cisco-sa-vmanage-msg-serv-AqTup7vs: Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services Vulnerability
First published: Wed Sep 07 2022(Updated: )
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. This vulnerability exists because the messaging server container ports on an affected system lack sufficient protection mechanisms. An attacker could exploit this vulnerability by connecting to the messaging service ports of the affected system. To exploit this vulnerability, the attacker must be able to send network traffic to interfaces within the VPN0 logical network. This network may be restricted to protect logical or physical adjacent networks, depending on device deployment configuration. A successful exploit could allow the attacker to view and inject messages into the messaging service, which can cause configuration changes or cause the system to reload. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-msg-serv-AqTup7vs
Credit: Orange Business.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco SD-WAN vManage | >=20.7=20.8<=20.9<20.9.1>=.3<20=20.3<=20.6<20.6.4 | 20.9.1 20.6.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-vmanage-msg-serv-AqTup7vs?
The severity of cisco-sa-vmanage-msg-serv-AqTup7vs is considered high due to the potential for unauthorized access to sensitive messaging service ports.
How do I fix cisco-sa-vmanage-msg-serv-AqTup7vs?
To fix cisco-sa-vmanage-msg-serv-AqTup7vs, update your Cisco SD-WAN vManage Software to a version that addresses this vulnerability.
Who is affected by cisco-sa-vmanage-msg-serv-AqTup7vs?
Cisco SD-WAN vManage Software versions 20.3, 20.6.4, 20.7, 20.8, and up to 20.9.1 are affected by cisco-sa-vmanage-msg-serv-AqTup7vs.
What could an attacker achieve by exploiting cisco-sa-vmanage-msg-serv-AqTup7vs?
An attacker exploiting cisco-sa-vmanage-msg-serv-AqTup7vs could potentially gain unauthorized access to the messaging service ports, compromising system security.
Is there a workaround for cisco-sa-vmanage-msg-serv-AqTup7vs?
Currently, the recommended approach to mitigate cisco-sa-vmanage-msg-serv-AqTup7vs is to apply the available software update as there are no alternative workarounds.
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/remedy
- agent/title
- agent/author
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/cisco-advisory
- source/Cisco
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco sd-wan vmanage
- version/cisco sd-wan vmanage/20.7
- version/cisco sd-wan vmanage/20.8
- version/cisco sd-wan vmanage/20.9
- version/cisco sd-wan vmanage/.3
- version/cisco sd-wan vmanage/20.3
- version/cisco sd-wan vmanage/20.6