March 22, 2024
Severity High Analysis Summary Ducktail Malware is a malicious program designed by hackers to infiltrate computers and networks globally. Ducktail malware is typically delivered through a […]
Rewterz Threat Advisory – CVE-2022-208640 – Cisco IOS XE ROM Monitor Vulnerabilities
May 18, 2023
Rewterz Threat Advisory – Multiple Cisco DNA Center Software Vulnerabilities
May 18, 2023
Rewterz Threat Advisory – CVE-2022-208640 – Cisco IOS XE ROM Monitor Vulnerabilities
May 18, 2023
Rewterz Threat Advisory – Multiple Cisco DNA Center Software Vulnerabilities
May 18, 2023
Severity
Medium
Analysis Summary
CVE-2023-20189 CVSS:9.8
Cisco Small Business Series Switches are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code with root privileges on the system.
CVE-2023-20162 CVSS:7.5
Cisco Small Business Series Switches could allow a remote attacker to obtain sensitive information, caused by improper validation of requests by the web interface. By sending a specially crafted request, an attacker could exploit this vulnerability to read unauthorized information, and use this information to launch further attacks against the affected system.
CVE-2023-20161 CVSS:9.8
Cisco Small Business Series Switches are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code on the system.
CVE-2023-20160 CVSS:9.8
Cisco Small Business Series Switches are vulnerable to a BSS buffer overflow, caused by improper bounds checking. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code with root privileges on the system.
CVE-2023-20159 CVSS:9.8
Cisco Small Business Series Switches are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code with root privileges on the system.
CVE-2023-20158 CVSS:8.6
Cisco Small Business Series Switches are vulnerable to a denial of service, caused by improper validation of requests by the web interface. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-20157 CVSS:8.6
Cisco Small Business Series Switches are vulnerable to a denial of service, caused by a heap-based buffer overflow in the web interface. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-20156 CVSS:8.6
Cisco Small Business Series Switches are vulnerable to a denial of service, caused by a heap-based buffer overflow in the web interface. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-20024 CVSS:8.6
Cisco Small Business Series Switches are vulnerable to a denial of service, caused by a heap-based buffer overflow in the web interface. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
- Information Disclosure
- Buffer Overflow
Indicators Of Compromise
CVE
- CVE-2023-25927
Affected Vendors
Cisco
Affected Products
- Cisco Small Business 300 Series Managed Switches
- Cisco Small Business 500 Series Stackable Managed Switches
- Cisco 350 Series Managed Switches
- Cisco 350X Series Stackable Managed Switches
- Cisco 550X Series Stackable Managed Switches
- Cisco Small Business 200 Series Smart Switches
- Cisco 250 Series Smart Switches
- Cisco Business 250 Series Smart Switches
- Cisco Business 350 Series Managed Switches
Remediation
Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.