Cisco ATA 190 Series Analog Telephone Adapter Firmware Flaws Exposed: Patch Now!

Cisco has recently disclosed a series of high-severity vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter firmware, including both on-premises and multiplatform variants. These vulnerabilities present a significant risk to affected devices, potentially allowing attackers to gain unauthorized access, manipulate device configurations, execute commands as a root user, and even cause denial of service (DoS).

The vulnerabilities, with varying severity levels, affect both the ATA 191 and ATA 192 models. One of the most critical flaws, identified as CVE-2024-20458, allows an unauthenticated attacker to view, delete, or even modify the device’s firmware. This vulnerability stems from “a lack of authentication on specific HTTP endpoints,” making it possible for attackers to exploit the flaw simply by accessing a specific URL.

Another serious vulnerability, CVE-2024-20459, enables an authenticated attacker with high privileges to execute arbitrary commands as the root user on the underlying operating system. This flaw exists due to “a lack of input sanitization in the web-based management interface.”

The advisory also details vulnerabilities that could allow attackers to:

• Perform cross-site scripting (XSS) attacks (CVE-2024-20460)
• Conduct cross-site request forgery (CSRF) attacks (CVE-2024-20421)
• Gain unauthorized access to passwords (CVE-2024-20462)
• Escalate privileges (CVE-2024-20420)

While there are no workarounds to completely address these vulnerabilities, Cisco has released firmware updates to patch the flaws. The company also notes that disabling the web-based management interface on Cisco ATA 191 on-premises firmware can mitigate some of the risks.

Cisco urges users to update their devices to the latest firmware versions immediately.

Related Posts:

• Cisco releases patch to fix three high security bugs
• Hackers use Cisco Router flaws to attack Iran, 3,500 routers hacked