=====================================================================

                               CERT-Renater

                     Note d'Information No. 2023/VULN358

_____________________________________________________________________

DATE                : 28/09/2023

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco IOS XE,
                       Cisco IOS,
                       Cisco Catalyst SD-WAN Manager software,
                       Cisco DNA Center API software,
                       Cisco Wireless LAN Controller AireOS Software,
                       Cisco Catalyst 9100 Access Points software,
                       Cisco Access Point Software.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2023-September-27.

The following PSIRT security advisories (1 Critical, 7 High, 6 Medium)
were published at 16:00 UTC today.

Table of Contents:

1) Cisco Catalyst SD-WAN Manager Vulnerabilities - SIR: Critical

2) Cisco IOS XE Software Web UI Command Injection Vulnerability -
SIR: High

3) Cisco IOS XE Software Layer 2 Tunneling Protocol Denial of
Service Vulnerability - SIR: High

4) Cisco IOS XE Software Application Quality of Experience and
Unified Threat Defense Denial of Service Vulnerability - SIR: High

5) Cisco DNA Center API Insufficient Access Control Vulnerability -
SIR: High

6) Cisco IOS XE Software for ASR 1000 Series Aggregation Services
Routers IPv6 Multicast Denial of Service Vulnerability - SIR: High

7) Cisco IOS XE Software for Catalyst 3650 and Catalyst 3850 Series
Switches Denial of Service Vulnerability - SIR: High

8) Cisco IOS and IOS XE Software Command Authorization Bypass
Vulnerability - SIR: High

9) Cisco IOS and IOS XE Software Cisco Group Encrypted Transport
VPN Software Out-of-Bounds Write Vulnerability - SIR: Medium

10) Cisco Wireless LAN Controller AireOS Software Denial of
Service Vulnerability - SIR: Medium

11) Cisco IOS XE Software for Wireless LAN Controllers Wireless
Network Control Denial of Service Vulnerability - SIR: Medium

12) Cisco Catalyst 9100 Access Points Denial of Service
Vulnerability - SIR: Medium

13) Cisco Access Point Software Uncontrolled Resource
Consumption Vulnerability - SIR: Medium

14) Cisco Catalyst SD-WAN Manager Web UI HTML Injection
Vulnerability - SIR: Medium

+--------------------------------------------------------------------

1) Cisco Catalyst SD-WAN Manager Vulnerabilities

CVE-2023-20034, CVE-2023-20252, CVE-2023-20253, CVE-2023-20254,
CVE-2023-20262

SIR: Critical

CVSS Score v(3.1): 9.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z"]

+--------------------------------------------------------------------

2) Cisco IOS XE Software Web UI Command Injection Vulnerability

CVE-2023-20231

SIR: High

CVSS Score v(3.1): 8.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdij-FzZAeXAy 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdij-FzZAeXAy"]

+--------------------------------------------------------------------

3) Cisco IOS XE Software Layer 2 Tunneling Protocol Denial of
Service Vulnerability

CVE-2023-20227

SIR: High

CVSS Score v(3.1): 8.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-l2tp-dos-eB5tuFmV 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-l2tp-dos-eB5tuFmV"]

+--------------------------------------------------------------------

4) Cisco IOS XE Software Application Quality of Experience and
Unified Threat Defense Denial of Service Vulnerability

CVE-2023-20226

SIR: High

CVSS Score v(3.1): 8.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-appqoe-utd-dos-p8O57p5y 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-appqoe-utd-dos-p8O57p5y"]

+--------------------------------------------------------------------

5) Cisco DNA Center API Insufficient Access Control
Vulnerability

CVE-2023-20223

SIR: High

CVSS Score v(3.1): 8.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ins-acc-con-nHAVDRBZ 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ins-acc-con-nHAVDRBZ"]

+--------------------------------------------------------------------

6) Cisco IOS XE Software for ASR 1000 Series Aggregation Services 
Routers IPv6 Multicast Denial of Service Vulnerability

CVE-2023-20187

SIR: High

CVSS Score v(3.1): 8.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-mlre-H93FswRz 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-mlre-H93FswRz"]

+--------------------------------------------------------------------

7) Cisco IOS XE Software for Catalyst 3650 and Catalyst 3850
Series Switches Denial of Service Vulnerability

CVE-2023-20033

SIR: High

CVSS Score v(3.1): 8.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat3k-dos-ZZA4Gb3r 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat3k-dos-ZZA4Gb3r"]

+--------------------------------------------------------------------

8) Cisco IOS and IOS XE Software Command Authorization Bypass
Vulnerability

CVE-2023-20186

SIR: High

CVSS Score v(3.1): 8.0

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aaascp-Tyj4fEJm 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aaascp-Tyj4fEJm"]

+--------------------------------------------------------------------

9) Cisco IOS and IOS XE Software Cisco Group Encrypted
Transport VPN Software Out-of-Bounds Write Vulnerability

CVE-2023-20109

SIR: Medium

CVSS Score v(3.1): 6.6

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-getvpn-rce-g8qR68sx 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-getvpn-rce-g8qR68sx"]

+--------------------------------------------------------------------

10) Cisco Wireless LAN Controller AireOS Software Denial of
Service Vulnerability

CVE-2023-20251

SIR: Medium

CVSS Score v(3.1): 6.1

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbw-dos-YSmbUqX3 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbw-dos-YSmbUqX3"]

+--------------------------------------------------------------------

11) Cisco IOS XE Software for Wireless LAN Controllers Wireless
Network Control Denial of Service Vulnerability

CVE-2023-20202

SIR: Medium

CVSS Score v(3.1): 6.1

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-wncd-HFGMsfSD 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-wncd-HFGMsfSD"]

+--------------------------------------------------------------------

12) Cisco Catalyst 9100 Access Points Denial of Service
Vulnerability

CVE-2023-20176

SIR: Medium

CVSS Score v(3.1): 5.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-click-ap-dos-wdcXkvnQ 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-click-ap-dos-wdcXkvnQ"]

+--------------------------------------------------------------------

13) Cisco Access Point Software Uncontrolled Resource Consumption
Vulnerability

CVE-2023-20268

SIR: Medium

CVSS Score v(3.1): 4.7

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-capwap-DDMCZS4m 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-capwap-DDMCZS4m"]

+--------------------------------------------------------------------

14) Cisco Catalyst SD-WAN Manager Web UI HTML Injection
Vulnerability

CVE-2023-20179

SIR: Medium

CVSS Score v(3.1): 4.3

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-html-3ZKh8d6x 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-html-3ZKh8d6x"]


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================