Lucene search

CiscoCVE-2022-20925

HistoryNov 15, 2022 - 9:15 p.m.

CVE-2022-20925

2022-11-1521:15:32

CWE-78

CWE-77

cisco

web.nvd.nist.gov

cve

2022

20925

cisco

firepower management center

fmc

software

vulnerability

nvd

web management interface

authenticated attacker

remote attacker

arbitrary commands

api endpoints

insufficient validation

user-supplied parameters

device permissions

low system privileges

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON

A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system.

The vulnerability is due to insufficient validation of user-supplied parameters for certain API endpoints. An attacker could exploit this vulnerability by sending crafted input to an affected API endpoint. A successful exploit could allow an attacker to execute arbitrary commands on the device with low system privileges. To successfully exploit this vulnerability, an attacker would need valid credentials for a user with Device permissions: by default, only Administrators, Security Approvers and Network Admins user accounts have these permissions.

Affected configurations

Nvd

Node

ciscofirepower_management_centerMatch6.7.0

ciscofirepower_management_centerMatch6.7.0.1

ciscofirepower_management_centerMatch6.7.0.2

ciscofirepower_management_centerMatch6.7.0.3

ciscofirepower_management_centerMatch7.0.0

ciscofirepower_management_centerMatch7.0.0.1

ciscofirepower_management_centerMatch7.0.1

ciscofirepower_management_centerMatch7.0.1.1

ciscofirepower_management_centerMatch7.0.2

ciscofirepower_management_centerMatch7.0.2.1

ciscofirepower_management_centerMatch7.0.3

ciscofirepower_management_centerMatch7.0.4

ciscofirepower_management_centerMatch7.1.0

ciscofirepower_management_centerMatch7.1.0.1

ciscofirepower_management_centerMatch7.1.0.2

VendorProductVersionCPE
ciscofirepower_management_center6.7.0cpe:2.3:a:cisco:firepower_management_center:6.7.0:*:*:*:*:*:*:*
ciscofirepower_management_center6.7.0.1cpe:2.3:a:cisco:firepower_management_center:6.7.0.1:*:*:*:*:*:*:*
ciscofirepower_management_center6.7.0.2cpe:2.3:a:cisco:firepower_management_center:6.7.0.2:*:*:*:*:*:*:*
ciscofirepower_management_center6.7.0.3cpe:2.3:a:cisco:firepower_management_center:6.7.0.3:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.0cpe:2.3:a:cisco:firepower_management_center:7.0.0:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.0.1cpe:2.3:a:cisco:firepower_management_center:7.0.0.1:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.1cpe:2.3:a:cisco:firepower_management_center:7.0.1:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.1.1cpe:2.3:a:cisco:firepower_management_center:7.0.1.1:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.2cpe:2.3:a:cisco:firepower_management_center:7.0.2:*:*:*:*:*:*:*
ciscofirepower_management_center7.0.2.1cpe:2.3:a:cisco:firepower_management_center:7.0.2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	firepower_management_center	6.7.0	cpe:2.3:a:cisco:firepower_management_center:6.7.0:::::::*
cisco	firepower_management_center	6.7.0.1	cpe:2.3:a:cisco:firepower_management_center:6.7.0.1:::::::*
cisco	firepower_management_center	6.7.0.2	cpe:2.3:a:cisco:firepower_management_center:6.7.0.2:::::::*
cisco	firepower_management_center	6.7.0.3	cpe:2.3:a:cisco:firepower_management_center:6.7.0.3:::::::*
cisco	firepower_management_center	7.0.0	cpe:2.3:a:cisco:firepower_management_center:7.0.0:::::::*
cisco	firepower_management_center	7.0.0.1	cpe:2.3:a:cisco:firepower_management_center:7.0.0.1:::::::*
cisco	firepower_management_center	7.0.1	cpe:2.3:a:cisco:firepower_management_center:7.0.1:::::::*
cisco	firepower_management_center	7.0.1.1	cpe:2.3:a:cisco:firepower_management_center:7.0.1.1:::::::*
cisco	firepower_management_center	7.0.2	cpe:2.3:a:cisco:firepower_management_center:7.0.2:::::::*
cisco	firepower_management_center	7.0.2.1	cpe:2.3:a:cisco:firepower_management_center:7.0.2.1:::::::*

Rows per page:

1-10 of 151

CNA Affected

[
  {
    "vendor": "Cisco",
    "product": "Cisco Firepower Management Center",
    "versions": [
      {
        "version": "6.7.0",
        "status": "affected"
      },
      {
        "version": "6.7.0.1",
        "status": "affected"
      },
      {
        "version": "6.7.0.2",
        "status": "affected"
      },
      {
        "version": "6.7.0.3",
        "status": "affected"
      },
      {
        "version": "7.0.0",
        "status": "affected"
      },
      {
        "version": "7.0.0.1",
        "status": "affected"
      },
      {
        "version": "7.0.1",
        "status": "affected"
      },
      {
        "version": "7.0.1.1",
        "status": "affected"
      },
      {
        "version": "7.0.2",
        "status": "affected"
      },
      {
        "version": "7.0.2.1",
        "status": "affected"
      },
      {
        "version": "7.0.3",
        "status": "affected"
      },
      {
        "version": "7.0.4",
        "status": "affected"
      },
      {
        "version": "7.1.0",
        "status": "affected"
      },
      {
        "version": "7.1.0.1",
        "status": "affected"
      },
      {
        "version": "7.1.0.2",
        "status": "affected"
      }
    ]
  }
]

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-Z3B5MY35

Social References

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON

Related for CVE-2022-20925