ID

VAR-202211-0652


CVE

CVE-2022-20925


TITLE

Cisco Systems  Cisco Firepower Management Center Software  In  OS  Command injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2022-022937

DESCRIPTION

A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. The vulnerability is due to insufficient validation of user-supplied parameters for certain API endpoints. An attacker could exploit this vulnerability by sending crafted input to an affected API endpoint. A successful exploit could allow an attacker to execute arbitrary commands on the device with low system privileges. To successfully exploit this vulnerability, an attacker would need valid credentials for a user with Device permissions: by default, only Administrators, Security Approvers and Network Admins user accounts have these permissions. (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2022-20925 // JVNDB: JVNDB-2022-022937 // VULHUB: VHN-405478

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0.2

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.4

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.1.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:6.7.0.3

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.2.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:6.7.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.3

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:6.7.0.2

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.2

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:6.7.0

Trust: 1.0

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:6.7.0.2

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0.2

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.2

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.2.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.0

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.4

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.3

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:6.7.0.3

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:6.7.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion: -

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:6.7.0

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.1.1

Trust: 0.8

sources: JVNDB: JVNDB-2022-022937 // NVD: CVE-2022-20925

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-20925
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2022-20925
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-20925
value: HIGH

Trust: 0.8

CNNVD: CNNVD-202211-2490
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2022-20925
baseSeverity: HIGH
baseScore: 7.2
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.2
impactScore: 5.9
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2022-20925
baseSeverity: MEDIUM
baseScore: 6.3
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: LOW
exploitabilityScore: 2.8
impactScore: 3.4
version: 3.1

Trust: 1.0

NVD: CVE-2022-20925
baseSeverity: HIGH
baseScore: 7.2
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925 // NVD: CVE-2022-20925

PROBLEMTYPE DATA

problemtype:CWE-77

Trust: 1.1

problemtype:CWE-78

Trust: 1.0

problemtype:OS Command injection (CWE-78) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // NVD: CVE-2022-20925

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202211-2490

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-202211-2490

PATCH

title:cisco-sa-fmc-cmd-inj-Z3B5MY35url:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-Z3B5MY35

Trust: 0.8

title:Cisco Firepower Management Center Fixes for command injection vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=215058

Trust: 0.6

sources: JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490

EXTERNAL IDS

db:NVDid:CVE-2022-20925

Trust: 3.3

db:JVNDBid:JVNDB-2022-022937

Trust: 0.8

db:CNNVDid:CNNVD-202211-2490

Trust: 0.6

db:VULHUBid:VHN-405478

Trust: 0.1

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925

REFERENCES

url:https://nvd.nist.gov/vuln/detail/cve-2022-20925

Trust: 1.4

url:https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35

Trust: 1.0

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35

Trust: 0.7

url:https://cxsecurity.com/cveshow/cve-2022-20925/

Trust: 0.6

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925

SOURCES

db:VULHUBid:VHN-405478
db:JVNDBid:JVNDB-2022-022937
db:CNNVDid:CNNVD-202211-2490
db:NVDid:CVE-2022-20925

LAST UPDATE DATE

2024-08-14T15:06:04.655000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-405478date:2022-11-22T00:00:00
db:JVNDBid:JVNDB-2022-022937date:2023-11-21T07:57:00
db:CNNVDid:CNNVD-202211-2490date:2022-11-22T00:00:00
db:NVDid:CVE-2022-20925date:2024-01-25T17:15:19.193

SOURCES RELEASE DATE

db:VULHUBid:VHN-405478date:2022-11-15T00:00:00
db:JVNDBid:JVNDB-2022-022937date:2023-11-21T00:00:00
db:CNNVDid:CNNVD-202211-2490date:2022-11-09T00:00:00
db:NVDid:CVE-2022-20925date:2022-11-15T21:15:32.323