{ "document" : { "aggregate_severity" : { "text" : "hoch" }, "category" : "csaf_base", "csaf_version" : "2.0", "distribution" : { "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "de-DE", "notes" : [ { "category" : "legal_disclaimer", "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen." }, { "category" : "description", "text" : "Cisco Internetwork Operating System (IOS) ist ein Betriebssystem, das für Cisco Geräte wie z. B. Router und Switches eingesetzt wird.\r\nCatalyst ist der Markenname für eine Vielzahl von Netzwerk-Switches die von Cisco Systems verkauft werden.", "title" : "Produktbeschreibung" }, { "category" : "summary", "text" : "Ein Angreifer kann mehrere Schwachstellen in Cisco IOS XE, Cisco IOS und Cisco Catalyst ausnutzen, um sich erweiterte Rechte zu verschaffen, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, Cross-Site-Scripting-Angriffe durchzuführen, Daten zu manipulieren, vertrauliche Informationen offenzulegen und einen Denial-of-Service-Zustand herbeizuführen.", "title" : "Angriff" }, { "category" : "general", "text" : "- CISCO Appliance", "title" : "Betroffene Betriebssysteme" } ], "publisher" : { "category" : "other", "contact_details" : "csaf-provider@cert-bund.de", "name" : "Bundesamt für Sicherheit in der Informationstechnik", "namespace" : "https://www.bsi.bund.de" }, "references" : [ { "category" : "self", "summary" : "WID-SEC-W-2026-0874 - CSAF Version", "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0874.json" }, { "category" : "self", "summary" : "WID-SEC-2026-0874 - Portal Version", "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0874" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iosxe-tls-dos-TVgLDEZL vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-tls-dos-TVgLDEZL" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-scp-dos-duAdXtCg vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-scp-dos-duAdXtCg" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-bootp-WuBhNBxA vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bootp-WuBhNBxA" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-wlc-dos-hnX5KGOm vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-dos-hnX5KGOm" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-xe-secureboot-bypass-B6uYxYSZ vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xe-secureboot-bypass-B6uYxYSZ" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iosxe-mntc-dos-LZweQcyq vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-mntc-dos-LZweQcyq" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iox-xss-LpGkzwtJ vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-xss-LpGkzwtJ" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iox-crlf-NvgKTKJZ vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-crlf-NvgKTKJZ" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iosxe-lobby-privesc-KwxBqJy vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-lobby-privesc-KwxBqJy" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-iosxe_infodis-6J847uEB vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe_infodis-6J847uEB" }, { "category" : "external", "summary" : "Cisco Security Advisory cisco-sa-ios-http-dos-sbv8XRpL vom 2026-03-25", "url" : "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-http-dos-sbv8XRpL" }, { "category" : "external", "summary" : "OPSWAT Blog vom 2026-03-25", "url" : "https://www.opswat.com/blog/from-privilege-escalation-to-full-denial-of-service-exploit-chain-across-multiple-cves-in-cisco-catalyst-devices-discovered-by-opswat-unit-515" } ], "source_lang" : "en-US", "title" : "Cisco IOS und IOS XE Software: Mehrere Schwachstellen", "tracking" : { "current_release_date" : "2026-03-25T23:00:00.000+00:00", "generator" : { "date" : "2026-03-26T10:55:56.869+00:00", "engine" : { "name" : "BSI-WID", "version" : "1.5.0" } }, "id" : "WID-SEC-W-2026-0874", "initial_release_date" : "2026-03-25T23:00:00.000+00:00", "revision_history" : [ { "date" : "2026-03-25T23:00:00.000+00:00", "number" : "1", "summary" : "Initiale Fassung" } ], "status" : "final", "version" : "1" } }, "product_tree" : { "branches" : [ { "branches" : [ { "category" : "product_name", "name" : "Cisco Catalyst", "product" : { "name" : "Cisco Catalyst", "product_id" : "T052163", "product_identification_helper" : { "cpe" : "cpe:/h:cisco:catalyst:-" } } }, { "branches" : [ { "category" : "product_version", "name" : "Software Release 3E", "product" : { "name" : "Cisco IOS Software Release 3E", "product_id" : "T052170", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios:software_release_3e" } } } ], "category" : "product_name", "name" : "IOS" }, { "branches" : [ { "category" : "product_name", "name" : "Cisco IOS XE", "product" : { "name" : "Cisco IOS XE", "product_id" : "T052154", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:-" } } }, { "category" : "product_version", "name" : "Lobby Ambassador", "product" : { "name" : "Cisco IOS XE Lobby Ambassador", "product_id" : "T052155", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:lobby_ambassador" } } }, { "category" : "product_version", "name" : "Catalyst 9000 Switches", "product" : { "name" : "Cisco IOS XE Catalyst 9000 Switches", "product_id" : "T052156", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:catalyst_9000_switches" } } }, { "category" : "product_version", "name" : "Wireless Controller Catalyst CW9800", "product" : { "name" : "Cisco IOS XE Wireless Controller Catalyst CW9800", "product_id" : "T052157", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:wireless_controller_catalyst_cw9800" } } }, { "category" : "product_version", "name" : "Catalyst", "product" : { "name" : "Cisco IOS XE Catalyst", "product_id" : "T052158", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:catalyst" } } }, { "category" : "product_version", "name" : "Rugged Series Switch", "product" : { "name" : "Cisco IOS XE Rugged Series Switch", "product_id" : "T052159", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:rugged_series_switch" } } }, { "category" : "product_version", "name" : "IOx Application", "product" : { "name" : "Cisco IOS XE IOx Application", "product_id" : "T052160", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:iox_application" } } }, { "category" : "product_version", "name" : "Secure Channel for Meraki", "product" : { "name" : "Cisco IOS XE Secure Channel for Meraki", "product_id" : "T052161", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:secure_channel_for_meraki" } } }, { "category" : "product_version", "name" : "Software Release 3E", "product" : { "name" : "Cisco IOS XE Software Release 3E", "product_id" : "T052171", "product_identification_helper" : { "cpe" : "cpe:/o:cisco:ios_xe:software_release_3e" } } } ], "category" : "product_name", "name" : "IOS XE" } ], "category" : "vendor", "name" : "Cisco" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2026-20004", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20004" }, { "cve" : "CVE-2026-20084", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20084" }, { "cve" : "CVE-2026-20086", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20086" }, { "cve" : "CVE-2026-20104", "product_status" : { "known_affected" : [ "T052163", "T052159", "T052158" ] }, "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20104" }, { "cve" : "CVE-2026-20112", "product_status" : { "known_affected" : [ "T052160" ] }, "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20112" }, { "cve" : "CVE-2026-20113", "product_status" : { "known_affected" : [ "T052160" ] }, "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20113" }, { "cve" : "CVE-2026-20114", "product_status" : { "known_affected" : [ "T052154" ] }, "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20114" }, { "cve" : "CVE-2026-20115", "product_status" : { "known_affected" : [ "T052154" ] }, "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20115" }, { "cve" : "CVE-2026-20125", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20125" }, { "cve" : "CVE-2026-20083", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20083" }, { "cve" : "CVE-2026-20110", "release_date" : "2026-03-25T23:00:00.000+00:00", "title" : "CVE-2026-20110" } ] }