Cisco has launched safety updates to handle a important pre-authentication distant code execution (RCE) vulnerability affecting SD-WAN vManage Software program’s distant administration element.
The corporate fastened two different high-severity safety vulnerabilities within the consumer administration (CVE-2021-1137) and system file switch (CVE-2021-1480) capabilities of the identical product permitting attackers to escalate privileges.
Profitable exploitation of those two bugs might permit risk actors focusing on them to acquire root privileges on the underlying working system.
Code execution with root privileges
The important safety flaw tracked a CVE-2021-1479 acquired a severity rating of 9.8/10. It permits unauthenticated, distant attackers to set off a buffer overflow on weak gadgets in low complexity assaults that do not require consumer interplay.
“An attacker might exploit this vulnerability by sending a crafted connection request to the weak element that, when processed, might trigger a buffer overflow situation,” Cisco explained.
“A profitable exploit might permit the attacker to execute arbitrary code on the underlying working system with root privileges.”
The vulnerabilities have an effect on Cisco SD-WAN vManage releases 20.4 and earlier. Cisco has addressed them within the 20.4.1, 20.3.3, and 19.2.4 safety updates revealed right now and advises prospects emigrate to a hard and fast launch as quickly as potential.
|Affected Cisco SD-WAN vManage releases||First fastened launch|
|18.4 and earlier||Migrate to a hard and fast launch.|
|19.3||Migrate to a hard and fast launch.|
|20.1||Migrate to a hard and fast launch.|
Whereas CVE-2021-1479 was found discovered by Cisco safety researchers throughout inside safety testing, CVE-2021-1137 and CVE-2021-1480 have been reported by exterior researchers.
No in-the-wild exploitation
Cisco’s Product Safety Incident Response Group (PSIRT) stated that the corporate isn’t conscious of energetic exploitation of those vulnerabilities within the wild.
As we speak, Cisco additionally disclosed a important RCE vulnerability (CVE-2021-1459) within the web-based administration interface of Cisco Small Enterprise RV110W, RV130, RV130W, and RV215W routers. No safety updates might be launched since these gadgets have reached end-of-life.
The corporate fixed another pre-auth RCE vulnerability (CVE-2021-1300) affecting Cisco SD-WAN Software program merchandise in January 2021, enabling attackers to execute arbitrary code with root privileges after exploitation.
Two extra critical pre-auth bugs present in Cisco SD-WAN software program have been addressed final 12 months, in July.