Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20215

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulnerability is due to improper detection of malicious traffic when the traffic is encoded with a specific content format. An attacker could exploit this vulnerability by using an affected device to connect to a malicious server and receiving crafted HTTP responses. A successful exploit could allow the attacker to bypass an explicit block rule and receive traffic that should have been rejected by the device.

Published

2023-08-03T22:15:11.513

Last Modified

2024-11-21T07:40:54.337

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.8 (MEDIUM)

Weaknesses

Type: Secondary
CWE-202
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	asyncos	11.7.0-406	Yes
Operating System	cisco	asyncos	11.7.0-418	Yes
Operating System	cisco	asyncos	11.7.1-006	Yes
Operating System	cisco	asyncos	11.7.1-020	Yes
Operating System	cisco	asyncos	11.7.1-049	Yes
Operating System	cisco	asyncos	11.7.2-011	Yes
Operating System	cisco	asyncos	11.8.0-414	Yes
Operating System	cisco	asyncos	11.8.1-023	Yes
Operating System	cisco	asyncos	11.8.3-018	Yes
Operating System	cisco	asyncos	11.8.3-021	Yes
Operating System	cisco	asyncos	12.0.1-268	Yes
Operating System	cisco	asyncos	12.0.3-007	Yes
Operating System	cisco	asyncos	12.5.1-011	Yes
Operating System	cisco	asyncos	12.5.2-007	Yes
Operating System	cisco	asyncos	12.5.4-005	Yes
Operating System	cisco	asyncos	12.5.5-004	Yes
Operating System	cisco	asyncos	14.0.2-012	Yes
Operating System	cisco	asyncos	14.0.3-014	Yes
Operating System	cisco	asyncos	14.0.4-005	Yes
Operating System	cisco	asyncos	14.5.0-498	Yes
Operating System	cisco	asyncos	14.5.1-008	Yes
Operating System	cisco	asyncos	14.5.1-016	Yes
Hardware	cisco	s195	-	No
Hardware	cisco	s395	-	No
Hardware	cisco	s695	-	No
Hardware	cisco	web_security_appliance_s170	-	No
Hardware	cisco	web_security_appliance_s190	-	No
Hardware	cisco	web_security_appliance_s380	-	No
Hardware	cisco	web_security_appliance_s390	-	No
Hardware	cisco	web_security_appliance_s680	-	No
Hardware	cisco	web_security_appliance_s690	-	No
Hardware	cisco	web_security_appliance_s690x	-	No

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-bypass-vXvqwzsj Vendor Advisory ([email protected])
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-bypass-vXvqwzsj Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)