===================================================================== CERT-Renater Note d'Information No. 2023/VULN166 _____________________________________________________________________ DATE : 20/04/2023 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running Cisco Industrial Network Director software, Cisco Modeling Labs software, Cisco BroadWorks Network Server, Cisco StarOS Software, Cisco TelePresence Collaboration Endpoint, Cisco RoomOS, Cisco SD-WAN vManage Software. ===================================================================== https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ind-CAeLFk6V https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cml-auth-bypass-4fUCCeG5 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-tcp-dos-KEdJCxLs https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-file-write-rHKwegKf https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vmanage-wfnqmYhN _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-April-19. The following PSIRT security advisories (2 Critical, 2 High, 2 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Industrial Network Director Vulnerabilities - SIR: Critical 2) Cisco Modeling Labs External Authentication Bypass Vulnerability - SIR: Critical 3) Cisco BroadWorks Network Server TCP Denial of Service Vulnerability - SIR: High 4) Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability - SIR: High 5) Cisco TelePresence Collaboration Endpoint and RoomOS Arbitrary File Write Vulnerabilities - SIR: Medium 6) Cisco SD-WAN vManage Software Arbitrary File Deletion Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Industrial Network Director Vulnerabilities CVE-2023-20036, CVE-2023-20039 SIR: Critical CVSS Score v(3.1): 9.9 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ind-CAeLFk6V ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ind-CAeLFk6V"] +-------------------------------------------------------------------- 2) Cisco Modeling Labs External Authentication Bypass Vulnerability CVE-2023-20154 SIR: Critical CVSS Score v(3.1): 9.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cml-auth-bypass-4fUCCeG5 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cml-auth-bypass-4fUCCeG5"] +-------------------------------------------------------------------- 3) Cisco BroadWorks Network Server TCP Denial of Service Vulnerability CVE-2023-20125 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-tcp-dos-KEdJCxLs ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-tcp-dos-KEdJCxLs"] +-------------------------------------------------------------------- 4) Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability CVE-2023-20046 SIR: High CVSS Score v(3.1): 8.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h"] +-------------------------------------------------------------------- 5) Cisco TelePresence Collaboration Endpoint and RoomOS Arbitrary File Write Vulnerabilities CVE-2023-20004, CVE-2023-20090, CVE-2023-20091, CVE-2023-20092, CVE-2023-20093, CVE-2023-20094 SIR: Medium CVSS Score v(3.1): 6.7 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-file-write-rHKwegKf ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-file-write-rHKwegKf"] +-------------------------------------------------------------------- 6) Cisco SD-WAN vManage Software Arbitrary File Deletion Vulnerability CVE-2023-20098 SIR: Medium CVSS Score v(3.1): 4.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vmanage-wfnqmYhN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vmanage-wfnqmYhN"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================