=================================================================== CERT-Renater Note d'Information No. 2023/VULN111 _____________________________________________________________________ DATE : 23/03/2023 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Cisco IOS XE Software, Cisco IOS Software, Cisco DNA Center Software, Cisco Access Point Software, Cisco SD-WAN vManage Software, Firepower Threat Defense Software, Cisco Adaptive Security Appliance Software. ====================================================================https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-gre-crash-p6nE5Sq5 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv4-vfr-dos-CXxtFacb https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-dhcpv6-dos-44cMvdDK https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-priv-escalate-Xg8zkyPk https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-privesc-QFXe74RS https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-sdwan-VQAhEjYw https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-dos-wFujBHKw https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9300-spi-ace-yejYgnNQ https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-pthtrv-es7GSb9V https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-cli-dos-tc2EKEpu https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-apjoin-dos-nXRHkt5 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vman-csrf-76RDbLEh https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdios-dhcpv6-cli-Zf3zTv https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa5500x-entropy-6v9bHVYP https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironetap-cmdinj-6bjT4FL8 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-infodisc-pe7zAbdR https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-priv-esc-sABD8hcU _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-March-22. The following PSIRT security advisories (9 High, 9 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco IOS XE Software Fragmented Tunnel Protocol Packet Denial of Service Vulnerability - SIR: High 2) Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability - SIR: High 3) Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability - SIR: High 4) Cisco IOS XE Software IOx Application Hosting Environment Privilege Escalation Vulnerability - SIR: High 5) Cisco DNA Center Privilege Escalation Vulnerability - SIR: High 6) Cisco IOS XE SD-WAN Software Command Injection Vulnerability - SIR: High 7) Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability - SIR: High 8) Cisco Access Point Software Association Request Denial of Service Vulnerability - SIR: High 9) Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability - SIR: High 10) Cisco IOS XE Software Web UI Path Traversal Vulnerability - SIR: Medium 11) Cisco Access Point Software Denial of Service Vulnerability - SIR: Medium 12) Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Join Denial of Service Vulnerability - SIR: Medium 13) Cisco SD-WAN vManage Software Cross-Site Request Forgery Vulnerability - SIR: Medium 14) Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability - SIR: Medium 15) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability - SIR: Medium 16) Cisco Access Point Software Command Injection Vulnerability - SIR: Medium 17) Cisco DNA Center Information Disclosure Vulnerability - SIR: Medium 18) Cisco IOS XE Software Privilege Escalation Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco IOS XE Software Fragmented Tunnel Protocol Packet Denial of Service Vulnerability CVE-2023-20072 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-gre-crash-p6nE5Sq5 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-gre-crash-p6nE5Sq5"] +-------------------------------------------------------------------- 2) Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability CVE-2023-20027 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv4-vfr-dos-CXxtFacb ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv4-vfr-dos-CXxtFacb"] +-------------------------------------------------------------------- 3) Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability CVE-2023-20080 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-dhcpv6-dos-44cMvdDK ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-dhcpv6-dos-44cMvdDK"] +-------------------------------------------------------------------- 4) Cisco IOS XE Software IOx Application Hosting Environment Privilege Escalation Vulnerability CVE-2023-20065 SIR: High CVSS Score v(3.1): 7.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-priv-escalate-Xg8zkyPk ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-priv-escalate-Xg8zkyPk"] +-------------------------------------------------------------------- 5) Cisco DNA Center Privilege Escalation Vulnerability CVE-2023-20055 SIR: High CVSS Score v(3.1): 8.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-privesc-QFXe74RS ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-privesc-QFXe74RS"] +-------------------------------------------------------------------- 6) Cisco IOS XE SD-WAN Software Command Injection Vulnerability CVE-2023-20035 SIR: High CVSS Score v(3.1): 7.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-sdwan-VQAhEjYw ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-sdwan-VQAhEjYw"] +-------------------------------------------------------------------- 7) Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability CVE-2023-20067 SIR: High CVSS Score v(3.1): 7.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-dos-wFujBHKw ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-dos-wFujBHKw"] +-------------------------------------------------------------------- 8) Cisco Access Point Software Association Request Denial of Service Vulnerability CVE-2023-20112 SIR: High CVSS Score v(3.1): 7.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2"] +-------------------------------------------------------------------- 9) Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability CVE-2023-20082 SIR: High CVSS Score v(3.1): 6.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9300-spi-ace-yejYgnNQ ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9300-spi-ace-yejYgnNQ"] +-------------------------------------------------------------------- 10) Cisco IOS XE Software Web UI Path Traversal Vulnerability CVE-2023-20066 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-pthtrv-es7GSb9V ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-pthtrv-es7GSb9V"] +-------------------------------------------------------------------- 11) Cisco Access Point Software Denial of Service Vulnerability CVE-2023-20056 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-cli-dos-tc2EKEpu ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-cli-dos-tc2EKEpu"] +-------------------------------------------------------------------- 12) Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Join Denial of Service Vulnerability CVE-2023-20100 SIR: Medium CVSS Score v(3.1): 6.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-apjoin-dos-nXRHkt5 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-apjoin-dos-nXRHkt5"] +-------------------------------------------------------------------- 13) Cisco SD-WAN vManage Software Cross-Site Request Forgery Vulnerability CVE-2023-20113 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vman-csrf-76RDbLEh ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vman-csrf-76RDbLEh"] +-------------------------------------------------------------------- 14) Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability CVE-2023-20081 SIR: Medium CVSS Score v(3.1): 6.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdios-dhcpv6-cli-Zf3zTv ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdios-dhcpv6-cli-Zf3zTv"] +-------------------------------------------------------------------- 15) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability CVE-2023-20107 SIR: Medium CVSS Score v(3.0): 5.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa5500x-entropy-6v9bHVYP ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa5500x-entropy-6v9bHVYP"] +-------------------------------------------------------------------- 16) Cisco Access Point Software Command Injection Vulnerability CVE-2023-20097 SIR: Medium CVSS Score v(3.1): 4.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironetap-cmdinj-6bjT4FL8 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironetap-cmdinj-6bjT4FL8"] +-------------------------------------------------------------------- 17) Cisco DNA Center Information Disclosure Vulnerability CVE-2023-20059 SIR: Medium CVSS Score v(3.1): 4.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-infodisc-pe7zAbdR ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-infodisc-pe7zAbdR"] +-------------------------------------------------------------------- 18) Cisco IOS XE Software Privilege Escalation Vulnerability CVE-2023-20029 SIR: Medium CVSS Score v(3.1): 4.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-priv-esc-sABD8hcU ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-priv-esc-sABD8hcU"] ========================================================+ CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =======================================================