|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Cryptocurrency News Articles
Versa Director Flaw Leads to API Exploit, Affects SD-WAN Customers
Sep 25, 2024 at 04:08 am
Vulnerabilities in Versa Director are never a small matter, as the platform manages network configurations for Versa's SD-WAN software
A vulnerability in Versa Networks’ Versa Director, used by internet service providers (ISPs) and managed service providers (MSPs) to manage network configurations for Versa’s SD-WAN software, has been disclosed by the Cybersecurity and Infrastructure Security Agency (CISA). The vulnerability, tracked as CVE-2024-45229, is rated 6.6 in severity and affects five versions of the software.
Organizations using vulnerable versions are advised to take immediate action to protect their networks by upgrading to a newer version. The advisory follows a high-severity vulnerability last month, CVE-2024-39717, which was used to attack downstream customers in a supply chain attack.
Cyble’s ODIN scanner currently shows 73 internet-exposed Versa Director instances, though it is not clear how many of them contain the latest vulnerability.
Versa Director Flaw Leads to API Exploit
Versa Director’s REST APIs are designed to facilitate automation and streamline operations through a unified interface, enabling IT teams to configure and monitor their network systems more efficiently. However, a flaw in the implementation of these APIs allows for improper input validation, Cyble threat intelligence researchers explained in a blog post.
The APIs in question are designed to not require authentication by default, making them accessible to anyone with network connectivity. An attacker could exploit this vulnerability by sending a specially crafted GET request to a Versa Director instance that is directly connected to the internet.
“For Versa Directors connected directly to the Internet, attackers could potentially exploit this vulnerability by injecting invalid arguments into a GET request,” Cyble said. “This could expose authentication tokens of currently logged-in users, which can then be used to access additional APIs on port 9183.”
While the exploit itself does not reveal user credentials, “the implications of token exposure could lead to broader security breaches.”
“The exposure of these tokens can allow attackers to access additional APIs,” Cyble said. “Such unauthorized access could facilitate broader security breaches, potentially impacting sensitive data and operational integrity.”
Versa suggests that a web application firewall (WAF) or API gateway could be used to protect internet-exposed Versa Director instances by blocking access to the URLs of the vulnerable APIs (/vnms/devicereg/device/* on ports 9182 and 9183 and /versa/vnms/devicereg/device/* on port 443).
Affected Versa Director Versions
The vulnerability affects multiple versions of Versa Director, specifically those released before Sept. 9, 2024. This includes versions 22.1.4, 22.1.3, and 22.1.2, as well as all versions of 22.1.1, 21.2.3, and 21.2.2.
Versions released on Sept. 12 and later contain a hot fix for the vulnerability.
The flaw primarily stems from APIs that, by design, do not require authentication. These include interfaces for logging in, displaying banners, and registering devices.
Cyble Recommendations
Cyble researchers recommend the following mitigations and best practices for protecting Versa Director instances:
Disclaimer:info@kdj.com
The information provided is not trading advice. kdj.com does not assume any responsibility for any investments made based on the information provided in this article. Cryptocurrencies are highly volatile and it is highly recommended that you invest with caution after thorough research!
If you believe that the content used on this website infringes your copyright, please contact us immediately (info@kdj.com) and we will delete it promptly.
-
- CET: The Native Token of the CoinEx Cryptocurrency Exchange
- Sep 25, 2024 at 10:30 am
- CET is the native token of one of the leading cryptocurrency exchanges, CoinEx. It is an ERC-20 token based on the Ethereum network that was launched in 2018.
-
- Dogecoin ($DOGE) Primed to Hit $1 By December This Year, Market Analyst Master Kenobi Predicts
- Sep 25, 2024 at 10:25 am
- The early aftermath of the current Federal Reserve (Fed) interest rate cuts has been constructive for the final crypto business as main property like Dogecoin have been displaying optimistic sentiment.
-
- IMX Token Price Prediction: Can It Break the $2 Resistance Level and Rally Higher?
- Sep 25, 2024 at 10:25 am
- Over the past 24 hours, IMX has jumped an impressive 12.14%, reaching a price of $1.81. This upswing has stirred speculation about whether the token can break through a key resistance level of $2.
-
- How to Play Local Multiplayer in Marvel Vs. Capcom Fighting Collection: Arcade Classics
- Sep 25, 2024 at 10:15 am
- There's no separate versus mode in this compilation. These arcade classics were designed with a primary mode where you feed quarters to try your luck against the CPU.
-
- Bitcoin (BTC) Market Value to Realized Value (MVRV) Ratio Hints at an Upcoming Shift in Momentum
- Sep 25, 2024 at 10:15 am
- Ever since the United States announced its latest interest rate cut, Bitcoin [BTC] experienced a gradual rebound in price. The cryptocurrency surged to a peak of over $64,000 on the 23rd of September, gaining 8.5% in value over the last week.
-
- Bitget Announces Price Prediction Contest Ahead of Hamster Kombat Coin Listing
- Sep 25, 2024 at 10:15 am
- The contest invites participants to predict the highest HMSTR coin price during its first 24 hours of trading. The winner of the contest will receive $100 in HMSTR tokens if their prediction is the closest to the actual price.
-
- Solana (SOL) Poised for a Massive Upside Rally Targeting $165 After Its Consolidation Breakout
- Sep 25, 2024 at 10:15 am
- Solana (SOL), the fifth-biggest cryptocurrency by market cap appears bullish and poised for a massive upside rally following its consolidation breakout.
-
- RCO Finance: The Under the Radar Cardano (ADA) Alternative
- Sep 25, 2024 at 10:15 am
- Amidst the uncertainty surrounding Cardano (ADA), RCO Finance presents the perfect opportunity for investors to hedge their investments and make significant returns.
-
- EverValue Announces Upcoming Presale of Its EVA Token, Combining Bitcoin-Backed Stability with Innovative Features
- Sep 25, 2024 at 10:15 am
- Unlike traditional platforms, EverValue allows investors to maintain full control of their tokens, without relying on third-party storage solutions.