===================================================================== CERT-Renater Note d'Information No. 2023/VULN454 _____________________________________________________________________ DATE : 06/11/2023 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running Cisco products. ===================================================================== https://sec.cloudapps.cisco.com/security/center/publicationListing.x _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2023-November-01. The following PSIRT security advisories (1 Critical, 9 High, 15 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Firepower Management Center Software Command Injection Vulnerability - SIR: Critical 2) Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Firewalls Inspection Rules Denial of Service Vulnerability - SIR: High 3) Cisco Identity Services Engine Command Injection Vulnerabilities - SIR: High 4) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability - SIR: High 5) Cisco Firepower Threat Defense Software ICMPv6 with Snort 2 Denial of Service Vulnerability - SIR: High 6) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability - SIR: High 7) Cisco Firepower Management Center Software Log API Denial of Service Vulnerability - SIR: High 8) Cisco Firepower Threat Defense Software and Firepower Management Center Software Code Injection Vulnerability - SIR: High 9) Cisco Firepower Management Center Software Command Injection Vulnerabilities - SIR: High 10) Cisco Identity Services Engine Vulnerabilities - SIR: High 11) Cisco Firepower Management Center Software Arbitrary File Download Vulnerability - SIR: Medium 12) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect SSL/TLS VPN Denial of Service Vulnerability - SIR: Medium 13) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SAML Assertion Hijack Vulnerability - SIR: Medium 14) Cisco Firepower Threat Defense Software SMB Protocol Snort 3 Detection Engine Bypass and Denial of Service Vulnerability - SIR: Medium 15) Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability - SIR: Medium 16) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities - SIR: Medium 17) Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability - SIR: Medium 18) Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities - SIR: Medium 19) Cisco Meeting Server Web Bridge Denial of Service Vulnerability - SIR: Medium 20) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Multiple Certificate Authentication Bypass Vulnerability - SIR: Medium 21) Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability - SIR: Medium 22) Cisco Firepower Threat Defense Software SSL/TLS URL Category and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability - SIR: Medium 23) Cisco Firepower Threat Defense Software Snort 3 Detection Engine Denial of Service Vulnerability - SIR: Medium 24) Cisco Firepower Threat Defense Software SSL and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability - SIR: Medium 25) Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Firepower Management Center Software Command Injection Vulnerability CVE-2023-20048 SIR: Critical CVSS Score v(3.1): 9.9 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-29MP49hN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-29MP49hN"] +-------------------------------------------------------------------- 2) Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Firewalls Inspection Rules Denial of Service Vulnerability CVE-2023-20244 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-intrusion-dos-DfT7wyGC ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-intrusion-dos-DfT7wyGC"] +-------------------------------------------------------------------- 3) Cisco Identity Services Engine Command Injection Vulnerabilities CVE-2023-20170, CVE-2023-20175 SIR: High CVSS Score v(3.1): 8.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-injection-QeXegrCw ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-injection-QeXegrCw"] +-------------------------------------------------------------------- 4) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability CVE-2023-20086 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-icmpv6-t5TzqwNd ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-icmpv6-t5TzqwNd"] +-------------------------------------------------------------------- 5) Cisco Firepower Threat Defense Software ICMPv6 with Snort 2 Denial of Service Vulnerability CVE-2023-20083 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-icmpv6-dos-4eMkLuN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-icmpv6-dos-4eMkLuN"] +-------------------------------------------------------------------- 6) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability CVE-2023-20095 SIR: High CVSS Score v(3.1): 8.6 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-webvpn-dos-3GhZQBAS ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-webvpn-dos-3GhZQBAS"] +-------------------------------------------------------------------- 7) Cisco Firepower Management Center Software Log API Denial of Service Vulnerability CVE-2023-20155 SIR: High CVSS Score v(3.1): 7.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-logview-dos-AYJdeX55 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-logview-dos-AYJdeX55"] +-------------------------------------------------------------------- 8) Cisco Firepower Threat Defense Software and Firepower Management Center Software Code Injection Vulnerability CVE-2023-20063 SIR: High CVSS Score v(3.1): 8.2 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fmc-code-inj-wSHrgz8L ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fmc-code-inj-wSHrgz8L"] +-------------------------------------------------------------------- 9) Cisco Firepower Management Center Software Command Injection Vulnerabilities CVE-2023-20219, CVE-2023-20220 SIR: High CVSS Score v(3.1): 7.2 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmdinj-bTEgufOX ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmdinj-bTEgufOX"] +-------------------------------------------------------------------- 10) Cisco Identity Services Engine Vulnerabilities CVE-2023-20195, CVE-2023-20196, CVE-2023-20213 SIR: High CVSS Score v(3.1): 4.7 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs"] +-------------------------------------------------------------------- 11) Cisco Firepower Management Center Software Arbitrary File Download Vulnerability CVE-2023-20114 SIR: Medium CVSS Score v(3.1): 6.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-file-download-7js4ug2J ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-file-download-7js4ug2J"] +-------------------------------------------------------------------- 12) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect SSL/TLS VPN Denial of Service Vulnerability CVE-2023-20042 SIR: Medium CVSS Score v(3.1): 6.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssl-dos-kxG8mpUA ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssl-dos-kxG8mpUA"] +-------------------------------------------------------------------- 13) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SAML Assertion Hijack Vulnerability CVE-2023-20264 SIR: Medium CVSS Score v(3.1): 6.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-hijack-ttuQfyz ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-hijack-ttuQfyz"] +-------------------------------------------------------------------- 14) Cisco Firepower Threat Defense Software SMB Protocol Snort 3 Detection Engine Bypass and Denial of Service Vulnerability CVE-2023-20270 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-smbsnort3-dos-pfOjOYUV ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-smbsnort3-dos-pfOjOYUV"] +-------------------------------------------------------------------- 15) Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability CVE-2023-20246 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh"] +-------------------------------------------------------------------- 16) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities CVE-2023-20245, CVE-2023-20256 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ac-acl-bypass-bwd7q6Gb ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ac-acl-bypass-bwd7q6Gb"] +-------------------------------------------------------------------- 17) Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability CVE-2023-20071 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM"] +-------------------------------------------------------------------- 18) Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities CVE-2023-20005, CVE-2023-20041, CVE-2023-20074, CVE-2023-20206 SIR: Medium CVSS Score v(3.1): 6.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-sK2gkfvJ ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-sK2gkfvJ"] +-------------------------------------------------------------------- 19) Cisco Meeting Server Web Bridge Denial of Service Vulnerability CVE-2023-20255 SIR: Medium CVSS Score v(3.1): 5.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cms-segfault-G6ES4Ve8 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cms-segfault-G6ES4Ve8"] +-------------------------------------------------------------------- 20) Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Multiple Certificate Authentication Bypass Vulnerability CVE-2023-20247 SIR: Medium CVSS Score v(3.1): 5.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-multi-cert-dzA3h5PT ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-multi-cert-dzA3h5PT"] +-------------------------------------------------------------------- 21) Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability CVE-2023-20267 SIR: Medium CVSS Score v(3.1): 4.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftdsnort3sip-bypass-LMz2ThKn ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftdsnort3sip-bypass-LMz2ThKn"] +-------------------------------------------------------------------- 22) Cisco Firepower Threat Defense Software SSL/TLS URL Category and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability CVE-2023-20177 SIR: Medium CVSS Score v(3.1): 4.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sa-ftd-snort3-urldos-OccFQTeX ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sa-ftd-snort3-urldos-OccFQTeX"] +-------------------------------------------------------------------- 23) Cisco Firepower Threat Defense Software Snort 3 Detection Engine Denial of Service Vulnerability CVE-2023-20070 SIR: Medium CVSS Score v(3.1): 4.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-uAnUntcV ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-uAnUntcV"] +-------------------------------------------------------------------- 24) Cisco Firepower Threat Defense Software SSL and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability CVE-2023-20031 SIR: Medium CVSS Score v(3.1): 4.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-8U4HHxH8 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-8U4HHxH8"] +-------------------------------------------------------------------- 25) Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability CVE-2022-20713 SIR: Medium CVSS Score v(3.1): 4.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-webvpn-LOeKsNmO ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-webvpn-LOeKsNmO"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================