الموقع الرسمي للمركز الوطني الإرشادي للأمن السيبراني
تحديثات Cisco
2316
تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
4 يونيو, 2020
● عالي
2020-1318
الكل
الوصف:
أصدرت Cisco عدّة تحديثات لمعالجة عددًا من الثغرات في المنتجات التالية:
- Cisco Application Services Engine Software
- الإصدارات السابقة لـ 1.1.2.20.
- Cisco ASR 920 Series Aggregation Services Router model ASR920-12SZ-IM
- إذا كانت مكوّنة لكل من SNMP (either Version 2c or 3) و Cisco Discovery Protocol.
- Cisco Catalyst 2960-L Series Switches and Cisco Catalyst CDB-8P Switches
- المشغلة للإصدارات المتأثرة من Cisco IOS Software with 802.1X port-based authentication
- Cisco IOx Application Framework
- الإصدرات السابقة 1.9.0:
- 800 Series Industrial Integrated Services Routers (Industrial ISRs)
- 800 Series Integrated Services Routers (ISRs)
- 1000 Series Connected Grid Routers (CGR1000) Compute Module
- IC3000 Industrial Compute Gateway
- Industrial Ethernet (IE) 4000 Series Switches
- IOS XE-based devices:
- 1000 Series ISRs
- 4000 Series ISRs
- ASR 1000 Series Aggregation Services Routers
- Catalyst 9x00 Series Switches
- Catalyst IE3400 Rugged Series Switches
- Embedded Services 3300 Series Switches
- IR510 WPAN Industrial Routers
- Cisco DNA Center software
- الإصدارات السابقة لـ 1.3.3.3.
- Cisco Catalyst 9800 Series Wireless Controllers
- إذا كانت مشغّلة لـ Cisco IOS XE Software and processed device analytics الداعمة لـ Apple devices
- Cisco IOS XE Software and processed device analytics
- الداعمة لـ Apple devices.
- Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers
- الإصدارات المشغّلة لـ Cisco IOS XE Software and were configured for IPsec VPN
- Cisco ISE software releases:
- الإصدارات السابقة لـ 2.2.0.470-Patch13
- الإصدارات السابقة لـ 2.3.0.298-Patch6
- الإصدارات السابقة لـ 2.4.0.357-Patch2
- Cisco Prime Infrastructure software
- الإصدارات السابقة لـ 3.7.1 حدّث 01 إصدارات 3.8 حدّث 02.
- Cisco products:
- Cisco IOS Software
- Cisco IOS XR Software
- Cisco NX-OS Software
- الإصدارات المشغّلة Cisco IOS XE Software
- Cisco NX-OS Software الداعمة لـ SXP
- النسخة الرابعة (SXPv4):
- Nexus 7000 Series Switches
- الإصدار 8.0(1) فقط
- Nexus 1000 Virtual Edge for VMware vSphere
- Nexus 1000V Switch for VMware vSphere
- Cisco devices
- الإصدارات المشغّلة Cisco IOS or IOS XE Softwar.
- Cisco Unified CCX software
- الإصدارات السابقة لـ 12.5(1).
- Cisco IOS XE Software
- جميع النسخ
- Cisco IOS or IOS XE
- البرامج المكوّنة IKEv2
- Cisco products
- إذا كانت مشغّلة لـ Cisco IOS Software:
- Cisco 809 and 829 Industrial ISRs
- CGR1000
- Cisco IOS Software:
- Cisco 809 and 829 Industrial ISRs
- CGR1000
- Cisco IOS, IOS XE, or IOS XR Software
- onePK الممكّنة لخاصية
- Cisco Catalyst 9800 Series Wireless Controllers
- المشغّلة للنسخ المتأثرة من برنامج Cisco IOS XE Software المكوّنة LSCs
- Cisco Catalyst 9800 Series Wireless Controllers
- المشغلة للإصدارات المتأثرة لـCisco IOS XE Software والتي تحتوي على خاصية AVC مفعّلة
- المشغلة للإصدارات المتأثرة لـCisco IOS XE Software والتي تحتوي على خاصية AVC مفعّلة
التهديدات:
يمكن للمهاجم عن بعد استغلال الثغرات وتنفيذ ما يلي:
- تنفيذ برمجيات خبيثة عن بعد
- تجاوز المصادقات.
- تنفيذ برمجيات خبيثة كمستخدم (root).
- الوصول للمعلومات الحساسة.
- هجمة حجب الخدمة (DoS)
- إرسال واستقبال بث الشبكة دون تصريح.
- إعادة الكتابة على الملفات
- استخدام الاعتمادات للكشف وإدارة الشبكات في الأجهزة
- هجمة الرجل في المنتصف عن بعد (DoS)
- هجمة البرمجة عبر المواقع ( cross-site scripting (XSS) )
- حقن الـ SQL
- رفع وترقية الصلاحيات عن بعد
- حقن الأوامر (Command Injection)
الإجراءات الوقائية:
يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت Cisco توضيحًا لهذه التحديثات:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-APIC-EPU-F8y5kUOP
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-APIC-KSV-3wzbHYT4
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr920-ABjcLmef
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c2960L-DpWA9Re4
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-caf-file-mVnPqKW9
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-caf-file-mVnPqKW9
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-audit-log-59RBdwb6
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-dos-AnvKvMxR
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-vpn-dos-edOmW28Z
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ioxxss-wc6CqUws
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-dos-qNzq39K7
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-sql-inj-KGLLsFw8
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-priv-esc1-OKMKFRhV
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-priv-esc2-A6jVRu7C
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-priv-esc3-GMgnGCHx
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sxp-68TEVzR
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tcl-ace-C9KuVKmm
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tcl-dos-MAZQUnMF
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-api-auth-WSx4v7sB
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-filerd-HngnDYGk
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-unauthprxy-KXXsbWh
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-caf-3dXM8exv
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cipdos-hkfTZXEx
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ikev2-9p23Jj2a
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-gos-vuln-s9qS8kYL
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-vds-cmd-inj-VfJtqGhE
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-vds-cred-uPMp9zbY
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-ir800-img-verif-wHhLYHjK
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-nxos-onepk-rce-6Hhyt4dC
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-digsig-bypass-FYQ3bmVq
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ewlc-dos-TkuPVmZN
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-fnfv9-dos-HND6Fc9u
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-rce-uk8BXcUD
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ngwc-cmdinj-KEwWVWR
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sip-Cv28sQw2
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-dos-USxSyTk5
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssh-dos-Un22sd2A
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-web-cmdinj2-fOnjk2LD
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-web-cmdinj3-44st5CcA
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-web-cmdinj4-S2TmH7GA
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-PZgQxjfG
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-zM283Zdw
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-rce-xYRSeMNH
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-iot-udp-vds-inj-f2D5Jzrt
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ioxPE-KgGvCAf9
قيم المحتوى
شارك الصفحة
