Cisco on Wednesday rolled out patches for 10 security flaws spanning many solutions, a single of which is rated Critical in severity and could be weaponized to perform complete path traversal attacks.
The issues, tracked as CVE-2022-20812 and CVE-2022-20813, affect Cisco Expressway Sequence and Cisco TelePresence Movie Interaction Server (VCS) and “could allow a distant attacker to overwrite arbitrary documents or perform null byte poisoning attacks on an affected device,” the firm mentioned in an advisory.
CVE-2022-20812 (CVSS score: 9.), which worries a scenario of arbitrary file overwrite in the cluster databases API, involves the authenticated, remote attacker to have Administrator browse-write privileges on the application so as to be equipped to mount path traversal attacks as a root consumer.
“This vulnerability is thanks to inadequate input validation of consumer-equipped command arguments,” the organization claimed. “An attacker could exploit this vulnerability by authenticating to the procedure as an administrative browse-produce user and publishing crafted enter to the affected command.”
Successful exploitation of the flaw could empower the adversary to overwrite arbitrary information on the fundamental running system.
CVE-2022-20813 (CVSS rating: 7.4), on the other hand, has been explained as a null byte poisoning flaw arising owing to poor certificate validation, which could be weaponized by an attacker to phase a male-in-the-center (MitM) attack and acquire unauthorized accessibility to sensitive info.
Also patched by Cisco is a significant-severity flaw in its Smart Software program Manager On-Prem (CVE-2022-20808, CVSS score: 7.7) that could be abused by an authenticated, distant attacker to lead to a denial of assistance (DoS) problem on an influenced machine.
Fortinet issues fixes for several products and solutions
In a related growth, Fortinet dealt with many large-severity vulnerabilities influencing FortiAnalyzer, FortiClient, FortiDeceptor, and FortiNAC –
- CVE-2021-43072 (CVSS rating: 7.4) – Stack-centered buffer overflow through crafted CLI execute command in FortiAnalyzer, FortiManager, FortiOS and FortiProxy
- CVE-2021-41031 (CVSS score: 7.8) – Privilege Escalation by means of listing traversal attack in FortiClient for Windows
- CVE-2022-30302 (CVSS score: 7.9) – Various route traversal vulnerabilities in FortiDeceptor administration interface, and
- CVE-2022-26117 (CVSS score: 8.) – Unprotected MySQL root account in FortiNAC
Ought to the flaws be properly exploited, it may make it possible for an authenticated attacker to execute arbitrary code, retrieve and delete files, and obtain MySQL databases, or even permit a regional unprivileged actor to escalate to Program permissions.
Discovered this article appealing? Follow THN on Fb, Twitter and LinkedIn to examine extra exceptional content material we publish.
Some elements of this report are sourced from: