Please see Security Advisories for the week ending March 4, 2022
- NSA Releases Network Infrastructure Security Guidance
- CISA Adds 95 Known Exploited Vulnerabilities to Catalog
- Cisco Releases Security Updates for Multiple Products
- Google Releases Security Updates for Chrome
_______________________________
NSA Releases Network Infrastructure Security Guidance
Situation
The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR) on Network Infrastructure Security Guidance.
Problem
The cybersecurity report presents best practices for overall network security and protection of individual network devices, assist administrators in preventing an adversary from exploiting their network, and responding to threats. The guidance is presented in a generic way so that it can be applied to many types of network devices. Recommendations include perimeter and internal network defenses to improve monitoring and access controls throughout the network.
Implication
Improper configuration, incorrect handling of configurations, and weak encryption keys can all expose vulnerabilities in an organization’s network This can lead to a organization’s networks being at a greater risk of compromise.
Need
The CISA encourages network architects, defenders, and administrators to review NSA’s Network Infrastructure Security Guidance report as well as CISA’s recently published Layering Network Security Through Segmentation infographic for assistance in hardening networks against cyber threats.
Network Infrastructure Security Guidance (PDF):
Layering Network Security Through Segmentation Infographic (PDF):
________________________________
CISA Adds 95 Known Exploited Vulnerabilities to Catalog
Situation
CISA has added 95 new vulnerabilities to its “Known Exploited Vulnerabilities Catalog”, based on evidence of active exploitation.
Problem
These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
Implication
Attackers are already exploiting these vulnerabilities to compromise systems and exfiltrate information.
Need
CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation as part of their vulnerability management practice.
FCEB agencies are required to remediate identified vulnerabilities in the “Known Exploited Vulnerabilities Catalogue”.
Note: Required according to “Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities”.
Link to CISA Notice:
Known Exploited Vulnerabilities Catalogue:
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Note: to view the newly added vulnerabilities in the catalog, click on the arrow on the of the “Date Added to Catalog” column, which will sort by descending dates.
Binding Operational Directive (BOD) 22-01:
https://www.cisa.gov/binding-operational-directive-22-01
________________________________
Cisco Releases Security Updates for Multiple Products
Situation
Cisco has released security updates to address vulnerabilities found in multiple products. Including Cisco Identity Services Engine RADIUS Service, Cisco Ultra Cloud Core – Subscriber Microservices Infrastructure (SMI) software, Cisco Expressway Series, and Cisco TelePresence Video Communication Server (VCS).
Problem
The vulnerabilities that were patched include remote read/write privilege, privilege escalation, and a denial of service ranging from a severity of Critical to High.
Implication
An remote attacker could exploit some of these vulnerabilities to take control of an affected device.
Need
The CISA encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates. Additional information can be found in the links below .
Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities:
Cisco Ultra Cloud Core – Subscriber Microservices Infrastructure Privilege Escalation Vulnerability:
Cisco Identity Services Engine RADIUS Service Denial of Service Vulnerability:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-dos-JLh9TxBp
________________________________
Google Releases Security Updates for Chrome
Situation
Google has released Chrome version 99.0.4844.51 for Windows, Mac, and Linux
Problem
Vulnerabilities include heap buffer overflow, use after free, out of bounds read, type confusion, and more.
Implication
An attacker can exploit these vulnerabilities to take control of the affected system.
Need
Apply the latest updates for Chrome when available.
For more information: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html