CVE-2018-15370

Name of the Vulnerable Software and Affected Versions Cisco Catalyst 6800 Series Switches (affected versions not specified)

Description A vulnerability in the Cisco IOS ROM Monitor (ROMMON) Software could allow an unauthenticated, local attacker to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The issue is due to the presence of a hidden command in the affected software. An attacker could exploit this by connecting to the device via the console, forcing it into ROMMON mode, and writing a malicious pattern to a specific memory address. A successful exploit could allow the attacker to bypass signature validation checks by Cisco Secure Boot technology and load a compromised software image. A compromised software image is any software image that has not been digitally signed by Cisco.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.