Severity Rating: HIGH
Component Affected
250 Series Smart Switches
350 Series Managed Switches
350X Series Stackable Managed Switches
550X Series Stackable Managed Switches
Small Business 200 Series Smart Switches
Small Business 300 Series Managed Switches
Small Business 500 Series Stackable Managed Switches
Overview
A vulnerability has been reported in session management interface of Cisco
Small Business Smart and Managed Switches which could allow an
unauthenticated, remote attacker to gain unauthorized access to the
management interface.
Description
This vulnerability exists in session management for the web-based interface
of Cisco Small Business Smart and Managed Switches due to the use of weak
entropy generation for session identifier values that could allow the
attacker to access the switches¿ management interfaces. An
unauthenticated, remote attacker could exploit this vulnerability to
determine a current session identifier through brute force and reuse that
session identifier to take over an ongoing session.
Successful exploitation of this vulnerability could allow the attacker to
access the switches management interfaces with administrative privileges.
Solution
Apply appropriate updates as mentioned in:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-sbswitch-session-JZAS5jnY
Vendor Information
Cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-sbswitch-session-JZAS5jnY
References
Cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-sbswitch-session-JZAS5jnY
CVE Name
CVE-2020-3297
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.