SB2023021588 - Multiple vulnerabilities in Cisco Email Security Appliance and Cisco Secure Email and Web Manager

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Input validation error (CVE-ID: CVE-2023-20009)

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to insufficient validation of an uploaded Simple Network Management Protocol (SNMP) configuration file. A remote attacker can upload a specially crafted SNMP configuration file and execute arbitrary code as root.

2) OS Command Injection (CVE-ID: CVE-2023-20075)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in the CLI. A local user with Operator-level privileges or higher can inject operating system commands into a legitimate command, escape the restricted command prompt and execute arbitrary commands on the underlying operating system as the CLI process user.

Remediation

Install update from vendor's website.

References

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd29901
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd29905
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd50043