Two critical vulnerabilities in Cisco email, web and chat applications allow threat actors to steal confidential data

Cisco products customers have been alerted with critical high-severity flaw in its email and web security appliances

360 Mobile Vision - 360mobilevision.com North & South Carolina Security products and Systems Installations for Commercial and Residential - $55 Hourly Rate. ACCESS CONTROL, INTRUSION ALARM, ACCESS CONTROLLED GATES, INTERCOMS AND CCTV INSTALL OR REPAIR 360 Mobile Vision - 360mobilevision.com is committed to excellence in every aspect of our business. We uphold a standard of integrity bound by fairness, honesty and personal responsibility. Our distinction is the quality of service we bring to our customers. Accurate knowledge of our trade combined with ability is what makes us true professionals. Above all, we are watchful of our customers interests, and make their concerns the basis of our business.

Affected Product: Cisco Enterprise Chat and Email

CVE-2022-20802 

Criticality: Medium

Stored Cross-Site Scripting Vulnerability

Description: 

A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow a remote threat actor to perform a cross-site scripting (XSS) attack against a user of the interface.

This vulnerability is due to insufficient validation of user-supplied input that is processed by the web interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected system. 

Two critical vulnerabilities in Cisco email, web and chat applications allow threat actors to steal confidential data

Result: 

A successful exploit could allow the threat actor  to execute arbitrary code in the software or steal private data from the browser. To successfully exploit this vulnerability, an attacker would need valid agent credentials.

Mitigation:

Cisco has released software updates that fix this vulnerability. 

Affected Product: Cisco Email Security Appliance and Cisco Secure Email and Web Manager

CVE-2022-20664

Criticality: High

Information Disclosure Vulnerability

Description: 

A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA) permits remote threat actors to steal confidential LDAP data from  external authentication servers connected to an affected device.

This vulnerability is due to a lack of proper input sanitization while querying the external authentication server. A threat actor could exploit this vulnerability by sending a crafted query through an external authentication web page. 

Result: 

A successful exploit could allow the attacker to steal  sensitive information, including user credentials. To successfully exploit this vulnerability, an attacker would need valid credentials.

Mitigation:

Cisco has released software updates that fix this vulnerability. 

The post Two critical vulnerabilities in Cisco email, web and chat applications allow threat actors to steal confidential data appeared first on Cyber Security News | Exploit One | Hacking News.

By admin