{"id":2865,"date":"2023-10-25T15:15:50","date_gmt":"2023-10-25T07:15:50","guid":{"rendered":"https:\/\/blog.billows.com.tw\/?p=2865"},"modified":"2023-10-25T15:15:50","modified_gmt":"2023-10-25T07:15:50","slug":"cisa-%e5%9c%a8%e5%85%b6%e7%9f%a5%e9%81%ad%e6%bf%ab%e7%94%a8%e4%b9%8b%e6%bc%8f%e6%b4%9e%e6%b8%85%e5%96%ae%e4%b8%ad%e6%96%b0%e5%a2%9e%e4%ba%86%e7%ac%ac%e4%ba%8c%e5%80%8b-cisco-ios-xe-%e6%bc%8f%e6%b4%9e","status":"publish","type":"post","link":"https:\/\/blog.billows.com.tw\/?p=2865","title":{"rendered":"CISA \u5728\u5176\u77e5\u906d\u6feb\u7528\u4e4b\u6f0f\u6d1e\u6e05\u55ae\u4e2d\u65b0\u589e\u4e86\u7b2c\u4e8c\u500b CISCO IOS XE \u6f0f\u6d1e"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"548\" height=\"223\" src=\"https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2023\/10\/image-9.png\" alt=\"\" class=\"wp-image-2866\" srcset=\"https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2023\/10\/image-9.png 548w, https:\/\/blog.billows.com.tw\/wp-content\/uploads\/2023\/10\/image-9-300x122.png 300w\" sizes=\"auto, (max-width: 548px) 100vw, 548px\" \/><\/figure>\n\n\n\n<p>\u7f8e\u570b\u7db2\u8def\u5b89\u5168\u66a8\u57fa\u790e\u8a2d\u65bd\u5b89\u5168\u5c40\uff08CISA\uff09\u5c07Cisco IOS XE\u7684\u6f0f\u6d1eCVE-2023-20273\u65b0\u589e\u81f3\u5176\u5df2\u77e5\u88ab\u5229\u7528\u7684\u6f0f\u6d1e\u6e05\u55ae\u4e2d\u3002<\/p>\n\n\n\n<p>\u8a72\u6f0f\u6d1e\u662fCisco IOS XE\u7684Web UI\u4e2d\u4e00\u500b\u672a\u9810\u671f\u7684\u932f\u8aa4\uff0c\u653b\u64ca\u8005\u53ef\u4ee5\u5c07\u6b64\u6f0f\u6d1e\u8207CVE-2023-20198\u4e00\u8d77\u4f7f\u7528\uff0c\u4ee5\u5229\u7528\u65b0\u7684\u672c\u5730\u7528\u6236\u6b0a\u9650\u63d0\u5347\u5230root\u6b0a\u9650\u4e26\u5728\u6a94\u6848\u7cfb\u7d71\u690d\u5165\u60e1\u610f\u7a0b\u5f0f\u3002<\/p>\n\n\n\n<p>Cisco\u4e0a\u903110\/16\u901a\u77e5\u5ba2\u6236\u76ee\u524d\u5b58\u5728\u4e00\u500b\u88ab\u7a4d\u6975\u5229\u7528\u4f86\u9032\u884c\u653b\u64ca\u7684\u96f6\u65e5\u6f0f\u6d1e\uff0c\u8a72\u6f0f\u6d1e\u88ab\u6a19\u8a18\u70ba<a href=\"https:\/\/sec.cloudapps.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-iosxe-webui-privesc-j22SaA4z\">CVE-2023-20198\uff0c\u5176CVSS\u5206\u6578\u70ba10<\/a>\uff0c\u8a72\u6f0f\u6d1e\u4f4d\u65bcCisco IOS XE\u4f5c\u696d\u7cfb\u7d71\u7684\u7db2\u9801\u4f7f\u7528\u8005\u4ecb\u9762\uff0cCisco\u662f\u5728\u5176\u6280\u8853\u652f\u63f4\u4e2d\u5fc3\uff08TAC\uff09\u6240\u652f\u63f4\u7684\u591a\u500b\u6848\u4f8b\u4e2d\u767c\u73fe\u4e86\u9019\u500b\u6f0f\u6d1e\uff0c\u653b\u64ca\u8005\u53ef\u4ee5\u5229\u7528\u9019\u500b\u6f0f\u6d1e\u4f86\u7372\u5f97\u7ba1\u7406\u54e1\u6b0a\u9650\u4e26\u63a5\u7ba1\u90a3\u4e9b\u672a\u53d7\u5230\u59a5\u5584\u4fdd\u8b77\u7684\u8def\u7531\u5668\u3002<\/p>\n\n\n\n<p>\u5728\u8abf\u67e5\u5229\u7528CVE-2023-20198\u6f0f\u6d1e\u7684\u76f8\u95dc\u653b\u64ca\u6642\uff0cCisco\u6ce8\u610f\u5230\u5df2\u91dd\u5c0d\u6b64\u554f\u984c\u9032\u884c\u904e\u4fee\u88dc\u7684\u7cfb\u7d71\u518d\u6b21\u906d\u5230\u653b\u64ca\uff0c\u9019\u7a2e\u60c5\u6cc1\u986f\u793a\u5a01\u8105\u653b\u64ca\u8005\u6b63\u5728\u5229\u7528\u7b2c\u4e8c\u500b\u96f6\u65e5\u6f0f\u6d1e\u3002<\/p>\n\n\n\n<p>\u8a72\u516c\u53f8\u767c\u5e03\u7684\u516c\u544a\u4e2d\u6307\u51fa\uff0c\u7d93\u904e\u4ed6\u5011\u7684\u8abf\u67e5\uff0c\u78ba\u5b9a\u653b\u64ca\u8005\u5229\u7528\u4e86\u5169\u500b\u672a\u77e5\u7684\u6f0f\u6d1e\u9032\u884c\u4e86\u653b\u64ca\u884c\u70ba\u3002\u653b\u64ca\u8005\u9996\u5148\u5229\u7528CVE-2023-20198\u4f86\u7372\u5f97\u521d\u59cb\u8a2a\u554f\u6b0a\u9650\uff0c\u4e26\u4f7f\u7528\u7cfb\u7d71\u6700\u9ad8\u7684\u7b2c15\u7d1a\u6b0a\u9650\u4f86\u5275\u5efa\u65b0\u7684\u672c\u5730\u7528\u6236\u548c\u5bc6\u78bc\uff0c\u4e26\u4e14\u6709\u6b63\u5e38\u7684\u8a2a\u554f\u6b0a\u9650\u3002<\/p>\n\n\n\n<p>\u7136\u5f8c\uff0c\u653b\u64ca\u8005\u5229\u7528\u53e6\u4e00\u6f0f\u6d1e\uff0c\u900f\u904eWeb UI\u5c07\u65b0\u7684\u672c\u5730\u7528\u6236\u6b0a\u9650\u63d0\u5347\u5230root\u6b0a\u9650\u4e26\u5c07\u60e1\u610f\u7a0b\u5f0f\u5beb\u5165\u6a94\u6848\u7cfb\u7d71\u3002\u76ee\u524dCisco\u5df2\u5c07\u6b64\u4e8b\u4ef6\u5b9a\u70baCVE-2023-20273\uff0c\u5176CVSS\u5206\u6578\u70ba7.2\u3002<\/p>\n\n\n\n<p>\u7f8e\u570bCISA\u4e5f\u5df2\u767c\u5e03\u4e86\u8655\u7406CVE-2023-20198\u548cCVE-2023-20273\u6f0f\u6d1e\u7684\u76f8\u95dc<a href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2023\/10\/20\/cisa-releases-guidance-addressing-cisco-ios-xe-web-ui-vulnerabilities\">\u6307\u5357<\/a>\u3002\u6839\u64da\u5176\u516c\u544a\u65bc 2021 \u5e74 11 \u6708\u7684\u5177\u7d04\u675f\u529b\u64cd\u4f5c\u6307\u5f15 (binding operational directive) BOD 22-01 \u898f\u5b9a\uff0c\u5728 CISA \u516c\u5e03\u65b0\u7684\u5df2\u906d\u7528\u65bc\u653b\u64ca\u6f0f\u6d1e\u6642\uff0c\u6240\u6709\u7f8e\u570b\u806f\u90a6\u653f\u5e9c\u6c11\u4e8b\u6a5f\u95dc\uff0c\u90fd\u5fc5\u9808\u91dd\u5c0d\u76f8\u95dc\u6f0f\u6d1e\u9032\u884c\u8655\u7406\u3002\u64da\u6b64\uff0cCISA\u8981\u6c42\u806f\u90a6\u6a5f\u69cb\u57282023\u5e7410\u670827\u65e5\u4e4b\u524d\u4fee\u5fa9\u6b64\u6f0f\u6d1e\u3002<\/p>\n\n\n\n<p>\u76ee\u524d\u601d\u79d1\u5df2\u6b63\u5f0f\u767c\u4f48\u8edf\u9ad4\u66f4\u65b0\uff0c\u4ee5\u89e3\u6c7a Cisco IOS XE \u8edf\u9ad4\u7248\u672c 17.9 \u4e2d\u5169\u500b\u7d93\u5e38\u88ab\u5229\u7528\u7684\u5b89\u5168\u6f0f\u6d1e\uff0c\u4e26\u6b63\u5728\u4fee\u5fa9\u7248\u672c 17.6\u300117.3 \u548c 16.12\u3002<a href=\"https:\/\/www.cisco.com\/c\/en\/us\/support\/docs\/ios-nx-os-software\/ios-xe-dublin-17121\/221128-software-fix-availability-for-cisco-ios.html\">\u53ef\u4ee5\u5728\u6b64\u8655<\/a>\u5b58\u53d6\u5176\u4ed6\u767c\u5e03\u8cc7\u8a0a\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u7f8e\u570b\u7db2\u8def\u5b89\u5168\u66a8\u57fa\u790e\u8a2d\u65bd\u5b89\u5168\u5c40\uff08CISA\uff09\u5c07Cisco IOS XE\u7684\u6f0f\u6d1eCVE-2023-20273\u65b0\u589e\u81f3\u5176\u5df2 <a class=\"read-more\" href=\"https:\/\/blog.billows.com.tw\/?p=2865\">READ MORE<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[174],"class_list":["post-2865","post","type-post","status-publish","format-standard","hentry","category-6","tag-news"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/2865","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2865"}],"version-history":[{"count":1,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/2865\/revisions"}],"predecessor-version":[{"id":2867,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/2865\/revisions\/2867"}],"wp:attachment":[{"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2865"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2865"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.billows.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2865"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}