Cisco this week introduced patches for a number of vulnerabilities impacting its merchandise, together with a medium-severity flaw in IOS and IOS XE software program that seems to have been exploited in assaults.
Tracked as CVE-2023-20109, the bug impacts the Group Encrypted Transport VPN (GET VPN) function of IOS and IOS XE and may result in distant code execution. Profitable exploitation of the flaw requires that the attacker has legitimate credentials and administrative management over a bunch member or a key server.
“This vulnerability is because of inadequate validation of attributes within the Group Area of Interpretation (GDOI) and G-IKEv2 protocols of the GET VPN function. An attacker might exploit this vulnerability by both compromising an put in key server or modifying the configuration of a bunch member to level to a key server that’s managed by the attacker,” Cisco notes in its advisory.
All Cisco merchandise working a weak IOS or IOS XE launch with the GDOI or G-IKEv2 protocol enabled are impacted by this difficulty. There aren’t any workarounds accessible for this bug and Cisco recommends that every one prospects replace to a patched IOS or IOS XE launch.
The tech big additionally notes that it has noticed exploitation makes an attempt focusing on this vulnerability.
“Cisco found tried exploitation of the GET VPN function and performed a technical code evaluate of the function. This vulnerability was found throughout our inside investigation,” the corporate notes.
This week, Cisco additionally launched patches for a number of flaws within the Catalyst SD-WAN Supervisor product, together with a critical-severity bug (CVE-2023-20252, CVSS rating of 9.8) within the SAML APIs that would permit an unauthenticated attacker to achieve unauthorized entry to the applying as an arbitrary consumer.
The vulnerability was resolved together with 4 high-severity bugs that could possibly be exploited to bypass authorization and roll again controller configurations, entry a system’s Elasticsearch database, entry one other tenant managed on the identical occasion, or trigger a denial-of-service (DoS) situation.
A number of different high-severity points resulting in code execution, DoS, knowledge entry and tampering, and file exfiltration have been addressed with software program updates for IOS, IOS XE, and Cisco DNA Middle. The tech big additionally patched a number of different medium-severity points impacting its merchandise.
Cisco says that, apart from CVE-2023-20109, it isn’t conscious of any of those vulnerabilities being exploited in assaults. Further data will be discovered on Cisco’s security advisories web page.
