Cisco Emergency Responder Multiple Vulnerabilities (cisco-sa-cem-csrf-suCmNjFr)

medium Nessus Plugin ID 193039

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

According to its self-reported version, Cisco Emergency Responder is affected by multiple vulnerabilities.

- A vulnerability in Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a directory traversal attack, which could allow the attacker to perform arbitrary actions on an affected device. This vulnerability is due to insufficient protections for the web UI of an affected system. An attacker could exploit this vulnerability by sending crafted requests to the web UI. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user, such as accessing password or log files or uploading and deleting existing files from the system.
(CVE-2024-20352)

- A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a CSRF attack, which could allow the attacker to perform arbitrary actions on an affected device. This vulnerability is due to insufficient protections for the web UI of an affected system. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user, such as deleting users from the device. (CVE-2024-20347)

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCwf41263, CSCwf41347

See Also

http://www.nessus.org/u?7d4bc131

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf41263

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwf41347

Plugin Details

Severity: Medium

ID: 193039

File Name: cisco-sa-cem-csrf-suCmNjFr.nasl

Version: 1.0

Type: combined

Family: CISCO

Published: 4/9/2024

Updated: 4/9/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 4.5

Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N

CVSS Score Source: CVE-2024-20352

CVSS v3

Risk Factor: Medium

Base Score: 4.9

Temporal Score: 4.3

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:emergency_responder

Exploit Ease: No known exploits are available

Patch Publication Date: 4/3/2024

Vulnerability Publication Date: 4/3/2024

Reference Information

CVE: CVE-2024-20347, CVE-2024-20352

CWE: 23, 352

CISCO-SA: cisco-sa-cem-csrf-suCmNjFr

IAVA: 2024-A-0197

CISCO-BUG-ID: CSCwf41263, CSCwf41347