======================================================================

                              CERT-Renater

                   Note d'Information No. 2024/VULN248
_____________________________________________________________________

DATE                : 16/05/2024

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco Crosswork Network Services
                        Orchestrator, Cisco Secure Client for Windows,
                        Cisco Secure Email Gateway, Cisco ConfD,
                        Cisco AppDynamics Network Visibility Service,
                        Cisco Secure Email and Web Manager,
                        Cisco Secure Web Appliance.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2024-May-15.

The following PSIRT security advisories (3 High, 5 Medium) were
published at 16:00 UTC today.

Table of Contents:

1) Cisco Crosswork Network Services Orchestrator Privilege Escalation
Vulnerability - SIR: High

2) Cisco Crosswork Network Services Orchestrator Vulnerabilities -
SIR: High

3) ConfD CLI Privilege Escalation and Arbitrary File Read and Write
Vulnerabilities - SIR: High

4) Cisco Secure Client for Windows with Network Access Manager Module
Privilege Escalation Vulnerability - SIR: Medium

5) Cisco Secure Email Gateway HTTP Response Splitting Vulnerability -
SIR: Medium

6) Cisco AppDynamics Network Visibility Service Denial of Service
Vulnerability - SIR: Medium

7) Cisco Secure Email and Web Manager, Secure Email Gateway, and
Secure Web Appliance Cross-Site Scripting Vulnerabilities - SIR:
Medium

8) Cisco Crosswork Network Services Orchestrator Open Redirect
Vulnerability - SIR: Medium

+--------------------------------------------------------------------

1) Cisco Crosswork Network Services Orchestrator Privilege
Escalation Vulnerability

CVE-2024-20366

SIR: High

CVSS Score v(3.1): 7.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-hcc-priv-esc-OWBWCs5D 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-hcc-priv-esc-OWBWCs5D"]

+--------------------------------------------------------------------

2) Cisco Crosswork Network Services Orchestrator Vulnerabilities

CVE-2024-20326, CVE-2024-20389

SIR: High

CVSS Score v(3.1): 7.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-rwpesc-qrQGnh3f 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-rwpesc-qrQGnh3f"]

+--------------------------------------------------------------------

3) ConfD CLI Privilege Escalation and Arbitrary File Read and
Write Vulnerabilities

CVE-2024-20326, CVE-2024-20389

SIR: High

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cnfd-rwpesc-ZAOufyx8 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cnfd-rwpesc-ZAOufyx8"]

+--------------------------------------------------------------------

4) Cisco Secure Client for Windows with Network Access Manager
Module Privilege Escalation Vulnerability

CVE-2024-20391

SIR: Medium

CVSS Score v(3.1): 6.8

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-nam-priv-esc-szu2vYpZ 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-nam-priv-esc-szu2vYpZ"]

+--------------------------------------------------------------------

5) Cisco Secure Email Gateway HTTP Response Splitting
Vulnerability

CVE-2024-20392

SIR: Medium

CVSS Score v(3.1): 6.1

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-http-split-GLrnnOwS 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-http-split-GLrnnOwS"]

+--------------------------------------------------------------------

6) Cisco AppDynamics Network Visibility Service Denial of Service
Vulnerability

CVE-2024-20394

SIR: Medium

CVSS Score v(3.1): 5.5

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-appd-netvisdos-9zNbsJtK 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-appd-netvisdos-9zNbsJtK"]

+--------------------------------------------------------------------

7) Cisco Secure Email and Web Manager, Secure Email Gateway,
and Secure Web Appliance Cross-Site Scripting Vulnerabilities

CVE-2024-20256, CVE-2024-20257, CVE-2024-20258, CVE-2024-20383

SIR: Medium

CVSS Score v(3.1): 6.1

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-xss-bgG5WHOD"]

+--------------------------------------------------------------------

8) Cisco Crosswork Network Services Orchestrator Open Redirect
Vulnerability

CVE-2024-20369

SIR: Medium

CVSS Score v(3.1): 4.7

URL: 
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-ordir-MNM8YqzO 
["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-ordir-MNM8YqzO"]


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================