0163 (CCN-140910)

Assigned:2017-11-27
Published:2018-03-28
Updated:2021-04-28
Summary:A vulnerability in the 802.1x multiple-authentication (multi-auth) feature of Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass the authentication phase on an 802.1x multi-auth port. The vulnerability is due to a logic change error introduced into the code. An attacker could exploit this vulnerability by trying to access an 802.1x multi-auth port after a successful supplicant has authenticated. An exploit could allow the attacker to bypass the 802.1x access controls and obtain access to the network. Cisco Bug IDs: CSCvg69701.
CVSS v3 Severity:6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
CVSS v2 Severity:3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
6.1 Medium (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:C/A:N)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Complete
Availibility (A): None
Vulnerability Type:CWE-287
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2018-0163

Source: BID
Type: Third Party Advisory, VDB Entry
103571

Source: CCN
Type: BID-103571
Cisco IOS Software CVE-2018-0163 Authentication Bypass Vulnerability

Source: XF
Type: UNKNOWN
cisco-dot1x-cve20180163-sec-bypass(140910)

Source: CCN
Type: Cisco Security Advisory cisco-sa-20180328-dot1x
Cisco IOS Software 802.1x Multiple-Authentication Port Authentication Bypass Vulnerability

Source: CONFIRM
Type: Vendor Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dot1x

Vulnerable Configuration:Configuration 1:
  • cpe:/o:cisco:ios:15.4(3)m6:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.4(3)m6a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.4(3)m7:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.4(3)m7a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.4(3)m8:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.4(3.0i)m6:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m4:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m4a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m4b:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m4c:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m5:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m5a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m6:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.5(3)m6a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(1)t2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(1)t3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(2)t1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(2)t2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(2)t3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m0a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m1a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m1b:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m2:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m2a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m3:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.6(3)m3a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.7(3)m:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.7(3)m0a:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.7(3)m1:*:*:*:*:*:*:*
  • OR cpe:/o:cisco:ios:15.7(3)m2:*:*:*:*:*:*:*
  • AND
  • cpe:/h:cisco:1120_connected_grid_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1240_connected_grid_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1905_serial_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1906c_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1921_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1941_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:1941w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2010_connected_grid_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2901_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2911_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2911a_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2921_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:2951_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:3925_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:3925e_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:3945_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:3945e_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:5915_embedded_service_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:5921_embedded_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:5940_embedded_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:800_series_routers:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:800m_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:809_industrial_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:812_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:812_cifi_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_hardened_3g:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_hardened_dual_radio_802.11n_wifi_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_hardened_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_non-hardened_4g_lte_m2m:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:819_non-hardened_secure_multi-mode_4g_lte_m2m_isr_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:829_industrial_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:860vae-w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:861_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:861w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:866vae_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:867vae_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:880-voice_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:881-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:881_3g:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:881_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:881_secure_fast_ethernet:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:881w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:886va-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:886va-w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:886va_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:886vag_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887_multi-mode_vdsl2/asdl2+_pots:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887va-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887va-w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887va_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887vag_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887vagw_3g:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887vam-w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:887vamg_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888e-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888e_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888eg_3g_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:888w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:891-24x_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:891_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:891w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:892_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:892f-cube_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:892w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:896_multi-mode_vdsl2/adsl2+_isdn:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:897_multi-mode_vdsl2/adsl2+_pots:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:897_multi-mode_vdsl2/adsl2+_pots_annex_m:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:898_secure_g.shdsl_efm/atm:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c866vae_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c867vae_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c881_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c881w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c886va_integrated_services_routers:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c886vaj_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c887va_integrated_services_routers:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c887vam_integrated_services_routers:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c888_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c888ea_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c891f_integrated_services_routers:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c891fw_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c892fsp_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c896va_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c897va-m_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c897va_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c897vam-w_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c897vaw_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c898ea_integrated_services_router:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:c899_secure_gigabit_ethernet:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:vg204xm_analog_voice_gateway:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:vg350_analog_voice_gateway:-:*:*:*:*:*:*:*
  • OR cpe:/h:cisco:vg3x0_analog_voice_gateway:-:*:*:*:*:*:*:*
  • OR cpe:/h:rockwellautomation:stratix_5900:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    cisco ios 15.4(3)m6
    cisco ios 15.4(3)m6a
    cisco ios 15.4(3)m7
    cisco ios 15.4(3)m7a
    cisco ios 15.4(3)m8
    cisco ios 15.4(3.0i)m6
    cisco ios 15.5(3)m3
    cisco ios 15.5(3)m4
    cisco ios 15.5(3)m4a
    cisco ios 15.5(3)m4b
    cisco ios 15.5(3)m4c
    cisco ios 15.5(3)m5
    cisco ios 15.5(3)m5a
    cisco ios 15.5(3)m6
    cisco ios 15.5(3)m6a
    cisco ios 15.6(1)t2
    cisco ios 15.6(1)t3
    cisco ios 15.6(2)t1
    cisco ios 15.6(2)t2
    cisco ios 15.6(2)t3
    cisco ios 15.6(3)m
    cisco ios 15.6(3)m0a
    cisco ios 15.6(3)m1
    cisco ios 15.6(3)m1a
    cisco ios 15.6(3)m1b
    cisco ios 15.6(3)m2
    cisco ios 15.6(3)m2a
    cisco ios 15.6(3)m3
    cisco ios 15.6(3)m3a
    cisco ios 15.7(3)m
    cisco ios 15.7(3)m0a
    cisco ios 15.7(3)m1
    cisco ios 15.7(3)m2
    cisco 1120 connected grid router -
    cisco 1240 connected grid router -
    cisco 1905 serial integrated services router -
    cisco 1906c integrated services router -
    cisco 1921 integrated services router -
    cisco 1941 integrated services router -
    cisco 1941w integrated services router -
    cisco 2010 connected grid router -
    cisco 2901 integrated services router -
    cisco 2911 integrated services router -
    cisco 2911a integrated services router -
    cisco 2921 integrated services router -
    cisco 2951 integrated services router -
    cisco 3925 integrated services router -
    cisco 3925e integrated services router -
    cisco 3945 integrated services router -
    cisco 3945e integrated services router -
    cisco 5915 embedded service router -
    cisco 5921 embedded services router -
    cisco 5940 embedded services router -
    cisco 800 series routers -
    cisco 800m integrated services router -
    cisco 809 industrial integrated services router -
    cisco 812 3g integrated services router -
    cisco 812 cifi integrated services router -
    cisco 819 hardened 3g -
    cisco 819 hardened dual radio 802.11n wifi integrated services router -
    cisco 819 hardened integrated services router -
    cisco 819 integrated services router -
    cisco 819 non-hardened 4g lte m2m -
    cisco 819 non-hardened secure multi-mode 4g lte m2m isr router -
    cisco 829 industrial integrated services router -
    cisco 860vae-w integrated services router -
    cisco 861 integrated services router -
    cisco 861w integrated services router -
    cisco 866vae integrated services router -
    cisco 867vae integrated services router -
    cisco 880-voice integrated services router -
    cisco 881-cube integrated services router -
    cisco 881 3g -
    cisco 881 3g integrated services router -
    cisco 881 secure fast ethernet -
    cisco 881w integrated services router -
    cisco 886va-cube integrated services router -
    cisco 886va-w integrated services router -
    cisco 886va integrated services router -
    cisco 886vag 3g integrated services router -
    cisco 887 multi-mode vdsl2/asdl2+ pots -
    cisco 887va-cube integrated services router -
    cisco 887va-w integrated services router -
    cisco 887va integrated services router -
    cisco 887vag 3g integrated services router -
    cisco 887vagw 3g -
    cisco 887vam-w integrated services router -
    cisco 887vamg 3g integrated services router -
    cisco 888-cube integrated services router -
    cisco 888 integrated services router -
    cisco 888e-cube integrated services router -
    cisco 888e integrated services router -
    cisco 888eg 3g integrated services router -
    cisco 888w integrated services router -
    cisco 891-24x integrated services router -
    cisco 891 integrated services router -
    cisco 891w integrated services router -
    cisco 892 integrated services router -
    cisco 892f-cube integrated services router -
    cisco 892w integrated services router -
    cisco 896 multi-mode vdsl2/adsl2+ isdn -
    cisco 897 multi-mode vdsl2/adsl2+ pots -
    cisco 897 multi-mode vdsl2/adsl2+ pots annex m -
    cisco 898 secure g.shdsl efm/atm -
    cisco c866vae integrated services router -
    cisco c867vae integrated services router -
    cisco c881 integrated services router -
    cisco c881w integrated services router -
    cisco c886va integrated services routers -
    cisco c886vaj integrated services router -
    cisco c887va integrated services routers -
    cisco c887vam integrated services routers -
    cisco c888 integrated services router -
    cisco c888ea integrated services router -
    cisco c891f integrated services routers -
    cisco c891fw integrated services router -
    cisco c892fsp integrated services router -
    cisco c896va integrated services router -
    cisco c897va-m integrated services router -
    cisco c897va integrated services router -
    cisco c897vam-w integrated services router -
    cisco c897vaw integrated services router -
    cisco c898ea integrated services router -
    cisco c899 secure gigabit ethernet -
    cisco vg204xm analog voice gateway -
    cisco vg350 analog voice gateway -
    cisco vg3x0 analog voice gateway -
    rockwellautomation stratix 5900 -