ID

VAR-202211-0718


CVE

CVE-2022-20926


TITLE

Cisco Systems  Cisco Firepower Management Center Software  In  OS  Command injection vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2022-022936

DESCRIPTION

A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. The vulnerability is due to insufficient validation of user-supplied parameters for certain API endpoints. An attacker could exploit this vulnerability by sending crafted input to an affected API endpoint. A successful exploit could allow an attacker to execute arbitrary commands on the device with low system privileges. To successfully exploit this vulnerability, an attacker would need valid credentials for a user with Device permissions: by default, only Administrators, Security Approvers and Network Admins user accounts have these permissions. (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2022-20926 // JVNDB: JVNDB-2022-022936 // VULHUB: VHN-405479

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0.2

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.4

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.2.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.1.1

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.1.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.3

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:7.0.2

Trust: 1.0

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0.2

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.2

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.2.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.0

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.4

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.3

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion: -

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.1.0.1

Trust: 0.8

vendor:シスコシステムズmodel:cisco firepower management center softwarescope:eqversion:7.0.1.1

Trust: 0.8

sources: JVNDB: JVNDB-2022-022936 // NVD: CVE-2022-20926

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-20926
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2022-20926
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-20926
value: HIGH

Trust: 0.8

CNNVD: CNNVD-202211-2489
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2022-20926
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2022-20926
baseSeverity: MEDIUM
baseScore: 6.3
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: LOW
exploitabilityScore: 2.8
impactScore: 3.4
version: 3.1

Trust: 1.0

NVD: CVE-2022-20926
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2022-022936 // CNNVD: CNNVD-202211-2489 // NVD: CVE-2022-20926 // NVD: CVE-2022-20926

PROBLEMTYPE DATA

problemtype:CWE-77

Trust: 1.1

problemtype:CWE-78

Trust: 1.0

problemtype:OS Command injection (CWE-78) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-405479 // JVNDB: JVNDB-2022-022936 // NVD: CVE-2022-20926

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202211-2489

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-202211-2489

PATCH

title:cisco-sa-fmc-cmd-inj-Z3B5MY35url:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-Z3B5MY35

Trust: 0.8

title:Cisco Firepower Management Center Fixes for command injection vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=215057

Trust: 0.6

sources: JVNDB: JVNDB-2022-022936 // CNNVD: CNNVD-202211-2489

EXTERNAL IDS

db:NVDid:CVE-2022-20926

Trust: 3.3

db:JVNDBid:JVNDB-2022-022936

Trust: 0.8

db:CNNVDid:CNNVD-202211-2489

Trust: 0.6

db:VULHUBid:VHN-405479

Trust: 0.1

sources: VULHUB: VHN-405479 // JVNDB: JVNDB-2022-022936 // CNNVD: CNNVD-202211-2489 // NVD: CVE-2022-20926

REFERENCES

url:https://nvd.nist.gov/vuln/detail/cve-2022-20926

Trust: 1.4

url:https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35

Trust: 1.0

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-fmc-cmd-inj-z3b5my35

Trust: 0.7

url:https://cxsecurity.com/cveshow/cve-2022-20926/

Trust: 0.6

sources: VULHUB: VHN-405479 // JVNDB: JVNDB-2022-022936 // CNNVD: CNNVD-202211-2489 // NVD: CVE-2022-20926

SOURCES

db:VULHUBid:VHN-405479
db:JVNDBid:JVNDB-2022-022936
db:CNNVDid:CNNVD-202211-2489
db:NVDid:CVE-2022-20926

LAST UPDATE DATE

2024-08-14T14:30:52.002000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-405479date:2022-11-22T00:00:00
db:JVNDBid:JVNDB-2022-022936date:2023-11-21T07:55:00
db:CNNVDid:CNNVD-202211-2489date:2022-11-22T00:00:00
db:NVDid:CVE-2022-20926date:2024-01-25T17:15:19.320

SOURCES RELEASE DATE

db:VULHUBid:VHN-405479date:2022-11-15T00:00:00
db:JVNDBid:JVNDB-2022-022936date:2023-11-21T00:00:00
db:CNNVDid:CNNVD-202211-2489date:2022-11-09T00:00:00
db:NVDid:CVE-2022-20926date:2022-11-15T21:15:32.467