CVE-2019-1940

Name of the Vulnerable Software and Affected Versions Cisco Industrial Network Director versions prior to 1.7

Description A vulnerability in the Web Services Management Agent (WSMA) feature could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid X.509 certificate. The issue is due to insufficient X.509 certificate validation when establishing a WSMA connection. An attacker could exploit this by supplying a crafted X.509 certificate during the WSMA connection setup phase, potentially allowing them to conduct man-in-the-middle attacks to decrypt confidential information on WSMA connections.

Recommendations For versions prior to 1.7, update to version 1.7 or later to resolve the issue. As a temporary workaround, consider restricting WSMA connections to trusted sources or implementing additional validation for X.509 certificates to minimize the risk of exploitation.