Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2019-12674
HistoryOct 02, 2019 - 7:15 p.m.

CVE-2019-12674

2019-10-0219:15:12
CWE-116
CWE-216
[email protected]
web.nvd.nist.gov
22
cve-2019-12674
cisco
firepower threat defense
ftd
software
vulnerabilities
local attacker
container escape
root privileges
filesystem protections

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace. These vulnerabilities are due to insufficient protections on the underlying filesystem. An attacker could exploit these vulnerabilities by modifying critical files on the underlying filesystem. A successful exploit could allow the attacker to execute commands with root privileges within the host namespace. This could allow the attacker to impact other running FTD instances.

Affected configurations

NVD
Node
ciscofirepower_threat_defenseRange<6.4.0.2
Node
ciscofirepower_9300_firmwareMatch-
AND
ciscofirepower_9300Match-
Node
ciscofirepower_4115_firmwareMatch-
AND
ciscofirepower_4115Match-
Node
ciscofirepower_4125_firmwareMatch-
AND
ciscofirepower_4125Match-
Node
ciscofirepower_4145_firmwareMatch-
AND
ciscofirepower_4145Match-
Node
ciscofirepower_4110_firmwareMatch-
AND
ciscofirepower_4110Match-
Node
ciscofirepower_4120_firmwareMatch-
AND
ciscofirepower_4120Match-
Node
ciscofirepower_4140_firmwareMatch-
AND
ciscofirepower_4140Match-
Node
ciscofirepower_4150_firmwareMatch-
AND
ciscofirepower_4150Match-

CNA Affected

[
  {
    "product": "Cisco Firepower Threat Defense Software ",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "n/a",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

cvelist 1
nvd 1
prion 1
cisco 1
cvelist
cvelist
CVE-2019-12674 Cisco Firepower Threat Defense Software Multi-instance Container Escape Vulnerabilities
2019-10-02 00:00:00
nvd
nvd
CVE-2019-12674
2019-10-02 19:15:12
prion
prion
Design/Logic Flaw
2019-10-02 19:15:00
cisco
cisco
Cisco Firepower Threat Defense Software Multi-instance Container Escape Vulnerabilities
2019-10-02 16:00:00

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2019-12674
cvelist1nvd1prion1cisco1