CVE-2022-20933

high-risk
Published 2022-10-26

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of client-supplied parameters while establishing an SSL VPN session. An attacker could exploit this vulnerability by crafting a malicious request and sending it to the affected device. A successful exploit could allow the attacker to cause the Cisco AnyConnect VPN server to crash and restart, resulting in the failure of the established SSL VPN connections and forcing remote users to initiate a new VPN connection and re-authenticate. A sustained attack could prevent new SSL VPN connections from being established. Note: When the attack traffic stops, the Cisco AnyConnect VPN server recovers gracefully without requiring manual intervention. Cisco Meraki has released software updates that address this vulnerability.

Do I need to act?

-
0.46% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.6/10 High
NETWORK / LOW complexity

Affected Products (20)

Meraki Mx64 Firmware
Meraki Mx64W Firmware
Meraki Mx65 Firmware
Meraki Mx65W Firmware
Meraki Mx67 Firmware
Meraki Mx67Cw Firmware
Meraki Mx67W Firmware
Meraki Mx68 Firmware
Meraki Mx68Cw Firmware
Meraki Mx68W Firmware
Meraki Mx75 Firmware
Meraki Mx84 Firmware
Meraki Mx85 Firmware
Meraki Mx95 Firmware
Meraki Mx100 Firmware
Meraki Mx105 Firmware
Meraki Mx250 Firmware
Meraki Mx400 Firmware
Meraki Mx450 Firmware
Meraki Mx600 Firmware

Affected Vendors

Cisco

References (2)

Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-m...
Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-m...
52
/ 100
high-risk
Severity 29/34 · Critical
Exploitability 2/34 · Minimal
Exposure 21/34 · High