CVE-2018-0279

Name of the Vulnerable Software and Affected Versions: Cisco Enterprise NFV Infrastructure Software (NFVIS) versions 3.7.1 and earlier

Description: A vulnerability in the Secure Copy Protocol (SCP) server could allow an authenticated, remote attacker to access the shell of the underlying Linux operating system on the affected device. This is due to improper input validation of command arguments, which an attacker could exploit by using crafted arguments when opening a connection to the affected device. An exploit could allow the attacker to gain shell access with a non-root user account to the underlying Linux operating system, potentially enabling execution of additional attacks that may have a significant impact on the affected system.

Recommendations: For Cisco Enterprise NFV Infrastructure Software (NFVIS) versions 3.7.1 and earlier, restrict access to the SCP server to minimize the risk of exploitation. Consider disabling the SCP server until a patch is available.