Skip to main content

Cisco Releases Security Updates for Multiple Products

Scheduled updates for Cisco products

Threat ID:
CC-4044
Threat Severity:
Information only
Published:
1 March 2022 10:59 AM
Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Scheduled updates for Cisco products

Affected platforms

The following platforms are known to be affected:

Cisco Nexus 9000 Series Switches

Cisco IOS XR

Cisco SD-WAN

The following platforms are also known to be affected:

Many Cisco products are affected by at least one of these vulnerabilities.

Cisco Nexus 9000 Series Switches Bidirectional Forwarding Detection Denial of Service Vulnerability

  • Cisco Nexus 9000 Series Switches
  • Cisco Nexus 9200 and 9300 Platform Switches
  • Cisco Nexus 9500 Series Switches

Cisco NX-OS Software NX-API Command Injection Vulnerability

  • Cisco Nexus 3000 Series Switches
  • Cisco Nexus 5500 Platform Switches
  • Cisco Nexus 5600 Platform Switches
  • Cisco Nexus 6000 Series Switches
  • Cisco Nexus 9000 Series Switches in standalone NX-OS mode

Cisco NX-OS Software Cisco Fabric Services Over IP Denial of Service Vulnerability

  • Cisco Nexus 3000 Series Switches
  • Cisco Nexus 9000 Series Switches in standalone NX-OS mode
  • UCS 6400 Series Fabric Interconnects

Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability

  • Cisco Nexus 9000 Series Fabric Switches

Cisco IOS XR Software Arbitrary File Read and Write Vulnerability

  • Cisco IOS XR Software

Cisco IOS XE SD-WAN Software Command Injection Vulnerability

  • 1000 Series Integrated Services Routers (ISRs)
  • 4000 Series ISRs
  • ASR 1000 Series Aggregation Services Routers
  • Catalyst 8000 Series Edge Platforms
  • Cloud Services Router (CSR) 1000V Series

For more information about software versions and specific configurations, please review the advisories listed below for a full list of affected products.

Threat details

Introduction

Cisco has released security updates to address vulnerabilities in multiple products. These updates address vulnerabilities relating to denial-of-service, command injection, and arbitrary read and write privileges.  A remote, unauthenticated attacker could exploit some of these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review the following Cisco Security Advisories and apply the necessary updates or workarounds.

Remediation steps

Type Step
Patch

Cisco Nexus 9000 Series Switches Bidirectional Forwarding Detection Denial of Service Vulnerability - cisco-sa-nxos-bfd-dos-wGQXrzxn


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-bfd-dos-wGQXrzxn
Patch

Cisco NX-OS Software NX-API Command Injection Vulnerability - cisco-sa-nxos-nxapi-cmdinject-ULukNMZ2


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-nxapi-cmdinject-ULukNMZ2
Patch

Cisco NX-OS Software Cisco Fabric Services Over IP Denial of Service Vulnerability - cisco-sa-cfsoip-dos-tpykyDr


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cfsoip-dos-tpykyDr
Patch

Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability - cisco-sa-n9kaci-tcp-dos-YXukt6gM


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n9kaci-tcp-dos-YXukt6gM
Patch

Cisco IOS XR Software Arbitrary File Read and Write Vulnerability- cisco-sa-iosxr-scp-inject-QwZOCv2


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-scp-inject-QwZOCv2
Patch

Cisco IOS XE SD-WAN Software Command Injection Vulnerability - cisco-sa-sd-wan-rhpbE34A


https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A

CVE Vulnerabilities

Status Published

CVE-2022-20623

A vulnerability in the rate limiter for Bidirectional Forwarding Detection (BFD) traffic of Cisco NX-OS Software for Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause BFD traffic to be dropped on an affected device. This vulnerability is due to a logic error in the BFD rate limiter functionality. An attacker could exploit this vulnerability by sending a crafted stream of traffic through the device. A successful exploit could allow the attacker to cause BFD traffic to be dropped, resulting in BFD session flaps. BFD session flaps can cause route instability and dropped traffic, resulting in a denial of service (DoS) condition. This vulnerability applies to both IPv4 and IPv6 traffic.
Status Published

CVE-2022-20650

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker could exploit this vulnerability by sending a crafted HTTP POST request to the NX-API of an affected device. A successful exploit could allow the attacker to execute arbitrary commands with root privileges on the underlying operating system. Note: The NX-API feature is disabled by default.
Status Published

CVE-2022-20624

A vulnerability in the Cisco Fabric Services over IP (CFSoIP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of incoming CFSoIP packets. An attacker could exploit this vulnerability by sending crafted CFSoIP packets to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.
Status Published

CVE-2021-1586

A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. This vulnerability exists because TCP traffic sent to a specific port on an affected device is not properly sanitized. An attacker could exploit this vulnerability by sending crafted TCP data to a specific port that is listening on a public-facing IP address for the Multi-Pod or Multi-Site configuration. A successful exploit could allow the attacker to cause the device to restart unexpectedly, resulting in a DoS condition.
Status Published

CVE-2021-34718

A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite and read arbitrary files on the local device. This vulnerability is due to insufficient input validation of arguments that are supplied by the user for a specific file transfer method. An attacker with lower-level privileges could exploit this vulnerability by specifying Secure Copy Protocol (SCP) parameters when authenticating to a device. A successful exploit could allow the attacker to elevate their privileges and retrieve and upload files on a device that they should not have access to.
Status Published

CVE-2021-1529

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input to the system CLI. A successful exploit could allow the attacker to execute commands on the underlying operating system with root privileges.

Last edited: 1 March 2022 10:59 am