ID

VAR-201910-0329


CVE

CVE-2019-12675


TITLE

Cisco Firepower Threat Defense Software encoding and escaping vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2019-010357

DESCRIPTION

Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace. These vulnerabilities are due to insufficient protections on the underlying filesystem. An attacker could exploit these vulnerabilities by modifying critical files on the underlying filesystem. A successful exploit could allow the attacker to execute commands with root privileges within the host namespace. This could allow the attacker to impact other running FTD instances. Cisco Firepower Threat Defense (FTD) The software contains encoding and escaping vulnerabilities.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. A security vulnerability exists in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software in Cisco Firepower 4100 Series Security Appliances and Firepower 9300 Series Security Appliances. The vulnerability stems from the fact that the program does not adequately protect the underlying file system

Trust: 1.71

sources: NVD: CVE-2019-12675 // JVNDB: JVNDB-2019-010357 // VULHUB: VHN-144445

AFFECTED PRODUCTS

vendor:ciscomodel:firepower threat defensescope:ltversion:6.4.0.2

Trust: 1.0

vendor:ciscomodel:firepower 4145scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4150scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 9300scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4140scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4125scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4110scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4120scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower 4115scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:firepower threat defense softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4110scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4115scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4120scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4125scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4140scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4145scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 4150scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower 9300scope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.0

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.1

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:5.3.0

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:5.4.0

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.1.3

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.1.2

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.0.1

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.0.1.1

Trust: 0.6

vendor:ciscomodel:firepower threat defensescope:eqversion: -

Trust: 0.6

sources: JVNDB: JVNDB-2019-010357 // CNNVD: CNNVD-201910-096 // NVD: CVE-2019-12675

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-12675
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2019-12675
value: HIGH

Trust: 1.0

NVD: CVE-2019-12675
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201910-096
value: HIGH

Trust: 0.6

VULHUB: VHN-144445
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2019-12675
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-144445
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-12675
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.0
impactScore: 6.0
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2019-12675
baseSeverity: HIGH
baseScore: 8.2
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.5
impactScore: 6.0
version: 3.0

Trust: 1.0

NVD: CVE-2019-12675
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-144445 // JVNDB: JVNDB-2019-010357 // CNNVD: CNNVD-201910-096 // NVD: CVE-2019-12675 // NVD: CVE-2019-12675

PROBLEMTYPE DATA

problemtype:CWE-116

Trust: 1.9

problemtype:CWE-216

Trust: 1.0

sources: VULHUB: VHN-144445 // JVNDB: JVNDB-2019-010357 // NVD: CVE-2019-12675

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201910-096

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-201910-096

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-010357

PATCH

title:cisco-sa-20191002-ftd-container-escurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-container-esc

Trust: 0.8

title:Cisco Firepower Threat Defense Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=98832

Trust: 0.6

sources: JVNDB: JVNDB-2019-010357 // CNNVD: CNNVD-201910-096

EXTERNAL IDS

db:NVDid:CVE-2019-12675

Trust: 2.5

db:JVNDBid:JVNDB-2019-010357

Trust: 0.8

db:CNNVDid:CNNVD-201910-096

Trust: 0.7

db:AUSCERTid:ESB-2019.3708

Trust: 0.6

db:VULHUBid:VHN-144445

Trust: 0.1

sources: VULHUB: VHN-144445 // JVNDB: JVNDB-2019-010357 // CNNVD: CNNVD-201910-096 // NVD: CVE-2019-12675

REFERENCES

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20191002-ftd-container-esc

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2019-12675

Trust: 1.4

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-12675

Trust: 0.8

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20191002-ftd-cmdinj

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.3708/

Trust: 0.6

sources: VULHUB: VHN-144445 // JVNDB: JVNDB-2019-010357 // CNNVD: CNNVD-201910-096 // NVD: CVE-2019-12675

SOURCES

db:VULHUBid:VHN-144445
db:JVNDBid:JVNDB-2019-010357
db:CNNVDid:CNNVD-201910-096
db:NVDid:CVE-2019-12675

LAST UPDATE DATE

2024-08-14T13:55:07.635000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-144445date:2019-10-09T00:00:00
db:JVNDBid:JVNDB-2019-010357date:2019-10-11T00:00:00
db:CNNVDid:CNNVD-201910-096date:2019-10-17T00:00:00
db:NVDid:CVE-2019-12675date:2019-10-09T23:46:03.043

SOURCES RELEASE DATE

db:VULHUBid:VHN-144445date:2019-10-02T00:00:00
db:JVNDBid:JVNDB-2019-010357date:2019-10-11T00:00:00
db:CNNVDid:CNNVD-201910-096date:2019-10-02T00:00:00
db:NVDid:CVE-2019-12675date:2019-10-02T19:15:12.203