High Threat Security Alert (A20-07-08): Multiple Vulnerabilities in Cisco Products


 

Published on: 24 July 2020

  
  

Description:

Cisco released security advisories to address vulnerabilities in the Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software as well as in the Treck IP stack implementation.  An attacker could exploit the vulnerability in ASA and FTD Software by sending specially crafted HTTP request containing directory traversal character sequences to a vulnerable device configured with either WebVPN or AnyConnect features.  A remote, unauthenticated attacker can also use specially crafted network packets to exploit the vulnerabilities in Cisco products with the Trek IP stack implementation.

The proof-of-concept and fully workable exploit code against the vulnerability (CVE-2020-3452) has been publicly available on the Internet. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • Cisco products running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Software
  • Cisco ASR 5000
  • Cisco ASR 5500
  • Cisco Virtual Packet Core

For detailed information of the affected products, please refer to the section "Affected Products" of corresponding security advisory at vendor's website.

 

Impact:

Depending on the vulnerability exploited, a successful exploitation could lead to remote code execution, information disclosure or denial of service on an affected system.

 

Recommendation:

Software updates for affected systems are now available.  System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.  For detailed information of the available patches, please refer to the section "Fixed Software" of corresponding security advisory at vendor's website.

System administrators should contact their product support vendors for the fixes and assistance.

 

More Information:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ro-path-KJuQhB86
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC
https://www.hkcert.org/my_url/en/alert/20072401
https://www.hkcert.org/my_url/en/alert/20072101
https://us-cert.cisa.gov/ncas/current-activity/2020/07/23/cisco-releases-security-updates-asa-and-ftd-software
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3452
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11896 (to CVE-2020-11914)

 



Tag: Cisco , ASR , ASA , FTD , Virtual Packet Core
Tags