Cisco Releases Security Advisories for Multiple Products - 20230411001¶
Overview¶
Cisco has released security advisories for vulnerabilities affecting multiple Cisco products.
These vulnerabilities could allow authenticated remote attackers to execute arbitrary commands as root or administrative accounts.
What is the vulnerability?¶
CVE-2023-20102 - Cisco Secure Network Analytics Remote Code Execution Vulnerability
- CVSS Score: 8.8 (High)
CVE-2023-20117 & CVE-2023-20128 - Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities
- CVSS Score: 7.2 (High)
CVE-2023-20121 & CVE-2023-20122 - Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities
- CVSS Score: 7.8 (High)
What is vulnerable?¶
The vulnerability affects the following products:
| No | Vulnerability | Affected Products | Additional Info |
|---|---|---|---|
| 1 | Cisco Secure Network Analytics Remote Code Execution Vulnerability | - Secure Network Analytics Manager - Secure Network Analytics Virtual Manager - Stealthwatch Management Console 2200 |
Link |
| 2 | Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities | These vulnerabilities affect Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers. | Link |
| 3 | Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities | - CVE-2023-20121 affects Cisco EPNM, Cisco ISE, and Cisco Prime Infrastructure - CVE-2023-20122 affects Cisco ISE. |
Link |
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected products.
- Cisco Secure Network Analytics Remote Code Execution Vulnerability | Patch Available
- Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities | No patch will be made available due to product end-of-life.
- Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities | Patch Available