Details of VAR-202211-0652

ID

VAR-202211-0652

CVE

CVE-2022-20925

TITLE

Cisco Systems Cisco Firepower Management Center Software In OS Command injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2022-022937

DESCRIPTION

A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. The vulnerability is due to insufficient validation of user-supplied parameters for certain API endpoints. An attacker could exploit this vulnerability by sending crafted input to an affected API endpoint. A successful exploit could allow an attacker to execute arbitrary commands on the device with low system privileges. To successfully exploit this vulnerability, an attacker would need valid credentials for a user with Device permissions: by default, only Administrators, Security Approvers and Network Admins user accounts have these permissions. (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2022-20925 // JVNDB: JVNDB-2022-022937 // VULHUB: VHN-405478

AFFECTED PRODUCTS

vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.0.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.1.0.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.1.0.2	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.0	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.4	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.1.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	6.7.0.3	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.2.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	6.7.0.1	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.1.0	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.3	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	6.7.0.2	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	7.0.2	Trust: 1.0
vendor:	cisco	model:	firepower management center	scope:	eq	version:	6.7.0	Trust: 1.0
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	6.7.0.2	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.1.0.2	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.2	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.2.1	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.0	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.4	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.1.0	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.0.1	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.3	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	6.7.0.3	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	6.7.0.1	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.1	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.1.0.1	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	6.7.0	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco firepower management center software	scope:	eq	version:	7.0.1.1	Trust: 0.8

sources: JVNDB: JVNDB-2022-022937 // NVD: CVE-2022-20925

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-20925
value:	HIGH
Trust: 1.0
ykramarz@cisco.com:	CVE-2022-20925
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2022-20925
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202211-2490
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2022-20925
baseSeverity:	HIGH
baseScore:	7.2
vectorString:	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.2
impactScore:	5.9
version:	3.1
Trust: 1.0
ykramarz@cisco.com:	CVE-2022-20925
baseSeverity:	MEDIUM
baseScore:	6.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	LOW
exploitabilityScore:	2.8
impactScore:	3.4
version:	3.1
Trust: 1.0
NVD:	CVE-2022-20925
baseSeverity:	HIGH
baseScore:	7.2
vectorString:	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925 // NVD: CVE-2022-20925

PROBLEMTYPE DATA

problemtype:	CWE-77	Trust: 1.1
problemtype:	CWE-78	Trust: 1.0
problemtype:	OS Command injection (CWE-78) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // NVD: CVE-2022-20925

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202211-2490

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-202211-2490

PATCH

title:	cisco-sa-fmc-cmd-inj-Z3B5MY35	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-Z3B5MY35	Trust: 0.8
title:	Cisco Firepower Management Center Fixes for command injection vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=215058	Trust: 0.6

sources: JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490

EXTERNAL IDS

db:	NVD	id:	CVE-2022-20925	Trust: 3.3
db:	JVNDB	id:	JVNDB-2022-022937	Trust: 0.8
db:	CNNVD	id:	CNNVD-202211-2490	Trust: 0.6
db:	VULHUB	id:	VHN-405478	Trust: 0.1

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2022-20925	Trust: 1.4
url:	https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35	Trust: 1.0
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35	Trust: 0.7
url:	https://cxsecurity.com/cveshow/cve-2022-20925/	Trust: 0.6

sources: VULHUB: VHN-405478 // JVNDB: JVNDB-2022-022937 // CNNVD: CNNVD-202211-2490 // NVD: CVE-2022-20925

SOURCES

db:	VULHUB	id:	VHN-405478
db:	JVNDB	id:	JVNDB-2022-022937
db:	CNNVD	id:	CNNVD-202211-2490
db:	NVD	id:	CVE-2022-20925

LAST UPDATE DATE

2024-08-14T15:06:04.655000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-405478	date:	2022-11-22T00:00:00
db:	JVNDB	id:	JVNDB-2022-022937	date:	2023-11-21T07:57:00
db:	CNNVD	id:	CNNVD-202211-2490	date:	2022-11-22T00:00:00
db:	NVD	id:	CVE-2022-20925	date:	2024-01-25T17:15:19.193

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-405478	date:	2022-11-15T00:00:00
db:	JVNDB	id:	JVNDB-2022-022937	date:	2023-11-21T00:00:00
db:	CNNVD	id:	CNNVD-202211-2490	date:	2022-11-09T00:00:00
db:	NVD	id:	CVE-2022-20925	date:	2022-11-15T21:15:32.323