Lucene search

CiscoCISCO-SA-20161207-ASYNCOS

HistoryDec 07, 2016 - 4:00 p.m.

Cisco Security Appliances AsyncOS Software Update Server Certificate Validation Vulnerability

2016-12-0716:00:00

tools.cisco.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

45.9%

JSON

A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update server.

The vulnerability is due to a lack of certificate validation during the HTTPS connection toward the repository from which the update manifests are retrieved. An attacker could exploit this vulnerability by performing a man-in-the-middle attack (such as DNS hijacking) and impersonating the update server.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos”]

Affected configurations

Vulners

Node

ciscoweb_security_appliance_\(wsa\)Matchany

ciscoemail_security_applianceMatchany

ciscocontent_security_management_applianceMatchany

ciscoweb_security_appliance_\(wsa\)Matchany

ciscoemail_security_applianceMatchany

ciscocontent_security_management_applianceMatchany

VendorProductVersionCPE
ciscoweb_security_appliance_\(wsa\)anycpe:2.3:a:cisco:web_security_appliance_\(wsa\):any:*:*:*:*:*:*:*
ciscoemail_security_applianceanycpe:2.3:h:cisco:email_security_appliance:any:*:*:*:*:*:*:*
ciscocontent_security_management_applianceanycpe:2.3:h:cisco:content_security_management_appliance:any:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	web_security_appliance_\(wsa\)	any	cpe:2.3:a:cisco:web_security_appliance_\(wsa\):any:::::::*
cisco	email_security_appliance	any	cpe:2.3:h:cisco:email_security_appliance:any:::::::*
cisco	content_security_management_appliance	any	cpe:2.3:h:cisco:content_security_management_appliance:any:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

45.9%

JSON

Related for CISCO-SA-20161207-ASYNCOS