Rewterz Threat Advisory – CVE-2022-20696 – Cisco SD-WAN vManage Software Vulnerability

Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs

September 8, 2022

Rewterz Threat Advisory – CVE-2022-20863 – Cisco Webex App Vulnerability

September 8, 2022

Rewterz Threat Advisory – CVE-2022-20696 – Cisco SD-WAN vManage Software Vulnerability

Severity

High

Analysis Summary

CVE-2022-20696

Cisco SD-WAN vManage Software could allow a remote attacker to bypass security restrictions, caused by the lack of protection mechanisms in the messaging server container ports. By connecting to the messaging service ports, an attacker could exploit this vulnerability to view and inject messages into the messaging service.

Impact

Security Bypass

Indicators Of Compromise

CVE

CVE-2022-20696

Affected Vendors

Cisco

Affected Products

Cisco SD-WAN vManage software

Remediation

Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.

Cisco Security Advisory

Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs

Rewterz Threat Advisory – CVE-2022-20863 – Cisco Webex App Vulnerability

Rewterz Threat Advisory – CVE-2022-20696 – Cisco SD-WAN vManage Software Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan