==================================================================== CERT-Renater Note d'Information No. 2020/VULN392 _____________________________________________________________________ DATE : 16/07/2020 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Cisco Small Business RV110W Wireless-N VPN Firewall firmware releases 1.2.2.8 and later, RV130 VPN Router firmware release prior to 1.0.3.55, RV130W Wireless-N Multifunction VPN Router firmware version prior to 1.0.3.55, RV215W Wireless-N VPN Router version prior to 1.3.1.7, Systems running Cisco Prime License Manager version prior to 10.5(2)SU10, 11.5(1)SU7, Cisco SD-WAN Solution Software version prior to 18.4.5, 19.2.2, 20.1.1, Cisco SD-WAN vBond, vEdge, and vSmart Software versions prior to 18.4.5, 19.2.3, 20.1.12. ===================================================================== https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&last_published=2020%20Jul&sort=-day_sir&limit=100#~Vulnerabilities _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2020-July-15. The following PSIRT security advisories (5 Critical, 11 High) were published at 16:00 UTC today. Table of Contents: 1) Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Vulnerability - SIR: Critical 2) Cisco RV110W and RV215W Series Routers Arbitrary Code Execution Vulnerability - SIR: Critical 3) Cisco Small Business RV110W Wireless-N VPN Firewall Static Default Credential Vulnerability - SIR: Critical 4) Cisco RV110W, RV130, RV130W, and RV215W Routers Authentication Bypass Vulnerability - SIR: Critical 5) Cisco Prime License Manager Privilege Escalation Vulnerability - SIR: Critical 6) Cisco SD-WAN vManage Software Command Injection Vulnerability - SIR: High 7) Cisco SD-WAN Solution Software Denial of Service Vulnerability - SIR: High 8) Cisco SD-WAN vManage Software Remote Code Execution Vulnerability - SIR: High 9) Cisco SD-WAN vEdge Routers Denial of Service Vulnerability - SIR: High 10) Cisco SD-WAN vManage Software Directory Traversal Vulnerability - SIR: High 11) Cisco SD-WAN vEdge Routers Denial of Service Vulnerability - SIR: High 12) Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers SSL Denial of Service Vulnerability - SIR: High 13) Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers SSL Remote Code Execution and Denial of Service Vulnerability - SIR: High 14) Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability - SIR: High 15) Cisco SD-WAN Solution Software Static Credentials Vulnerability - SIR: High 16) Cisco RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Multiple Vulnerabilities - SIR: High +-------------------------------------------------------------------- 1) Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Vulnerability CVE-2020-3323 SIR: Critical CVSS Score v(3.0): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-AQKREqp ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-AQKREqp"] +-------------------------------------------------------------------- 2) Cisco RV110W and RV215W Series Routers Arbitrary Code Execution Vulnerability CVE-2020-3331 SIR: Critical CVSS Score v(3.0): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-code-exec-wH3BNFb ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-code-exec-wH3BNFb"] +-------------------------------------------------------------------- 3) Cisco Small Business RV110W Wireless-N VPN Firewall Static Default Credential Vulnerability CVE-2020-3330 SIR: Critical CVSS Score v(3.0): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv110w-static-cred-BMTWBWTy ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv110w-static-cred-BMTWBWTy"] +-------------------------------------------------------------------- 4) Cisco RV110W, RV130, RV130W, and RV215W Routers Authentication Bypass Vulnerability CVE-2020-3144 SIR: Critical CVSS Score v(3.0): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-auth-bypass-cGv9EruZ ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-auth-bypass-cGv9EruZ"] +-------------------------------------------------------------------- 5) Cisco Prime License Manager Privilege Escalation Vulnerability CVE-2020-3140 SIR: Critical CVSS Score v(3.0): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-prime-priv-esc-HyhwdzBA ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-prime-priv-esc-HyhwdzBA"] +-------------------------------------------------------------------- 6) Cisco SD-WAN vManage Software Command Injection Vulnerability CVE-2020-3388 SIR: High CVSS Score v(3.0): 7.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clibypvman-sKcLf2L ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clibypvman-sKcLf2L"] +-------------------------------------------------------------------- 7) Cisco SD-WAN Solution Software Denial of Service Vulnerability CVE-2020-3351 SIR: High CVSS Score v(3.0): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-dos-KWOdyHnB ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-dos-KWOdyHnB"] +-------------------------------------------------------------------- 8) Cisco SD-WAN vManage Software Remote Code Execution Vulnerability CVE-2020-3387 SIR: High CVSS Score v(3.0): 7.5 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanrce-4jtWT28P ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanrce-4jtWT28P"] +-------------------------------------------------------------------- 9) Cisco SD-WAN vEdge Routers Denial of Service Vulnerability CVE-2020-3385 SIR: High CVSS Score v(3.0): 7.4 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vedgfpdos-PkqQrnwV ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vedgfpdos-PkqQrnwV"] +-------------------------------------------------------------------- 10) Cisco SD-WAN vManage Software Directory Traversal Vulnerability CVE-2020-3381 SIR: High CVSS Score v(3.0): 8.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmdirtrav-eFdAxsJg ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmdirtrav-eFdAxsJg"] +-------------------------------------------------------------------- 11) Cisco SD-WAN vEdge Routers Denial of Service Vulnerability CVE-2020-3369 SIR: High CVSS Score v(3.0): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fpdos-hORBfd9f ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fpdos-hORBfd9f"] +-------------------------------------------------------------------- 12) Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers SSL Denial of Service Vulnerability CVE-2020-3358 SIR: High CVSS Score v(3.1): 8.6 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-dos-ZN5GvNH7 ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-dos-ZN5GvNH7"] +-------------------------------------------------------------------- 13) Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers SSL Remote Code Execution and Denial of Service Vulnerability CVE-2020-3357 SIR: High CVSS Score v(3.1): 9.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rce-dos-9ZAjkx4 ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rce-dos-9ZAjkx4"] +-------------------------------------------------------------------- 14) Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability CVE-2020-3332 SIR: High CVSS Score v(3.0): 8.1 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmd-shell-injection-9jOQn9Dy ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmd-shell-injection-9jOQn9Dy"] +-------------------------------------------------------------------- 15) Cisco SD-WAN Solution Software Static Credentials Vulnerability CVE-2020-3180 SIR: High CVSS Score v(3.0): 8.4 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdscred-HfWWfqBj ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdscred-HfWWfqBj"] +-------------------------------------------------------------------- 16) Cisco RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Multiple Vulnerabilities CVE-2020-3145, CVE-2020-3146 SIR: High CVSS Score v(3.0): 8.8 URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-m4FEEGWX ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-m4FEEGWX"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================