Advisory No: TZCERT/SA/2023/09/08

Date of First Release: 8^th September 2023

Source: CISCO

Software Affected:  Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform

Overview:

A vulnerability classified as critical has been identified to affect an unknown functionality of the component Single Sign-On (SSO). The vulnerability may allow an attacker to compromise the confidentiality, integrity and availability of the affected system.

Description:

A weakness in the method used to validate SSO tokens in the Cisco BroadWorks could allow an unauthenticated remote attacker to forge credentials required to the affected system. Upon successful exploitation of the vulnerability, an attacker with administrative privileged account will have the ability to view confidential information, modify customer settings or modify settings for other users.

Impact:

Successful exploitation of this vulnerability may allow the attacker to execute commands at the privilege level of the forged account.

Solution:

Cisco has released a patch for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-auth-bypass-kCggMWhX

Drupal has released security updates to address vulnerabilities in Drupal CMS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Drupal Security Advisories SA-CONTRIB-2023-043 and SA-CONTRIB-2023-044 and apply necessary updates.

Apple has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Apple Security Advisories dated 7^th September 2023 and apply necessary updates.

Cisco has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Cisco Security Advisories dated 6^th September 2023 and apply necessary updates.

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review IBM Security Bulletins dated 8^th September 2023 and apply necessary updates.