CVE-2023-20262 - OpenCVE

A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and web UI access is not affected. This vulnerability is due to insufficient resource management when an affected system is in an error condition. An attacker could exploit this vulnerability by sending malicious traffic to the affected system. A successful exploit could allow the attacker to cause the SSH process to crash and restart, resulting in a DoS condition for the SSH service.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Sd-wan Vmanage Catalyst Sd-wan Manager

Configuration 1 [-]

OR	cpe:2.3:a:cisco:catalyst_sd-wan_manager::::::::
	cpe:2.3:a:cisco:sd-wan_vmanage::::::::
	cpe:2.3:a:cisco:sd-wan_vmanage::::::::
	cpe:2.3:a:cisco:sd-wan_vmanage:20.12:::::::*

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: cisco

Published: 2023-09-27T17:16:50.429Z

Updated: 2024-01-25T16:58:34.677Z

Reserved: 2022-10-27T18:47:50.373Z

Link: CVE-2023-20262

JSON object: View

NVD Information

Status : Modified

Published: 2023-09-27T18:15:11.757

Modified: 2024-01-25T17:15:41.980

Link: CVE-2023-20262

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-20262", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2022-10-27T18:47:50.373Z", "datePublished": "2023-09-27T17:16:50.429Z", "dateUpdated": "2024-01-25T16:58:34.677Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-01-25T16:58:34.677Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and web UI access is not affected.\r\n\r This vulnerability is due to insufficient resource management when an affected system is in an error condition. An attacker could exploit this vulnerability by sending malicious traffic to the affected system. A successful exploit could allow the attacker to cause the SSH process to crash and restart, resulting in a DoS condition for the SSH service."}], "affected": [{"vendor": "Cisco", "product": "Cisco SD-WAN Solution", "versions": [{"version": "17.2.4", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "18.3.3.1", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "18.4.0.1", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "18.4.6", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "19.2.3", "status": "affected"}, {"version": "19.2.929", "status": "affected"}, {"version": "19.2.31", "status": "affected"}, {"version": "19.2.4", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "20.1.1.1", "status": "affected"}, {"version": "20.1.11", "status": "affected"}, {"version": "20.1.12", "status": "affected"}, {"version": "20.1.2", "status": "affected"}, {"version": "20.1.3", "status": "affected"}, {"version": "20.1.3.1", "status": "affected"}, {"version": "20.3.1", "status": "affected"}, {"version": "20.3.2", "status": "affected"}, {"version": "20.3.2.1", "status": "affected"}, {"version": "20.3.3", "status": "affected"}, {"version": "20.3.3.1", "status": "affected"}, {"version": "20.3.4", "status": "affected"}, {"version": "20.3.4.2", "status": "affected"}, {"version": "20.3.4.1", "status": "affected"}, {"version": "20.3.5", "status": "affected"}, {"version": "20.3.6", "status": "affected"}, {"version": "20.3.4.3", "status": "affected"}, {"version": "20.3.5.1", "status": "affected"}, {"version": "20.4.1", "status": "affected"}, {"version": "20.4.1.1", "status": "affected"}, {"version": "20.4.1.2", "status": "affected"}, {"version": "20.4.2", "status": "affected"}, {"version": "20.4.2.2", "status": "affected"}, {"version": "20.4.2.1", "status": "affected"}, {"version": "20.4.2.3", "status": "affected"}, {"version": "20.5.1", "status": "affected"}, {"version": "20.5.1.2", "status": "affected"}, {"version": "20.5.1.1", "status": "affected"}, {"version": "20.6.1", "status": "affected"}, {"version": "20.6.1.1", "status": "affected"}, {"version": "20.6.2.2", "status": "affected"}, {"version": "20.6.2.1", "status": "affected"}, {"version": "20.6.2", "status": "affected"}, {"version": "20.6.3", "status": "affected"}, {"version": "20.6.3.1", "status": "affected"}, {"version": "20.6.4", "status": "affected"}, {"version": "20.6.4.1", "status": "affected"}, {"version": "20.6.5", "status": "affected"}, {"version": "20.6.5.2", "status": "affected"}, {"version": "20.6.3.2", "status": "affected"}, {"version": "20.6.3.3", "status": "affected"}, {"version": "20.6.1.2", "status": "affected"}, {"version": "20.6.3.4", "status": "affected"}, {"version": "20.6.4.2", "status": "affected"}, {"version": "20.6.5.4", "status": "affected"}, {"version": "20.6.5.5", "status": "affected"}, {"version": "20.7.1", "status": "affected"}, {"version": "20.7.1.1", "status": "affected"}, {"version": "20.7.2", "status": "affected"}, {"version": "20.8.1", "status": "affected"}, {"version": "20.9.1", "status": "affected"}, {"version": "20.9.2.3", "status": "affected"}, {"version": "20.10.1.2", "status": "affected"}]}, {"vendor": "Cisco", "product": "Cisco SD-WAN vManage", "versions": [{"version": "17.2.6", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "18.3.1.1", "status": "affected"}, {"version": "18.3.3.1", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "18.3.6.1", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "18.4.0.1", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "18.4.6", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "19.2.3", "status": "affected"}, {"version": "19.2.31", "status": "affected"}, {"version": "19.2.929", "status": "affected"}, {"version": "19.2.4", "status": "affected"}, {"version": "20.1.1.1", "status": "affected"}, {"version": "20.1.12", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "20.1.2", "status": "affected"}, {"version": "20.1.3", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "20.3.1", "status": "affected"}, {"version": "20.3.2", "status": "affected"}, {"version": "20.3.2.1", "status": "affected"}, {"version": "20.3.3", "status": "affected"}, {"version": "20.3.3.1", "status": "affected"}, {"version": "20.3.4", "status": "affected"}, {"version": "20.3.4.1", "status": "affected"}, {"version": "20.3.4.2", "status": "affected"}, {"version": "20.3.5", "status": "affected"}, {"version": "20.3.6", "status": "affected"}, {"version": "20.3.4.3", "status": "affected"}, {"version": "20.3.5.1", "status": "affected"}, {"version": "20.4.1", "status": "affected"}, {"version": "20.4.1.1", "status": "affected"}, {"version": "20.4.1.2", "status": "affected"}, {"version": "20.4.2", "status": "affected"}, {"version": "20.4.2.2", "status": "affected"}, {"version": "20.4.2.1", "status": "affected"}, {"version": "20.4.2.3", "status": "affected"}, {"version": "20.5.1", "status": "affected"}, {"version": "20.5.1.2", "status": "affected"}, {"version": "20.5.1.1", "status": "affected"}, {"version": "20.6.1", "status": "affected"}, {"version": "20.6.1.1", "status": "affected"}, {"version": "20.6.2.1", "status": "affected"}, {"version": "20.6.2.2", "status": "affected"}, {"version": "20.6.2", "status": "affected"}, {"version": "20.6.3", "status": "affected"}, {"version": "20.6.1.2", "status": "affected"}, {"version": "20.10.1", "status": "affected"}, {"version": "20.10.1.1", "status": "affected"}, {"version": "20.10.1.2", "status": "affected"}]}, {"vendor": "Cisco", "product": "Cisco SD-WAN vSmart", "versions": [{"version": "N/A", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Resource Management Errors", "type": "cwe", "cweId": "CWE-399"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z", "name": "cisco-sa-sdwan-vman-sc-LRLfu2z"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."}], "source": {"advisory": "cisco-sa-sdwan-vman-sc-LRLfu2z", "discovery": "INTERNAL", "defects": ["CSCwd46383"]}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "41D2CD47-67C0-47B3-9BB8-889A7245FBAD", "versionEndExcluding": "20.9.3", "versionStartIncluding": "20.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vmanage:*:*:*:*:*:*:*:*", "matchCriteriaId": "39FEB958-7035-4AB2-95D3-316D72D544EB", "versionEndExcluding": "20.3.7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vmanage:*:*:*:*:*:*:*:*", "matchCriteriaId": "03133A84-35B3-4FF9-86EA-3C13738E2AE2", "versionEndExcluding": "20.11.1", "versionStartIncluding": "20.10", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vmanage:20.12:*:*:*:*:*:*:*", "matchCriteriaId": "06E19EEE-FE9E-4E6C-AE79-CFB14FDF37F3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and web UI access is not affected.\r\n\r This vulnerability is due to insufficient resource management when an affected system is in an error condition. An attacker could exploit this vulnerability by sending malicious traffic to the affected system. A successful exploit could allow the attacker to cause the SSH process to crash and restart, resulting in a DoS condition for the SSH service."}, {"lang": "es", "value": "Una vulnerabilidad en el servicio SSH de Cisco Catalyst SD-WAN Manager podr\u00eda permitir que un atacante remoto no autenticado provoque una falla del proceso, lo que resultar\u00eda en una condici\u00f3n de DoS solo para el acceso SSH. Esta vulnerabilidad no impide que el sistema siga funcionando y el acceso a la interfaz de usuario web no se ve afectado. Esta vulnerabilidad se debe a una gesti\u00f3n insuficiente de los recursos cuando un sistema afectado se encuentra en una condici\u00f3n de error. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando tr\u00e1fico malicioso al sistema afectado. Un exploit exitoso podr\u00eda permitir al atacante provocar que el proceso SSH se bloquee y se reinicie, lo que resultar\u00eda en una condici\u00f3n DoS para el servicio SSH."}], "id": "CVE-2023-20262", "lastModified": "2024-01-25T17:15:41.980", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2023-09-27T18:15:11.757", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-399"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}