Cadastre-se agora para um orçamento mais personalizado!

CISA releases advisory on five Apache HTTP server vulnerabilities affecting Cisco products

dez, 09, 2021 Hi-network.com

CISA has released a second advisory about several Apache HTTP server vulnerabilities. In November, Cisco sent out a notice about the vulnerabilities, explaining that the Apache Software Foundation disclosed five vulnerabilities affecting the Apache HTTP Server (httpd) 2.4.48 and earlier releases on September 16.

Recommends

  • Best VPN services
  • Best security keys
  • Best antivirus software
  • The fastest VPNs

The IDs are CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438. 

Cisco noted that one of the vulnerabilities in the mod_proxy module of Apache HTTP Server (httpd) could allow an unauthenticated, remote attacker to make the httpd server forward requests to an arbitrary server. 

Another could allow an attacker to exploit a vulnerability by sending a crafted HTTP request to a vulnerable device, and a successful exploit could allow the attacker to get, modify, or delete resources on other services that may be inaccessible otherwise.

Cisco said in November; the Product Security Incident Response Team "became aware of exploitation attempts of the vulnerability identified by CVE-2021-40438."

Cisco said the products that are affected by the vulnerabilities include Cisco Cloud Services Platform 2100, Cisco Wide Area Application Services (WAAS), Cisco Wireless Gateway for LoRaWAN, Cisco TelePresence Video Communication Server (VCS), Cisco Expressway Series, Cisco UCS Manager, Cisco Network Assurance Engine, Cisco UCS Director Bare Metal Agent, Cisco UCS Central Software, Cisco Security Manager, Cisco Prime Optical for Service Providers, Cisco Prime Infrastructure, Cisco Prime Collaboration Provisioning, Cisco FXOS Software for Firepower 4100/9300 Series Appliances, Cisco Policy Suite and the Cisco Firepower Management Center.

The company added that it is investigating the following products: Cisco DNA Center, Cisco Unified Communications Domain Manager, Cisco Unified Communications Manager IM & Presence Service (formerly CUPS) and Cisco Smart Net Total Care - On-Premises. 

Some of the fixes are available now, but others will be released in February, March, May and June of 2022. Administrators can find product-specific workarounds in the Cisco notice. 

Casey Ellis, CTO at Bugcrowd, said the vulnerabilities are critical in their impact and appear to be fairly easy to exploit.

Netenrich principal threat hunter John Bambenek toldZDNetthat what stood out to him about the advisory is that the vulnerabilities were first known in August, and an update to Apache was released in September. 

"Only now has Cisco issued their own advisory and begun the process to remediate the issue in their devices. Open source software makes up key components in many commercial offerings. However, patch and vulnerability management still pose problems, even for large enterprises," Bambenek said. 

"Devices with large control over environments the way Cisco devices do really ought to have come with more responsible scrutiny over updates to key components to their products."

Security

8 habits of highly secure remote workersHow to find and remove spyware from your phoneThe best VPN services: How do the top 5 compare?How to find out if you are involved in a data breach -- and what to do next
  • 8 habits of highly secure remote workers
  • How to find and remove spyware from your phone
  • The best VPN services: How do the top 5 compare?
  • How to find out if you are involved in a data breach -- and what to do next

tag-icon Tags quentes : Negócio Empresas

Copyright © 2014-2024 Hi-Network.com | HAILIAN TECHNOLOGY CO., LIMITED | All Rights Reserved.