Cisco Catalyst SDWAN Manager SSH DoS via Remote Crash
CVE-2023-20262 Published on September 27, 2023
A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and web UI access is not affected. This vulnerability is due to insufficient resource management when an affected system is in an error condition. An attacker could exploit this vulnerability by sending malicious traffic to the affected system. A successful exploit could allow the attacker to cause the SSH process to crash and restart, resulting in a DoS condition for the SSH service.
Vulnerability Analysis
CVE-2023-20262 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a small impact on availability.
Weakness Type
Resource Management Errors
Weaknesses in this category are related to improper management of system resources.
Products Associated with CVE-2023-20262
stack.watch emails you whenever new vulnerabilities are published in Cisco Sd Wan Vmanage or Cisco Catalyst Sd Wan Manager. Just hit a watch button to start following.
Affected Versions
Cisco SD-WAN Solution:- Version 17.2.4 is affected.
- Version 17.2.5 is affected.
- Version 17.2.6 is affected.
- Version 17.2.7 is affected.
- Version 17.2.8 is affected.
- Version 17.2.9 is affected.
- Version 17.2.10 is affected.
- Version 18.2.0 is affected.
- Version 18.3.0 is affected.
- Version 18.3.1 is affected.
- Version 18.3.3 is affected.
- Version 18.3.3.1 is affected.
- Version 18.3.4 is affected.
- Version 18.3.5 is affected.
- Version 18.3.6 is affected.
- Version 18.3.7 is affected.
- Version 18.3.8 is affected.
- Version 18.4.0 is affected.
- Version 18.4.1 is affected.
- Version 18.4.0.1 is affected.
- Version 18.4.3 is affected.
- Version 18.4.302 is affected.
- Version 18.4.303 is affected.
- Version 18.4.4 is affected.
- Version 18.4.5 is affected.
- Version 18.4.6 is affected.
- Version 19.1.0 is affected.
- Version 19.2.0 is affected.
- Version 19.2.097 is affected.
- Version 19.2.099 is affected.
- Version 19.2.1 is affected.
- Version 19.2.2 is affected.
- Version 19.2.3 is affected.
- Version 19.2.929 is affected.
- Version 19.2.31 is affected.
- Version 19.2.4 is affected.
- Version 19.3.0 is affected.
- Version 20.1.1 is affected.
- Version 20.1.1.1 is affected.
- Version 20.1.11 is affected.
- Version 20.1.12 is affected.
- Version 20.1.2 is affected.
- Version 20.1.3 is affected.
- Version 20.1.3.1 is affected.
- Version 20.3.1 is affected.
- Version 20.3.2 is affected.
- Version 20.3.2.1 is affected.
- Version 20.3.3 is affected.
- Version 20.3.3.1 is affected.
- Version 20.3.4 is affected.
- Version 20.3.4.2 is affected.
- Version 20.3.4.1 is affected.
- Version 20.3.5 is affected.
- Version 20.3.6 is affected.
- Version 20.3.4.3 is affected.
- Version 20.3.5.1 is affected.
- Version 20.4.1 is affected.
- Version 20.4.1.1 is affected.
- Version 20.4.1.2 is affected.
- Version 20.4.2 is affected.
- Version 20.4.2.2 is affected.
- Version 20.4.2.1 is affected.
- Version 20.4.2.3 is affected.
- Version 20.5.1 is affected.
- Version 20.5.1.2 is affected.
- Version 20.5.1.1 is affected.
- Version 20.6.1 is affected.
- Version 20.6.1.1 is affected.
- Version 20.6.2.2 is affected.
- Version 20.6.2.1 is affected.
- Version 20.6.2 is affected.
- Version 20.6.3 is affected.
- Version 20.6.3.1 is affected.
- Version 20.6.4 is affected.
- Version 20.6.4.1 is affected.
- Version 20.6.5 is affected.
- Version 20.6.5.2 is affected.
- Version 20.6.3.2 is affected.
- Version 20.6.3.3 is affected.
- Version 20.6.1.2 is affected.
- Version 20.6.3.4 is affected.
- Version 20.6.4.2 is affected.
- Version 20.6.5.4 is affected.
- Version 20.6.5.5 is affected.
- Version 20.7.1 is affected.
- Version 20.7.1.1 is affected.
- Version 20.7.2 is affected.
- Version 20.8.1 is affected.
- Version 20.9.1 is affected.
- Version 20.9.2.3 is affected.
- Version 20.10.1.2 is affected.
- Version 17.2.6 is affected.
- Version 17.2.7 is affected.
- Version 17.2.8 is affected.
- Version 17.2.9 is affected.
- Version 17.2.10 is affected.
- Version 17.2.4 is affected.
- Version 17.2.5 is affected.
- Version 18.3.1.1 is affected.
- Version 18.3.3.1 is affected.
- Version 18.3.3 is affected.
- Version 18.3.4 is affected.
- Version 18.3.5 is affected.
- Version 18.3.7 is affected.
- Version 18.3.8 is affected.
- Version 18.3.6.1 is affected.
- Version 18.3.1 is affected.
- Version 18.3.0 is affected.
- Version 18.4.0.1 is affected.
- Version 18.4.3 is affected.
- Version 18.4.302 is affected.
- Version 18.4.303 is affected.
- Version 18.4.4 is affected.
- Version 18.4.5 is affected.
- Version 18.4.0 is affected.
- Version 18.4.1 is affected.
- Version 18.4.6 is affected.
- Version 19.2.0 is affected.
- Version 19.2.097 is affected.
- Version 19.2.099 is affected.
- Version 19.2.1 is affected.
- Version 19.2.2 is affected.
- Version 19.2.3 is affected.
- Version 19.2.31 is affected.
- Version 19.2.929 is affected.
- Version 19.2.4 is affected.
- Version 20.1.1.1 is affected.
- Version 20.1.12 is affected.
- Version 20.1.1 is affected.
- Version 20.1.2 is affected.
- Version 20.1.3 is affected.
- Version 19.3.0 is affected.
- Version 19.1.0 is affected.
- Version 18.2.0 is affected.
- Version 20.3.1 is affected.
- Version 20.3.2 is affected.
- Version 20.3.2.1 is affected.
- Version 20.3.3 is affected.
- Version 20.3.3.1 is affected.
- Version 20.3.4 is affected.
- Version 20.3.4.1 is affected.
- Version 20.3.4.2 is affected.
- Version 20.3.5 is affected.
- Version 20.3.6 is affected.
- Version 20.3.4.3 is affected.
- Version 20.3.5.1 is affected.
- Version 20.4.1 is affected.
- Version 20.4.1.1 is affected.
- Version 20.4.1.2 is affected.
- Version 20.4.2 is affected.
- Version 20.4.2.2 is affected.
- Version 20.4.2.1 is affected.
- Version 20.4.2.3 is affected.
- Version 20.5.1 is affected.
- Version 20.5.1.2 is affected.
- Version 20.5.1.1 is affected.
- Version 20.6.1 is affected.
- Version 20.6.1.1 is affected.
- Version 20.6.2.1 is affected.
- Version 20.6.2.2 is affected.
- Version 20.6.2 is affected.
- Version 20.6.3 is affected.
- Version 20.6.1.2 is affected.
- Version 20.10.1 is affected.
- Version 20.10.1.1 is affected.
- Version 20.10.1.2 is affected.
- Version N/A is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.