Rewterz

Rewterz Threat Alert – GADOLINIUM Using Cloud Services and Open Source Tools

September 25, 2020
Rewterz

Rewterz Threat Advisory – Cisco IOS XE Software Privilege Escalation Vulnerabilities

September 25, 2020

Rewterz Threat Advisory – Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities

Severity

High

Analysis Summary

CVE-2020-3421, CVE-2020-3480

Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall.

The vulnerabilities are due to incomplete handling of Layer 4 packets through the device. An attacker could exploit these vulnerabilities by sending a certain sequence of traffic patterns through the device. A successful exploit could allow the attacker to cause the device to reload or stop forwarding traffic through the firewall, resulting in a denial of service.

Impact

Denial of service

Affected Vendors

Cisco

Remediation

Refer to Cisco advisory for the complete list of affected products and respective patches.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-zbfw-94ckG4G

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.