===================================================================== CERT-Renater Note d'Information No. 2023/VULN264 _____________________________________________________________________ DATE : 24/08/2023 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running Cisco Products. ===================================================================== https://sec.cloudapps.cisco.com/security/center/publicationListing.x _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-August-23. The following PSIRT security advisories (3 High, 3 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects SNMP Denial of Service Vulnerability - SIR: High 2) Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability - SIR: High 3) Cisco NX-OS Software TACACS+ or RADIUS Remote Authentication Directed Request Denial of Service Vulnerability - SIR: High 4) Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability - SIR: Medium 5) Cisco Nexus 3000 and 9000 Series Switches SFTP Server File Access Vulnerability - SIR: Medium 6) Cisco FXOS Software Arbitrary File Write Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects SNMP Denial of Service Vulnerability CVE-2023-20200 SIR: High CVSS Score v(3.1): 7.7 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fp-ucsfi-snmp-dos-qtv69NAO ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fp-ucsfi-snmp-dos-qtv69NAO"] +-------------------------------------------------------------------- 2) Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability CVE-2023-20169 SIR: High CVSS Score v(3.1): 7.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-n3_9k-isis-dos-FTCXB4Vb ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-n3_9k-isis-dos-FTCXB4Vb"] +-------------------------------------------------------------------- 3) Cisco NX-OS Software TACACS+ or RADIUS Remote Authentication Directed Request Denial of Service Vulnerability CVE-2023-20168 SIR: High CVSS Score v(3.1): 7.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-remoteauth-dos-XB6pv74m ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-remoteauth-dos-XB6pv74m"] +-------------------------------------------------------------------- 4) Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability CVE-2023-20230 SIR: Medium CVSS Score v(3.1): 5.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-uapa-F4TAShk ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-uapa-F4TAShk"] +-------------------------------------------------------------------- 5) Cisco Nexus 3000 and 9000 Series Switches SFTP Server File Access Vulnerability CVE-2023-20115 SIR: Medium CVSS Score v(3.1): 5.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-sftp-xVAp5Hfd ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-sftp-xVAp5Hfd"] +-------------------------------------------------------------------- 6) Cisco FXOS Software Arbitrary File Write Vulnerability CVE-2023-20234 SIR: Medium CVSS Score v(3.1): 4.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-arbitrary-file-BLk6YupL ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-arbitrary-file-BLk6YupL"] _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-August-16. The following PSIRT security advisories (5 High, 12 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability - SIR: High 2) ClamAV AutoIt Module Denial of Service Vulnerability - SIR: High 3) Cisco Unified Communications Manager SQL Injection Vulnerability - SIR: High 4) ClamAV HFS+ File Scanning Infinite Loop Denial of Service Vulnerability - SIR: High 5) Cisco Duo Device Health Application for Windows Arbitrary File Write Vulnerability - SIR: High 6) Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Request Forgery Vulnerability - SIR: Medium 7) Cisco Expressway Series and Cisco TelePresence Video Communication Server Command Injection Vulnerability - SIR: Medium 8) Cisco Identity Services Engine Device Credential Information Disclosure Vulnerability - SIR: Medium 9) Cisco Intersight Private Virtual Appliance Command Injection Vulnerabilities - SIR: Medium 10) Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability - SIR: Medium 11) Cisco Integrated Management Controller Cross-Site Scripting Vulnerability - SIR: Medium 12) Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability - SIR: Medium 13) Cisco Unified Communications Products Cross-Site Scripting Vulnerability - SIR: Medium 14) Cisco Unified Contact Center Express Finesse Portal Web Cache Poisoning Vulnerability - SIR: Medium 15) Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability - SIR: Medium 16) Cisco Prime Infrastructure and Evolved Programmable Network Manager Cross-Site Scripting Vulnerabilities - SIR: Medium 17) Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability CVE-2023-20224 SIR: High CVSS Score v(3.1): 7.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-thoueye-privesc-NVhHGwb3 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-thoueye-privesc-NVhHGwb3"] +-------------------------------------------------------------------- 2) ClamAV AutoIt Module Denial of Service Vulnerability CVE-2023-20212 SIR: High CVSS Score v(3.1): 7.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-FTkhqMWZ ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-FTkhqMWZ"] +-------------------------------------------------------------------- 3) Cisco Unified Communications Manager SQL Injection Vulnerability CVE-2023-20211 SIR: High CVSS Score v(3.1): 8.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-injection-g6MbwH2 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-injection-g6MbwH2"] +-------------------------------------------------------------------- 4) ClamAV HFS+ File Scanning Infinite Loop Denial of Service Vulnerability CVE-2023-20197 SIR: High CVSS Score v(3.1): 7.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee"] +-------------------------------------------------------------------- 5) Cisco Duo Device Health Application for Windows Arbitrary File Write Vulnerability CVE-2023-20229 SIR: High CVSS Score v(3.1): 7.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-duo-dha-filewrite-xPMBMZAK ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-duo-dha-filewrite-xPMBMZAK"] +-------------------------------------------------------------------- 6) Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Request Forgery Vulnerability CVE-2023-20221 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-csrf-HOCmXW2c ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-csrf-HOCmXW2c"] +-------------------------------------------------------------------- 7) Cisco Expressway Series and Cisco TelePresence Video Communication Server Command Injection Vulnerability CVE-2023-20209 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-injection-X475EbTQ ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-injection-X475EbTQ"] +-------------------------------------------------------------------- 8) Cisco Identity Services Engine Device Credential Information Disclosure Vulnerability CVE-2023-20111 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-credentials-tkTO3h3 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-credentials-tkTO3h3"] +-------------------------------------------------------------------- 9) Cisco Intersight Private Virtual Appliance Command Injection Vulnerabilities CVE-2023-20013, CVE-2023-20017 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ivpa-cmdinj-C5XRbbOy ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ivpa-cmdinj-C5XRbbOy"] +-------------------------------------------------------------------- 10) Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability CVE-2017-6679 SIR: Medium CVSS Score v(3.0): 6.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE"] +-------------------------------------------------------------------- 11) Cisco Integrated Management Controller Cross-Site Scripting Vulnerability CVE-2023-20228 SIR: Medium CVSS Score v(3.1): 6.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cimc-xss-UMYtYEtr ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cimc-xss-UMYtYEtr"] +-------------------------------------------------------------------- 12) Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege *Escalation Vulnerability CVE-2023-20217 SIR: Medium CVSS Score v(3.1): 5.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-te-va-priv-esc-PUdgrx8E ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-te-va-priv-esc-PUdgrx8E"] +-------------------------------------------------------------------- 13) Cisco Unified Communications Products Cross-Site Scripting Vulnerability CVE-2023-20242 SIR: Medium CVSS Score v(3.1): 4.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-xss-QtT4VdsK ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-imp-xss-QtT4VdsK"] +-------------------------------------------------------------------- 14) Cisco Unified Contact Center Express Finesse Portal Web Cache Poisoning Vulnerability CVE-2023-20232 SIR: Medium CVSS Score v(3.1): 5.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-wcp-JJeqDT3S ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-wcp-JJeqDT3S"] +-------------------------------------------------------------------- 15) Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability CVE-2023-20222 SIR: Medium CVSS Score v(3.1): 4.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-storedxss-tTjO62r ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-storedxss-tTjO62r"] +-------------------------------------------------------------------- 16) Cisco Prime Infrastructure and Evolved Programmable Network Manager Cross-Site Scripting Vulnerabilities CVE-2023-20201, CVE-2023-20203, CVE-2023-20205 SIR: Medium CVSS Score v(3.1): 4.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-BFjSRJP5 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-BFjSRJP5"] +-------------------------------------------------------------------- 17) Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability CVE-2023-20237 SIR: Medium CVSS Score v(3.1): 4.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-forward-C45ncgqb ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-forward-C45ncgqb"] _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-August-02. The following PSIRT security advisories (2 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerability - SIR: Medium 2) Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerability CVE-2023-20215 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-bypass-vXvqwzsj ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-bypass-vXvqwzsj"] +-------------------------------------------------------------------- 2) Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability CVE-2023-20204 SIR: Medium CVSS Score v(3.1): 5.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-commpilot-xss-jC46sezF ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-commpilot-xss-jC46sezF"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================