CVE-2019-1859

Name of the Vulnerable Software and Affected Versions Cisco Small Business Switches software (affected versions not specified)

Description A vulnerability in the Secure Shell (SSH) authentication process could allow an attacker to bypass client-side certificate authentication and revert to password authentication. This is due to OpenSSH mishandling the authentication process. An attacker could exploit this by attempting to connect to the device via SSH. A successful exploit could allow the attacker to access the configuration as an administrative user if the default credentials are not changed.

Recommendations For all affected versions, disable client-side certificate authentication and use strong password authentication as a mitigation measure. If client-side certificate authentication is enabled, consider disabling it until a patch is available. Use strong password authentication to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.