====================================================================== CERT-Renater Note d'Information No. 2024/VULN256 _____________________________________________________________________ DATE : 24/05/2024 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S):Systems running Cisco Firepower Management Center Software, Cisco products running Snort IPS rule engine, Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software. ===================================================================== https://sec.cloudapps.cisco.com/security/center/publicationListing.x _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2024-May-22. The following PSIRT security advisories (1 High, 5 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Firepower Management Center Software SQL Injection Vulnerability - SIR: High 2) Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability - SIR: Medium 3) Cisco Firepower Management Center Software Object Group Access Control List Bypass Vulnerability - SIR: Medium 4) Cisco Adaptive Security Appliance and Firepower Threat Defense Software Inactive-to-Active ACL Bypass Vulnerability - SIR: Medium 5) Cisco Firepower Threat Defense Software Encrypted Archive File Policy Bypass Vulnerability - SIR: Medium 6) Cisco Adaptive Security Appliance and Firepower Threat Defense Software Authorization Bypass Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Firepower Management Center Software SQL Injection Vulnerability CVE-2023-20239 SIR: High CVSS Score v(3.1): 8.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sqli-WFFDnNOs ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sqli-WFFDnNOs"] +-------------------------------------------------------------------- 2) Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability CVE-2024-20363 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-ips-bypass-uE69KBMd ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-ips-bypass-uE69KBMd"] +-------------------------------------------------------------------- 3) Cisco Firepower Management Center Software Object Group Access Control List Bypass Vulnerability CVE-2024-20361 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-object-bypass-fTH8tDjq ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-object-bypass-fTH8tDjq"] +-------------------------------------------------------------------- 4) Cisco Adaptive Security Appliance and Firepower Threat Defense Software Inactive-to-Active ACL Bypass Vulnerability CVE-2024-20293 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ogsnsg-aclbyp-3XB8q6jX ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ogsnsg-aclbyp-3XB8q6jX"] +-------------------------------------------------------------------- 5) Cisco Firepower Threat Defense Software Encrypted Archive File Policy Bypass Vulnerability CVE-2024-20261 SIR: Medium CVSS Score v(3.1): 5.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-archive-bypass-z4wQjwcN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-archive-bypass-z4wQjwcN"] +-------------------------------------------------------------------- 6) Cisco Adaptive Security Appliance and Firepower Threat Defense Software Authorization Bypass Vulnerability CVE-2024-20355 SIR: Medium CVSS Score v(3.1): 5.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-bypass-KkNvXyKW ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-bypass-KkNvXyKW"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================