Cisco Web Security Appliance (WSA) Information Disclosure (cisco-sa-sma-wsa-esa-info-dis-vsvPzOHP)

medium Nessus Plugin ID 140404

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

According to its self-reported version, the Cisco Web Security Appliance (WSA) is affected by an information disclosure vulnerability in the web-based management interface of Cisco AsyncOS software due to the use of an insecure method to mask certain passwords on the web-based management interface. An authenticated, remote attacker could exploit this by looking at the raw HTML code that is received from the interface. A successful exploit could allow an attacker to obtain some of the passwords configured throughout the interface.

Please see the included Cisco BIDs and the Cisco Security Advisory for more information.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to the relevant fixed version referenced in Cisco Security Advisory cisco-sa-sma-wsa-esa-info-dis-vsvPzOHP

See Also

http://www.nessus.org/u?5d6cbaf0

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt98774

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvu03264

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvu08049

Plugin Details

Severity: Medium

ID: 140404

File Name: cisco-sa-wsa-info-dis-vsvPzOHP.nasl

Version: 1.12

Type: local

Family: CISCO

Published: 9/8/2020

Updated: 5/14/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS Score Source: CVE-2020-3547

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/h:cisco:web_security_appliance, cpe:/a:cisco:web_security_appliance, cpe:/o:cisco:web_security_appliance, cpe:/o:cisco:asyncos

Required KB Items: Host/AsyncOS/Cisco Web Security Appliance/DisplayVersion, Host/AsyncOS/Cisco Web Security Appliance/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 9/2/2020

Vulnerability Publication Date: 9/2/2020

Reference Information

CVE: CVE-2020-3547

CISCO-SA: cisco-sa-sma-wsa-esa-info-dis-vsvPzOHP

IAVA: 2020-A-0400-S

CISCO-BUG-ID: CSCvt98774, CSCvu03264, CSCvu08049