Search

Find a vulnerability

Search criteria

    10 vulnerabilities found for umbrella_virtual_appliance by cisco

    CVE-2026-20246 (GCVE-0-2026-20246)

    Vulnerability from nvd – Published: 2026-06-17 16:17 – Updated: 2026-06-17 17:17
    VLAI
    Title
    Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability
    Summary
    A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient validation of user-supplied commands. An attacker with vmadmin privileges could exploit this vulnerability by using certain commands at the CLI. A successful exploit could allow the attacker to elevate privileges to root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: 2.6.0
    Affected: 2.5.6
    Affected: 2.5
    Affected: 2.4.12
    Affected: 2.7
    Affected: 2.6.2
    Affected: 2.5.5
    Affected: 2.5.4
    Affected: 2.8
    Affected: 2.6.1
    Affected: 2.5.7
    Affected: 1.5.4
    Affected: 1.5.5
    Affected: 1.5.6
    Affected: 2.0.0
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.1.0
    Affected: 2.1.2
    Affected: 2.1.4
    Affected: 2.1.5
    Affected: 2.2
    Affected: 2.2.1
    Affected: 2.3
    Affected: 2.3.1
    Affected: 2.4
    Affected: 2.4.4
    Affected: 2.4.6
    Affected: 2.8.9
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 2.8.1
    Affected: 2.8.2
    Affected: 2.8.3
    Affected: 2.8.4
    Affected: 2.8.5
    Affected: 3.0.1
    Affected: 3.0.2
    Affected: 3.0.4
    Affected: 3.0.5
    Affected: 3.1.1
    Affected: 3.1.2
    Affected: 3.1.3
    Affected: 3.1.4
    Affected: 3.2.1
    Affected: 3.2.2
    Affected: 3.2.3
    Affected: 3.3
    Affected: 3.3.1
    Affected: 3.3.2
    Affected: 3.3.3
    Affected: 3.3.4
    Affected: 3.4
    Affected: 3.4.1
    Affected: 3.4.2
    Affected: 3.4.3
    Affected: 3.4.4
    Affected: 3.4.5
    Affected: 3.4.6
    Affected: 3.5
    Affected: 2.7.1
    Affected: 2.7.2
    Affected: 2.7.6
    Affected: 2.7.9
    Affected: 2.7.10
    Affected: 3.5.1
    Affected: 3.5.2
    Affected: 3.6.1
    Affected: 3.6.2
    Affected: 3.7
    Affected: 3.7.1
    Affected: 3.8.3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20246",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T17:15:44.900787Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-17T17:17:13.797Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.6.0"
                },
                {
                  "status": "affected",
                  "version": "2.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.4.12"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.6.2"
                },
                {
                  "status": "affected",
                  "version": "2.5.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.4"
                },
                {
                  "status": "affected",
                  "version": "2.8"
                },
                {
                  "status": "affected",
                  "version": "2.6.1"
                },
                {
                  "status": "affected",
                  "version": "2.5.7"
                },
                {
                  "status": "affected",
                  "version": "1.5.4"
                },
                {
                  "status": "affected",
                  "version": "1.5.5"
                },
                {
                  "status": "affected",
                  "version": "1.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.1.0"
                },
                {
                  "status": "affected",
                  "version": "2.1.2"
                },
                {
                  "status": "affected",
                  "version": "2.1.4"
                },
                {
                  "status": "affected",
                  "version": "2.1.5"
                },
                {
                  "status": "affected",
                  "version": "2.2"
                },
                {
                  "status": "affected",
                  "version": "2.2.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.3.1"
                },
                {
                  "status": "affected",
                  "version": "2.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.6"
                },
                {
                  "status": "affected",
                  "version": "2.8.9"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "2.8.1"
                },
                {
                  "status": "affected",
                  "version": "2.8.2"
                },
                {
                  "status": "affected",
                  "version": "2.8.3"
                },
                {
                  "status": "affected",
                  "version": "2.8.4"
                },
                {
                  "status": "affected",
                  "version": "2.8.5"
                },
                {
                  "status": "affected",
                  "version": "3.0.1"
                },
                {
                  "status": "affected",
                  "version": "3.0.2"
                },
                {
                  "status": "affected",
                  "version": "3.0.4"
                },
                {
                  "status": "affected",
                  "version": "3.0.5"
                },
                {
                  "status": "affected",
                  "version": "3.1.1"
                },
                {
                  "status": "affected",
                  "version": "3.1.2"
                },
                {
                  "status": "affected",
                  "version": "3.1.3"
                },
                {
                  "status": "affected",
                  "version": "3.1.4"
                },
                {
                  "status": "affected",
                  "version": "3.2.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.2"
                },
                {
                  "status": "affected",
                  "version": "3.2.3"
                },
                {
                  "status": "affected",
                  "version": "3.3"
                },
                {
                  "status": "affected",
                  "version": "3.3.1"
                },
                {
                  "status": "affected",
                  "version": "3.3.2"
                },
                {
                  "status": "affected",
                  "version": "3.3.3"
                },
                {
                  "status": "affected",
                  "version": "3.3.4"
                },
                {
                  "status": "affected",
                  "version": "3.4"
                },
                {
                  "status": "affected",
                  "version": "3.4.1"
                },
                {
                  "status": "affected",
                  "version": "3.4.2"
                },
                {
                  "status": "affected",
                  "version": "3.4.3"
                },
                {
                  "status": "affected",
                  "version": "3.4.4"
                },
                {
                  "status": "affected",
                  "version": "3.4.5"
                },
                {
                  "status": "affected",
                  "version": "3.4.6"
                },
                {
                  "status": "affected",
                  "version": "3.5"
                },
                {
                  "status": "affected",
                  "version": "2.7.1"
                },
                {
                  "status": "affected",
                  "version": "2.7.2"
                },
                {
                  "status": "affected",
                  "version": "2.7.6"
                },
                {
                  "status": "affected",
                  "version": "2.7.9"
                },
                {
                  "status": "affected",
                  "version": "2.7.10"
                },
                {
                  "status": "affected",
                  "version": "3.5.1"
                },
                {
                  "status": "affected",
                  "version": "3.5.2"
                },
                {
                  "status": "affected",
                  "version": "3.6.1"
                },
                {
                  "status": "affected",
                  "version": "3.6.2"
                },
                {
                  "status": "affected",
                  "version": "3.7"
                },
                {
                  "status": "affected",
                  "version": "3.7.1"
                },
                {
                  "status": "affected",
                  "version": "3.8.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected device.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied commands. An attacker with vmadmin privileges could exploit this vulnerability by using certain commands at the CLI. A successful exploit could allow the attacker to elevate privileges to root."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Improper Privilege Management",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:17:13.708Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-umbrella-priv-esc-F4wJB7AU",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-priv-esc-F4wJB7AU"
            }
          ],
          "source": {
            "advisory": "cisco-sa-umbrella-priv-esc-F4wJB7AU",
            "defects": [
              "CSCwt75291"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20246",
        "datePublished": "2026-06-17T16:17:13.708Z",
        "dateReserved": "2025-10-08T11:59:15.400Z",
        "dateUpdated": "2026-06-17T17:17:13.797Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-20922 (GCVE-0-2022-20922)

    Vulnerability from nvd – Published: 2022-11-10 17:37 – Updated: 2024-08-03 02:31
    VLAI
    Summary
    Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. These vulnerabilities are due to improper management of system resources when the Snort detection engine is processing SMB2 traffic. An attacker could exploit these vulnerabilities by sending a high rate of certain types of SMB2 packets through an affected device. A successful exploit could allow the attacker to trigger a reload of the Snort process, resulting in a DoS condition. Note: When the snort preserve-connection option is enabled for the Snort detection engine, a successful exploit could also allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. The snort preserve-connection setting is enabled by default. See the Details ["#details"] section of this advisory for more information. Note: Only products that have Snort 3 configured are affected. Products that are configured with Snort 2 are not affected.
    CWE
    • CWE-244 - Improper Clearing of Heap Memory Before Release ('Heap Inspection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Firepower Threat Defense Software Affected: 7.1.0
    Affected: 7.1.0.1
    Affected: 7.1.0.2
    Affected: 7.2.0
    Affected: 7.2.0.1
    Create a notification for this product.
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: 1.5.4
    Affected: 1.5.5
    Affected: 1.5.6
    Affected: 2.0.0
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.1.0
    Affected: 2.1.2
    Affected: 2.1.5
    Affected: 2.1.4
    Affected: 2.4.12
    Affected: 2.4.6
    Affected: 2.4
    Affected: 2.4.4
    Affected: 2.5
    Affected: 2.5.4
    Affected: 2.5.5
    Affected: 2.5.6
    Affected: 2.5.7
    Affected: 2.6.0
    Affected: 2.6.1
    Affected: 2.6.2
    Affected: 2.7
    Affected: 2.8
    Affected: 2.8.9
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 2.3.1
    Affected: 2.3
    Affected: 2.2
    Affected: 2.2.1
    Create a notification for this product.
    Cisco Cisco Cyber Vision Affected: 3.0.4
    Affected: 3.0.0
    Affected: 3.0.1
    Affected: 3.0.2
    Affected: 3.0.3
    Affected: 3.0.5
    Affected: 3.0.6
    Affected: 3.1.0
    Affected: 3.1.2
    Affected: 3.1.1
    Affected: 3.2.3
    Affected: 3.2.1
    Affected: 3.2.4
    Affected: 3.2.0
    Affected: 3.2.2
    Affected: 4.0.0
    Affected: 4.0.1
    Affected: 4.0.2
    Affected: 4.0.3
    Affected: 4.1.0
    Affected: 4.1.1
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:31:57.388Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-snort-smb-3nfhJtr",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-smb-3nfhJtr"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.1.0"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.0.1"
                }
              ]
            },
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.4"
                },
                {
                  "status": "affected",
                  "version": "1.5.5"
                },
                {
                  "status": "affected",
                  "version": "1.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.1.0"
                },
                {
                  "status": "affected",
                  "version": "2.1.2"
                },
                {
                  "status": "affected",
                  "version": "2.1.5"
                },
                {
                  "status": "affected",
                  "version": "2.1.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.12"
                },
                {
                  "status": "affected",
                  "version": "2.4.6"
                },
                {
                  "status": "affected",
                  "version": "2.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.4"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.4"
                },
                {
                  "status": "affected",
                  "version": "2.5.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.5.7"
                },
                {
                  "status": "affected",
                  "version": "2.6.0"
                },
                {
                  "status": "affected",
                  "version": "2.6.1"
                },
                {
                  "status": "affected",
                  "version": "2.6.2"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.8"
                },
                {
                  "status": "affected",
                  "version": "2.8.9"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "2.3.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.2"
                },
                {
                  "status": "affected",
                  "version": "2.2.1"
                }
              ]
            },
            {
              "product": "Cisco Cyber Vision",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.0.4"
                },
                {
                  "status": "affected",
                  "version": "3.0.0"
                },
                {
                  "status": "affected",
                  "version": "3.0.1"
                },
                {
                  "status": "affected",
                  "version": "3.0.2"
                },
                {
                  "status": "affected",
                  "version": "3.0.3"
                },
                {
                  "status": "affected",
                  "version": "3.0.5"
                },
                {
                  "status": "affected",
                  "version": "3.0.6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.2"
                },
                {
                  "status": "affected",
                  "version": "3.1.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.3"
                },
                {
                  "status": "affected",
                  "version": "3.2.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.4"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.2"
                },
                {
                  "status": "affected",
                  "version": "4.0.0"
                },
                {
                  "status": "affected",
                  "version": "4.0.1"
                },
                {
                  "status": "affected",
                  "version": "4.0.2"
                },
                {
                  "status": "affected",
                  "version": "4.0.3"
                },
                {
                  "status": "affected",
                  "version": "4.1.0"
                },
                {
                  "status": "affected",
                  "version": "4.1.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device.\r\n\r These vulnerabilities are due to improper management of system resources when the Snort detection engine is processing SMB2 traffic. An attacker could exploit these vulnerabilities by sending a high rate of certain types of SMB2 packets through an affected device. A successful exploit could allow the attacker to trigger a reload of the Snort process, resulting in a DoS condition.\r\n\r Note: When the snort preserve-connection option is enabled for the Snort detection engine, a successful exploit could also allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. The snort preserve-connection setting is enabled by default. See the Details [\"#details\"] section of this advisory for more information.\r\n\r Note: Only products that have Snort 3 configured are affected. Products that are configured with Snort 2 are not affected."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-244",
                  "description": "Improper Clearing of Heap Memory Before Release (\u0027Heap Inspection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:13.504Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-snort-smb-3nfhJtr",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-smb-3nfhJtr"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-smb-3nfhJtr",
            "defects": [
              "CSCwa55404",
              "CSCwb66736",
              "CSCwb87762",
              "CSCwb91454",
              "CSCwc37518",
              "CSCwc37339"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2022-20922",
        "datePublished": "2022-11-10T17:37:12.903Z",
        "dateReserved": "2021-11-02T13:28:29.190Z",
        "dateUpdated": "2024-08-03T02:31:57.388Z",
        "requesterUserId": "4087f8c1-b21c-479b-99df-de23cb76b743",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-20773 (GCVE-0-2022-20773)

    Vulnerability from nvd – Published: 2022-04-21 18:55 – Updated: 2024-11-06 16:21
    VLAI
    Title
    Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
    Summary
    A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2022-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:24:49.537Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-20773",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-06T16:00:11.220768Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-06T16:21:29.682Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2022-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-321",
                  "description": "CWE-321",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-04-21T18:55:16.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
            }
          ],
          "source": {
            "advisory": "cisco-sa-uva-static-key-6RQTRs4c",
            "defect": [
              [
                "CSCwa11399"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2022-04-20T16:00:00",
              "ID": "CVE-2022-20773",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Umbrella Insights Virtual Appliance",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "7.5",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-321"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-uva-static-key-6RQTRs4c",
              "defect": [
                [
                  "CSCwa11399"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2022-20773",
        "datePublished": "2022-04-21T18:55:16.531Z",
        "dateReserved": "2021-11-02T00:00:00.000Z",
        "dateUpdated": "2024-11-06T16:21:29.682Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-6679 (GCVE-0-2017-6679)

    Vulnerability from nvd – Published: 2017-12-01 00:00 – Updated: 2024-08-05 15:33
    VLAI
    Summary
    The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto initiated from the customer's appliance to Cisco's SSH Hubs in the Umbrella datacenters. These tunnels were primarily leveraged for remote support and allowed for authorized/authenticated personnel from the Cisco Umbrella team to access the appliance remotely and obtain full control without explicit customer approval. To address this vulnerability, the Umbrella Virtual Appliance version 2.1.0 now requires explicit customer approval before an SSH tunnel from the VA to the Cisco terminating server can be established.
    Severity
    No CVSS data available.
    CWE
    • undocumented encrypted remote support tunnel
    Assigner
    Impacted products
    Vendor Product Version
    n/a Cisco Umbrella Virtual Appliance Version 2.0.3 and prior Affected: Cisco Umbrella Virtual Appliance Version 2.0.3 and prior
    Date Public
    2017-12-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T15:33:20.478Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15"
              },
              {
                "name": "101567",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/101567"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.umbrella.com/hc/en-us/articles/115004154423"
              },
              {
                "name": "20230816 Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior"
                }
              ]
            }
          ],
          "datePublic": "2017-12-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto initiated from the customer\u0027s appliance to Cisco\u0027s SSH Hubs in the Umbrella datacenters. These tunnels were primarily leveraged for remote support and allowed for authorized/authenticated personnel from the Cisco Umbrella team to access the appliance remotely and obtain full control without explicit customer approval. To address this vulnerability, the Umbrella Virtual Appliance version 2.1.0 now requires explicit customer approval before an SSH tunnel from the VA to the Cisco terminating server can be established."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "undocumented encrypted remote support tunnel",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-08-17T18:06:50.353Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella.html"
            },
            {
              "url": "https://support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15"
            },
            {
              "name": "101567",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/101567"
            },
            {
              "url": "https://support.umbrella.com/hc/en-us/articles/115004154423"
            },
            {
              "name": "20230816 Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2017-6679",
        "datePublished": "2017-12-01T00:00:00.000Z",
        "dateReserved": "2017-03-09T00:00:00.000Z",
        "dateUpdated": "2024-08-05T15:33:20.478Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-12350 (GCVE-0-2017-12350)

    Vulnerability from nvd – Published: 2017-11-16 07:00 – Updated: 2024-08-05 18:36
    VLAI
    Summary
    A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Cisco Umbrella Insights Virtual Appliance Affected: Cisco Umbrella Insights Virtual Appliance
    Date Public
    2017-11-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T18:36:56.078Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
              },
              {
                "name": "101879",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/101879"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cisco Umbrella Insights Virtual Appliance"
                }
              ]
            }
          ],
          "datePublic": "2017-11-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-11-18T10:57:01.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
            },
            {
              "name": "101879",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/101879"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "ID": "CVE-2017-12350",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Umbrella Insights Virtual Appliance",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Cisco Umbrella Insights Virtual Appliance"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html",
                  "refsource": "MISC",
                  "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
                },
                {
                  "name": "101879",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/101879"
                },
                {
                  "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva",
                  "refsource": "CONFIRM",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2017-12350",
        "datePublished": "2017-11-16T07:00:00.000Z",
        "dateReserved": "2017-08-03T00:00:00.000Z",
        "dateUpdated": "2024-08-05T18:36:56.078Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-20246 (GCVE-0-2026-20246)

    Vulnerability from cvelistv5 – Published: 2026-06-17 16:17 – Updated: 2026-06-17 17:17
    VLAI
    Title
    Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability
    Summary
    A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient validation of user-supplied commands. An attacker with vmadmin privileges could exploit this vulnerability by using certain commands at the CLI. A successful exploit could allow the attacker to elevate privileges to root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: 2.6.0
    Affected: 2.5.6
    Affected: 2.5
    Affected: 2.4.12
    Affected: 2.7
    Affected: 2.6.2
    Affected: 2.5.5
    Affected: 2.5.4
    Affected: 2.8
    Affected: 2.6.1
    Affected: 2.5.7
    Affected: 1.5.4
    Affected: 1.5.5
    Affected: 1.5.6
    Affected: 2.0.0
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.1.0
    Affected: 2.1.2
    Affected: 2.1.4
    Affected: 2.1.5
    Affected: 2.2
    Affected: 2.2.1
    Affected: 2.3
    Affected: 2.3.1
    Affected: 2.4
    Affected: 2.4.4
    Affected: 2.4.6
    Affected: 2.8.9
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 2.8.1
    Affected: 2.8.2
    Affected: 2.8.3
    Affected: 2.8.4
    Affected: 2.8.5
    Affected: 3.0.1
    Affected: 3.0.2
    Affected: 3.0.4
    Affected: 3.0.5
    Affected: 3.1.1
    Affected: 3.1.2
    Affected: 3.1.3
    Affected: 3.1.4
    Affected: 3.2.1
    Affected: 3.2.2
    Affected: 3.2.3
    Affected: 3.3
    Affected: 3.3.1
    Affected: 3.3.2
    Affected: 3.3.3
    Affected: 3.3.4
    Affected: 3.4
    Affected: 3.4.1
    Affected: 3.4.2
    Affected: 3.4.3
    Affected: 3.4.4
    Affected: 3.4.5
    Affected: 3.4.6
    Affected: 3.5
    Affected: 2.7.1
    Affected: 2.7.2
    Affected: 2.7.6
    Affected: 2.7.9
    Affected: 2.7.10
    Affected: 3.5.1
    Affected: 3.5.2
    Affected: 3.6.1
    Affected: 3.6.2
    Affected: 3.7
    Affected: 3.7.1
    Affected: 3.8.3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20246",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T17:15:44.900787Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-17T17:17:13.797Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.6.0"
                },
                {
                  "status": "affected",
                  "version": "2.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.4.12"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.6.2"
                },
                {
                  "status": "affected",
                  "version": "2.5.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.4"
                },
                {
                  "status": "affected",
                  "version": "2.8"
                },
                {
                  "status": "affected",
                  "version": "2.6.1"
                },
                {
                  "status": "affected",
                  "version": "2.5.7"
                },
                {
                  "status": "affected",
                  "version": "1.5.4"
                },
                {
                  "status": "affected",
                  "version": "1.5.5"
                },
                {
                  "status": "affected",
                  "version": "1.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.1.0"
                },
                {
                  "status": "affected",
                  "version": "2.1.2"
                },
                {
                  "status": "affected",
                  "version": "2.1.4"
                },
                {
                  "status": "affected",
                  "version": "2.1.5"
                },
                {
                  "status": "affected",
                  "version": "2.2"
                },
                {
                  "status": "affected",
                  "version": "2.2.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.3.1"
                },
                {
                  "status": "affected",
                  "version": "2.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.6"
                },
                {
                  "status": "affected",
                  "version": "2.8.9"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "2.8.1"
                },
                {
                  "status": "affected",
                  "version": "2.8.2"
                },
                {
                  "status": "affected",
                  "version": "2.8.3"
                },
                {
                  "status": "affected",
                  "version": "2.8.4"
                },
                {
                  "status": "affected",
                  "version": "2.8.5"
                },
                {
                  "status": "affected",
                  "version": "3.0.1"
                },
                {
                  "status": "affected",
                  "version": "3.0.2"
                },
                {
                  "status": "affected",
                  "version": "3.0.4"
                },
                {
                  "status": "affected",
                  "version": "3.0.5"
                },
                {
                  "status": "affected",
                  "version": "3.1.1"
                },
                {
                  "status": "affected",
                  "version": "3.1.2"
                },
                {
                  "status": "affected",
                  "version": "3.1.3"
                },
                {
                  "status": "affected",
                  "version": "3.1.4"
                },
                {
                  "status": "affected",
                  "version": "3.2.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.2"
                },
                {
                  "status": "affected",
                  "version": "3.2.3"
                },
                {
                  "status": "affected",
                  "version": "3.3"
                },
                {
                  "status": "affected",
                  "version": "3.3.1"
                },
                {
                  "status": "affected",
                  "version": "3.3.2"
                },
                {
                  "status": "affected",
                  "version": "3.3.3"
                },
                {
                  "status": "affected",
                  "version": "3.3.4"
                },
                {
                  "status": "affected",
                  "version": "3.4"
                },
                {
                  "status": "affected",
                  "version": "3.4.1"
                },
                {
                  "status": "affected",
                  "version": "3.4.2"
                },
                {
                  "status": "affected",
                  "version": "3.4.3"
                },
                {
                  "status": "affected",
                  "version": "3.4.4"
                },
                {
                  "status": "affected",
                  "version": "3.4.5"
                },
                {
                  "status": "affected",
                  "version": "3.4.6"
                },
                {
                  "status": "affected",
                  "version": "3.5"
                },
                {
                  "status": "affected",
                  "version": "2.7.1"
                },
                {
                  "status": "affected",
                  "version": "2.7.2"
                },
                {
                  "status": "affected",
                  "version": "2.7.6"
                },
                {
                  "status": "affected",
                  "version": "2.7.9"
                },
                {
                  "status": "affected",
                  "version": "2.7.10"
                },
                {
                  "status": "affected",
                  "version": "3.5.1"
                },
                {
                  "status": "affected",
                  "version": "3.5.2"
                },
                {
                  "status": "affected",
                  "version": "3.6.1"
                },
                {
                  "status": "affected",
                  "version": "3.6.2"
                },
                {
                  "status": "affected",
                  "version": "3.7"
                },
                {
                  "status": "affected",
                  "version": "3.7.1"
                },
                {
                  "status": "affected",
                  "version": "3.8.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected device.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied commands. An attacker with vmadmin privileges could exploit this vulnerability by using certain commands at the CLI. A successful exploit could allow the attacker to elevate privileges to root."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "Improper Privilege Management",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:17:13.708Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-umbrella-priv-esc-F4wJB7AU",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-priv-esc-F4wJB7AU"
            }
          ],
          "source": {
            "advisory": "cisco-sa-umbrella-priv-esc-F4wJB7AU",
            "defects": [
              "CSCwt75291"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20246",
        "datePublished": "2026-06-17T16:17:13.708Z",
        "dateReserved": "2025-10-08T11:59:15.400Z",
        "dateUpdated": "2026-06-17T17:17:13.797Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-20922 (GCVE-0-2022-20922)

    Vulnerability from cvelistv5 – Published: 2022-11-10 17:37 – Updated: 2024-08-03 02:31
    VLAI
    Summary
    Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. These vulnerabilities are due to improper management of system resources when the Snort detection engine is processing SMB2 traffic. An attacker could exploit these vulnerabilities by sending a high rate of certain types of SMB2 packets through an affected device. A successful exploit could allow the attacker to trigger a reload of the Snort process, resulting in a DoS condition. Note: When the snort preserve-connection option is enabled for the Snort detection engine, a successful exploit could also allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. The snort preserve-connection setting is enabled by default. See the Details ["#details"] section of this advisory for more information. Note: Only products that have Snort 3 configured are affected. Products that are configured with Snort 2 are not affected.
    CWE
    • CWE-244 - Improper Clearing of Heap Memory Before Release ('Heap Inspection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Firepower Threat Defense Software Affected: 7.1.0
    Affected: 7.1.0.1
    Affected: 7.1.0.2
    Affected: 7.2.0
    Affected: 7.2.0.1
    Create a notification for this product.
    Cisco Cisco Umbrella Insights Virtual Appliance Affected: 1.5.4
    Affected: 1.5.5
    Affected: 1.5.6
    Affected: 2.0.0
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.1.0
    Affected: 2.1.2
    Affected: 2.1.5
    Affected: 2.1.4
    Affected: 2.4.12
    Affected: 2.4.6
    Affected: 2.4
    Affected: 2.4.4
    Affected: 2.5
    Affected: 2.5.4
    Affected: 2.5.5
    Affected: 2.5.6
    Affected: 2.5.7
    Affected: 2.6.0
    Affected: 2.6.1
    Affected: 2.6.2
    Affected: 2.7
    Affected: 2.8
    Affected: 2.8.9
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 2.3.1
    Affected: 2.3
    Affected: 2.2
    Affected: 2.2.1
    Create a notification for this product.
    Cisco Cisco Cyber Vision Affected: 3.0.4
    Affected: 3.0.0
    Affected: 3.0.1
    Affected: 3.0.2
    Affected: 3.0.3
    Affected: 3.0.5
    Affected: 3.0.6
    Affected: 3.1.0
    Affected: 3.1.2
    Affected: 3.1.1
    Affected: 3.2.3
    Affected: 3.2.1
    Affected: 3.2.4
    Affected: 3.2.0
    Affected: 3.2.2
    Affected: 4.0.0
    Affected: 4.0.1
    Affected: 4.0.2
    Affected: 4.0.3
    Affected: 4.1.0
    Affected: 4.1.1
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:31:57.388Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-snort-smb-3nfhJtr",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-smb-3nfhJtr"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Firepower Threat Defense Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.1.0"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.0.2"
                },
                {
                  "status": "affected",
                  "version": "7.2.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.0.1"
                }
              ]
            },
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "1.5.4"
                },
                {
                  "status": "affected",
                  "version": "1.5.5"
                },
                {
                  "status": "affected",
                  "version": "1.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.1.0"
                },
                {
                  "status": "affected",
                  "version": "2.1.2"
                },
                {
                  "status": "affected",
                  "version": "2.1.5"
                },
                {
                  "status": "affected",
                  "version": "2.1.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.12"
                },
                {
                  "status": "affected",
                  "version": "2.4.6"
                },
                {
                  "status": "affected",
                  "version": "2.4"
                },
                {
                  "status": "affected",
                  "version": "2.4.4"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.4"
                },
                {
                  "status": "affected",
                  "version": "2.5.5"
                },
                {
                  "status": "affected",
                  "version": "2.5.6"
                },
                {
                  "status": "affected",
                  "version": "2.5.7"
                },
                {
                  "status": "affected",
                  "version": "2.6.0"
                },
                {
                  "status": "affected",
                  "version": "2.6.1"
                },
                {
                  "status": "affected",
                  "version": "2.6.2"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.8"
                },
                {
                  "status": "affected",
                  "version": "2.8.9"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "2.3.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.2"
                },
                {
                  "status": "affected",
                  "version": "2.2.1"
                }
              ]
            },
            {
              "product": "Cisco Cyber Vision",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.0.4"
                },
                {
                  "status": "affected",
                  "version": "3.0.0"
                },
                {
                  "status": "affected",
                  "version": "3.0.1"
                },
                {
                  "status": "affected",
                  "version": "3.0.2"
                },
                {
                  "status": "affected",
                  "version": "3.0.3"
                },
                {
                  "status": "affected",
                  "version": "3.0.5"
                },
                {
                  "status": "affected",
                  "version": "3.0.6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.2"
                },
                {
                  "status": "affected",
                  "version": "3.1.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.3"
                },
                {
                  "status": "affected",
                  "version": "3.2.1"
                },
                {
                  "status": "affected",
                  "version": "3.2.4"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.2"
                },
                {
                  "status": "affected",
                  "version": "4.0.0"
                },
                {
                  "status": "affected",
                  "version": "4.0.1"
                },
                {
                  "status": "affected",
                  "version": "4.0.2"
                },
                {
                  "status": "affected",
                  "version": "4.0.3"
                },
                {
                  "status": "affected",
                  "version": "4.1.0"
                },
                {
                  "status": "affected",
                  "version": "4.1.1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device.\r\n\r These vulnerabilities are due to improper management of system resources when the Snort detection engine is processing SMB2 traffic. An attacker could exploit these vulnerabilities by sending a high rate of certain types of SMB2 packets through an affected device. A successful exploit could allow the attacker to trigger a reload of the Snort process, resulting in a DoS condition.\r\n\r Note: When the snort preserve-connection option is enabled for the Snort detection engine, a successful exploit could also allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. The snort preserve-connection setting is enabled by default. See the Details [\"#details\"] section of this advisory for more information.\r\n\r Note: Only products that have Snort 3 configured are affected. Products that are configured with Snort 2 are not affected."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-244",
                  "description": "Improper Clearing of Heap Memory Before Release (\u0027Heap Inspection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:13.504Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-snort-smb-3nfhJtr",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-smb-3nfhJtr"
            }
          ],
          "source": {
            "advisory": "cisco-sa-snort-smb-3nfhJtr",
            "defects": [
              "CSCwa55404",
              "CSCwb66736",
              "CSCwb87762",
              "CSCwb91454",
              "CSCwc37518",
              "CSCwc37339"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2022-20922",
        "datePublished": "2022-11-10T17:37:12.903Z",
        "dateReserved": "2021-11-02T13:28:29.190Z",
        "dateUpdated": "2024-08-03T02:31:57.388Z",
        "requesterUserId": "4087f8c1-b21c-479b-99df-de23cb76b743",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-20773 (GCVE-0-2022-20773)

    Vulnerability from cvelistv5 – Published: 2022-04-21 18:55 – Updated: 2024-11-06 16:21
    VLAI
    Title
    Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
    Summary
    A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://tools.cisco.com/security/center/content/C… vendor-advisoryx_refsource_CISCO
    Impacted products
    Date Public
    2022-04-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:24:49.537Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CISCO",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-20773",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-06T16:00:11.220768Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-06T16:21:29.682Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2022-04-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-321",
                  "description": "CWE-321",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-04-21T18:55:16.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
              "tags": [
                "vendor-advisory",
                "x_refsource_CISCO"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
            }
          ],
          "source": {
            "advisory": "cisco-sa-uva-static-key-6RQTRs4c",
            "defect": [
              [
                "CSCwa11399"
              ]
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "DATE_PUBLIC": "2022-04-20T16:00:00",
              "ID": "CVE-2022-20773",
              "STATE": "PUBLIC",
              "TITLE": "Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Umbrella Insights Virtual Appliance",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Cisco"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA."
                }
              ]
            },
            "exploit": [
              {
                "lang": "en",
                "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
              }
            ],
            "impact": {
              "cvss": {
                "baseScore": "7.5",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-321"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20220420 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability",
                  "refsource": "CISCO",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c"
                }
              ]
            },
            "source": {
              "advisory": "cisco-sa-uva-static-key-6RQTRs4c",
              "defect": [
                [
                  "CSCwa11399"
                ]
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2022-20773",
        "datePublished": "2022-04-21T18:55:16.531Z",
        "dateReserved": "2021-11-02T00:00:00.000Z",
        "dateUpdated": "2024-11-06T16:21:29.682Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-6679 (GCVE-0-2017-6679)

    Vulnerability from cvelistv5 – Published: 2017-12-01 00:00 – Updated: 2024-08-05 15:33
    VLAI
    Summary
    The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto initiated from the customer's appliance to Cisco's SSH Hubs in the Umbrella datacenters. These tunnels were primarily leveraged for remote support and allowed for authorized/authenticated personnel from the Cisco Umbrella team to access the appliance remotely and obtain full control without explicit customer approval. To address this vulnerability, the Umbrella Virtual Appliance version 2.1.0 now requires explicit customer approval before an SSH tunnel from the VA to the Cisco terminating server can be established.
    Severity
    No CVSS data available.
    CWE
    • undocumented encrypted remote support tunnel
    Assigner
    Impacted products
    Vendor Product Version
    n/a Cisco Umbrella Virtual Appliance Version 2.0.3 and prior Affected: Cisco Umbrella Virtual Appliance Version 2.0.3 and prior
    Date Public
    2017-12-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T15:33:20.478Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15"
              },
              {
                "name": "101567",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/101567"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.umbrella.com/hc/en-us/articles/115004154423"
              },
              {
                "name": "20230816 Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior"
                }
              ]
            }
          ],
          "datePublic": "2017-12-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto initiated from the customer\u0027s appliance to Cisco\u0027s SSH Hubs in the Umbrella datacenters. These tunnels were primarily leveraged for remote support and allowed for authorized/authenticated personnel from the Cisco Umbrella team to access the appliance remotely and obtain full control without explicit customer approval. To address this vulnerability, the Umbrella Virtual Appliance version 2.1.0 now requires explicit customer approval before an SSH tunnel from the VA to the Cisco terminating server can be established."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "undocumented encrypted remote support tunnel",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-08-17T18:06:50.353Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella.html"
            },
            {
              "url": "https://support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15"
            },
            {
              "name": "101567",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/101567"
            },
            {
              "url": "https://support.umbrella.com/hc/en-us/articles/115004154423"
            },
            {
              "name": "20230816 Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2017-6679",
        "datePublished": "2017-12-01T00:00:00.000Z",
        "dateReserved": "2017-03-09T00:00:00.000Z",
        "dateUpdated": "2024-08-05T15:33:20.478Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-12350 (GCVE-0-2017-12350)

    Vulnerability from cvelistv5 – Published: 2017-11-16 07:00 – Updated: 2024-08-05 18:36
    VLAI
    Summary
    A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Cisco Umbrella Insights Virtual Appliance Affected: Cisco Umbrella Insights Virtual Appliance
    Date Public
    2017-11-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T18:36:56.078Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
              },
              {
                "name": "101879",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/101879"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Umbrella Insights Virtual Appliance",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cisco Umbrella Insights Virtual Appliance"
                }
              ]
            }
          ],
          "datePublic": "2017-11-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-11-18T10:57:01.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
            },
            {
              "name": "101879",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/101879"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@cisco.com",
              "ID": "CVE-2017-12350",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Cisco Umbrella Insights Virtual Appliance",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Cisco Umbrella Insights Virtual Appliance"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulnerability is due to the presence of default, static user credentials for an affected virtual appliance. An attacker could exploit this vulnerability by using the hypervisor console to connect locally to an affected system and then using the static credentials to log in to an affected virtual appliance. A successful exploit could allow the attacker to log in to the affected appliance with root privileges. Cisco Bug IDs: CSCvg31220."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html",
                  "refsource": "MISC",
                  "url": "https://www.info-sec.ca/advisories/Cisco-Umbrella-Hardcoded-Credentials.html"
                },
                {
                  "name": "101879",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/101879"
                },
                {
                  "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva",
                  "refsource": "CONFIRM",
                  "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-uva"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2017-12350",
        "datePublished": "2017-11-16T07:00:00.000Z",
        "dateReserved": "2017-08-03T00:00:00.000Z",
        "dateUpdated": "2024-08-05T18:36:56.078Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }