描述:
Cisco 发布了安全公告,以应对 Cisco 装置及软件的一个远端执行程式码漏洞 (CVE-2024-6387)。有关漏洞及攻击向量的资料,请参阅供应商网站的相应安全公告。
有报告指远端执行程式码漏洞 (CVE-2024-6387) 的概念验证 (PoC) 程式码已被公开。Cisco 发布了安全性更新以应对相关问题。系统管理员应立即为受影响的系统安装修补程式,以减低受到网络攻击的风险。
受影响的系统:
- Cisco 6300 Series Embedded Services Access Points
- Cisco 8000 Series Routers
- Cisco Adaptive Security Appliance (ASA) Software
- Cisco Aironet 1540 Series
- Cisco Aironet 1560 Series
- Cisco Aironet 802.11ac Wave2 Access Points
- Cisco ASR 5000 Series Routers
- Cisco Board Series
- Cisco Catalyst 9100 Series Access Points
- Cisco Catalyst ESS9300 Embedded Series Switches
- Cisco Catalyst IE3x00 Rugged Series Switches
- Cisco Catalyst IE9300 Rugged Series Switches
- Cisco Catalyst IW6300 Heavy Duty Series Access Points
- Cisco Catalyst IW9165 Heavy Duty Series
- Cisco Catalyst IW9165 Rugged Series
- Cisco Catalyst IW9167 Heavy Duty Series
- Cisco Common Services Platform Collector (CSPC)
- Cisco Connected Mobile Experiences
- Cisco Crosswork Data Gateway
- Cisco Cyber Vision
- Cisco Desk Phone 9841
- Cisco Desk Phone 9851
- Cisco Desk Series
- Cisco DNA Spaces Connector
- Cisco Embedded Services 3300 Series Switches
- Cisco Emergency Responder
- Cisco Evolved Programmable Network Manager (EPNM)
- Cisco Expressway Series
- Cisco Firepower 4100/9300 FXOS Firepower Chassis Manager
- Cisco Firepower Management Center (FMC) Software
- Cisco Firepower Threat Defense (FTD) Software
- Cisco GGSN Gateway GPRS Support Node
- Cisco Identity Services Engine (ISE)
- Cisco IEC6400 Edge Compute Appliance
- Cisco Intersight Virtual Appliance
- Cisco IOS XE Software with NETCONF enabled
- Cisco IOS XRd Control Plane
- Cisco IOS XRd vRouter
- Cisco IP Services Gateway (IPSG)
- Cisco MDS 9000 Series Multilayer Switches
- Cisco Meeting Server
- Cisco MME Mobility Management Entity
- Cisco Network Convergence System 1010
- Cisco Network Convergence System 1014
- Cisco Network Convergence System 540 Series Routers running NCS540L images
- Cisco Network Convergence System 5700 Fixed Chassis NCS-57B1, NCS-57C1, and NCS-57D2
- Cisco Nexus 3000 Series Switches
- Cisco Nexus 9000 Series Fabric Switches in ACI Mode
- Cisco Nexus 9000 Series Switches in standalone NX-OS mode
- Cisco PDSN/HA Packet Data Serving Node and Home Agent
- Cisco PGW Packet Data Network Gateway
- Cisco Prime Collaboration Deployment
- Cisco Prime Infrastructure
- Cisco Room Series
- Cisco Secure Access Resource Connector
- Cisco Secure Email and Web Manager
- Cisco Secure Email Gateway
- Cisco Secure Network Analytics
- Cisco Smart PHY
- Cisco Smart Software Manager On-Prem
- Cisco System Architecture Evolution (SAE) Gateway
- Cisco TelePresence Video Communication Server (VCS)
- Cisco UCS C-Series Rack Servers and S-Series Storage Servers - Integrated Management Controller (CIMC)
- Cisco UCS Director
- Cisco Ultra Cloud Core - Session Management Function
- Cisco Ultra Cloud Core - Subscriber Microservices Infrastructure
- Cisco Ultra Cloud Core 5G Policy Control Function
- Cisco Ultra Packet Core
- Cisco Unified Communications Manager
- Cisco Unified Communications Manager IM and Presence Service
- Cisco Unified Communications Manager Session Management Edition
- Cisco Unified Contact Center Express (Unified CCX)
- Cisco Unity Connection
- Cisco Video Phone 8875
- Cisco Virtualized Infrastructure Manager
- Cisco Webex Board
- Cisco Webex DX80
有关受影响系统的详细资料,请参阅供应商网站的相应安全公告中有关 “Affected Products” 的部分。
影响:
成功利用漏洞可以在受影响的系统导致远端执行程式码。
建议:
适用于受影响系统的修补程式已可获取。受影响系统的系统管理员应遵从供应商的建议,立即採取行动以降低风险。有关修补程式的详细资料,请参阅供应商网站的相应安全公告中有关 “Fixed Software”的部分。
系统管理员可联络其供应商,以取得修补程式及有关支援。
进一步资讯:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssh-rce-2024
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6387