{"id":12966,"date":"2019-06-19T20:47:10","date_gmt":"2019-06-19T20:47:10","guid":{"rendered":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/?p=12966"},"modified":"2022-10-14T18:28:44","modified_gmt":"2022-10-14T22:28:44","slug":"vmware-and-now-cisco-sd-wan-cybersecurity-issues","status":"publish","type":"post","link":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/sd-wan\/vmware-and-now-cisco-sd-wan-cybersecurity-issues.html","title":{"rendered":"VMware and Now Cisco SD-WAN Cybersecurity Issues"},"content":{"rendered":"\n<p>It has been a big week for cybersecurity in the SD-WAN space. As we&#8217;ve mentioned before, SD-WAN is itself a technology often deployed due to cybersecurity and yet is also can pose vulnerability issues.<\/p>\n\n\n\n<p>A few days ago, we <a href=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/sd-wan\/hackers-now-attacking-sd-wan.html\">reported<\/a> on VMWare SD-WAN issues and said:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p>Palo Alto Networks\u00a0<a href=\"https:\/\/unit42.paloaltonetworks.com\/new-mirai-variant-adds-8-new-exploits-targets-additional-iot-devices\/\">discovered\u00a0<\/a>a new variant of Mirai that has eight new exploits against a wide range of embedded devices. These newly targeted devices range from wireless presentation systems to set-top-boxes, SD-WANs, and even smart home controllers.<br>The target, VMware\u2019s SDX line of SD-WAN appliances \u2013 now has an\u00a0<a href=\"https:\/\/www.networkworld.com\/article\/3403016\/report-mirai-tries-to-hook-its-tentacles-into-sd-wan.html\">updated software version\u00a0<\/a>that fixes the vulnerability. <\/p><\/blockquote>\n\n\n\n<p>Now there is an issue with Cisco SD-WAN solutions.<\/p>\n\n\n\n<p>Although SD-WAN does not make up a huge amount of Cisco sales at this point, the networking leader put out an alert today relating to cybersecurity across its product line. Of the nine updates suggested, a full three of them or 33% were related to SD-WAN.<\/p>\n\n\n\n<p>The vulnerabilities are as follows:<\/p>\n\n\n\n<ul><li>SD-WAN Solution Privilege Escalation Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-privesca\">cisco-sa-20190619-sdwan-privesca<\/a>\n     <\/li><li>DNA Center Authentication Bypass Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-dnac-bypass\">cisco-sa-20190619-dnac-bypass<\/a>\n     <\/li><li>TelePresence Endpoint Command Shell Injection\n     Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-tele-shell-inj\">cisco-sa-20190619-tele-shell-inj<\/a>\n     <\/li><li>StarOS Denial-of-Service Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-staros-asr-dos\">cisco-sa-20190619-staros-asr-dos<\/a>\n     <\/li><li>SD-WAN Solution Privilege Escalation Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-privilescal\">cisco-sa-20190619-sdwan-privilescal<\/a>\n     <\/li><li>SD-WAN Solution Command Injection Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-cmdinj\">cisco-sa-20190619-sdwan-cmdinj<\/a>\n     <\/li><li>RV110W, RV130W, and RV215W Routers Management Interface\n     Denial-of-Service Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-rvrouters-dos\">cisco-sa-20190619-rvrouters-dos<\/a>\n     <\/li><li>Prime Service Catalog Cross-Site Request Forgery\n     Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-psc-csrf\">cisco-sa-20190619-psc-csrf<\/a>\n     <\/li><li>Meeting Server CLI Command Injection Vulnerability <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-cms-codex\">cisco-sa-20190619-cms-codex<\/a>\n     <\/li><\/ul>\n\n\n\n<p><strong>The SD-WAN Solution Privilege Escalation Vulnerability<\/strong> is a vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the\u00a0<em>root\u00a0<\/em>user on an affected device.<\/p>\n\n\n\n<p>The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by authenticating to the targeted device and executing commands that could lead to elevated privileges. A successful exploit could allow the attacker to make configuration changes to the system as the\u00a0<em>root\u00a0<\/em>user.  The threat is considered <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-privesca\">Critical<\/a>.<\/p>\n\n\n\n<p>A second <strong>SD-WAN Solution Privilege Escalation Vulnerability<\/strong> is a vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected vManage device.<\/p>\n\n\n\n<p>The vulnerability is due to a failure to properly authorize certain user actions in the device configuration. An attacker could exploit this vulnerability by logging in to the vManage Web UI and sending crafted HTTP requests to vManage. A successful exploit could allow attackers to gain elevated privileges and make changes to the configuration that they would not normally be authorized to make. The threat is considered <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-cmdinj\">H<\/a><a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-privilescal\">igh<\/a>.<\/p>\n\n\n\n<p>The <strong>SD-WAN Solution Command Injection Vulnerability<\/strong> is a vulnerability in the vManage web-based UI (Web UI) in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with\u00a0<em>root\u00a0<\/em>privileges.<\/p>\n\n\n\n<p>The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting crafted input to the vManage Web UI. A successful exploit could allow the attacker to execute commands with\u00a0<em>root<\/em>\u00a0privileges. The threat is considered <a href=\"https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-20190619-sdwan-cmdinj\">High<\/a>.<\/p>\n\n\n\n<p>This serves as a reminder of how important it is to patch all systems, SD-WAN and otherwise. Attackers will target whatever they can get into and once exploits are known, more attackers will target them. This is why it is crucial to patch as fast as you can to keep your enterprise secure.<\/p>\n\n\n\n<p><em>Learn about the latest in everything you need! UCaaS,\u00a0<a href=\"https:\/\/cvxexpo.tmcnet.com\/east\/\">the Channel<\/a>,\u00a0IT, IOT,\u00a0<a href=\"http:\/\/www.intelligentedgeexpo.com\/\">Edge<\/a>, Cybersecurity, AI,\u00a0<a href=\"https:\/\/www.sd-wanexpo.com\/east\/\">SD-WAN<\/a>,\u00a0and the\u00a0<a href=\"https:\/\/www.futureofworkexpo.com\/\">Future of Work<\/a>\u00a0at the world\u2019s only\u00a0<a href=\"http:\/\/www.sdwanexpo.com\/\">SD-WAN Expo<\/a>\u00a0and\u00a0<strong><a href=\"http:\/\/www.mspexpo.com\/\">MSP Expo<\/a><\/strong>, part of the\u00a0<\/em><strong><em><a href=\"http:\/\/www.itexpo.com\/\">ITEXPO<\/a><\/em><\/strong><em>\u00a0#TechSuperShow,\u00a0Feb 12-14, 2020 Fort Lauderdale, FL.<\/em><\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"800\" height=\"600\" src=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-content\/uploads\/2019\/05\/itexpo-2019-hall-7.jpg\" alt=\"\" class=\"wp-image-12172\" srcset=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-content\/uploads\/2019\/05\/itexpo-2019-hall-7.jpg 800w, https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-content\/uploads\/2019\/05\/itexpo-2019-hall-7-768x576.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>It has been a big week for cybersecurity in the SD-WAN space. As we&#8217;ve mentioned before, SD-WAN is itself a technology often deployed due to cybersecurity and yet is also can pose vulnerability issues. A few days ago, we reported on VMWare SD-WAN issues and said: Palo Alto Networks\u00a0discovered\u00a0a new variant of Mirai that has<\/p>\n","protected":false},"author":44,"featured_media":1867,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1829],"tags":[1796,2095,1808,1847],"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/12966"}],"collection":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/comments?post=12966"}],"version-history":[{"count":2,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/12966\/revisions"}],"predecessor-version":[{"id":12968,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/12966\/revisions\/12968"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/media\/1867"}],"wp:attachment":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/media?parent=12966"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/categories?post=12966"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/tags?post=12966"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}