CVE-2022-40636 Ansys SpaceClaim 2022 R1 is vulnerable to remote attackers executing arbitrary code.

Cisco products include several components that are vulnerable to information disclosure or denial of service attacks. Cisco IOS uses a variety of configuration protocols to enable remote access to its functionality. These include the Simple Network Management Protocol (SNMP), Web Management, and the Extensible Remote Platform Management Protocol (ERPM). Cisco IOS may also allow remote access to various interfaces. An attacker may use this access to issue a command that will act as an information disclosure or denial of service attack. Cisco IOS may also make the full configuration of an interface available to remote attackers. An attacker may use this access to issue a command that will act as an information disclosure or denial of service attack. Cisco IOS may also make the full configuration of an interface available to remote attackers. Cisco IOS may allow remote attackers to view the active configuration of an interface via SNMP or ERPM. An attacker may use this access to issue a command that will act as an information disclosure or denial of service attack. Cisco IOS may allow remote attackers to view the active configuration of an interface via SNMP or ERPM. An attacker may use this access to issue a command that will act as an information disclosure or denial of service attack. Cisco IOS may allow remote attackers to view the active configuration of an interface via SNMP or ERPM

SNMP

Cisco IOS uses SNMP as one of its many configuration protocols. An attacker may use this access to issue a command that will act as an information disclosure or denial of service attack. Cisco IOS may allow remote attackers to view the active configuration of an interface via SNMP or ERPM.

Information Disclosure and Denial of Service Attacks

Information disclosure attacks may include, but are not limited to, the following:
- An attacker may send a crafted SNMP request that causes increased CPU usage.
- An attacker may send a crafted SNMP request that causes the device to crash.
- An attacker might send a crafted ERPM packet that triggers an information disclosure or denial of service.
Denial of service attacks may include, but are not limited to, the following:
- An attacker may issue a crafted SNMP packet that fails to process on Cisco IOS packets and drops them instead.
- An attacker might issue a crafted ERPM packet that travels through Cisco IOS packets and drops them instead.

References

1. https://www.cisco.com/c/en/us/products/security/ios-software-vulnerability-summary-091612a0072f
2. https://tools.cisco.com/security/center/content/?id=CVE-2022-40636

Detect and Respond to Information Disclosure Vulnerabilities

In order to detect and respond to information disclosure vulnerabilities, administrators can use a variety of methods. These include the Syslog function and the Cisco IOS command-line interface (CLI). Administrators can also filter SNMP traps by severity. On devices with an SSH service enabled, logins are limited to those users with administrative privilege or root access.
For more information on detecting and responding to information disclosure vulnerabilities, see

Timeline

Published on: 09/15/2022 16:15:00 UTC
Last modified on: 09/19/2022 17:46:00 UTC

References

• https://www.zerodayinitiative.com/advisories/ZDI-22-1192/
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-40636