Vulnerability-Lookup

BDU:2022-07213

Vulnerability from fstec - Published: 09.11.2022

Title

Уязвимость интерфейса командной строки (CLI) микропрограммного обеспечения межсетевых экранов Cisco Firepower Threat Defense (FTD) и операционных систем Cisco FXOS устройств Cisco серии Firepower 4100 и Firepower 9300, позволяющая нарушителю выполнить произвольные команды

Description

Уязвимость интерфейса командной строки (CLI) микропрограммного обеспечения межсетевых экранов Cisco Firepower Threat Defense (FTD) и операционных систем Cisco FXOS устройств Cisco серии Firepower 4100 и Firepower 9300 связана с недостаточной проверкой аргументов команд. Эксплуатация уязвимости позволяет нарушителю выполнить произвольные команды

Severity ?


                    
                      AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Vendor

Cisco Systems Inc.

Software Name

Firepower Threat Defense, FX-OS

Software Version

6.2.1 (Firepower Threat Defense), 7.2.0 (Firepower Threat Defense), 7.2.0.1 (Firepower Threat Defense), от 6.7.0 до 6.7.0.3 включительно (Firepower Threat Defense), от 6.5.0 до 6.5.0.5 включительно (Firepower Threat Defense), 6.6.0 (Firepower Threat Defense), 6.6.0.1 (Firepower Threat Defense), 6.6.1 (Firepower Threat Defense), 6.6.3 (Firepower Threat Defense), 6.6.4 (Firepower Threat Defense), от 6.2.3 до 6.2.3.18 включительно (Firepower Threat Defense), от 6.6.5 до 6.6.5.2 включительно (Firepower Threat Defense), от 6.3.0 до 6.3.0.5 включительно (Firepower Threat Defense), от 7.1.0 до 7.1.0.2 включительно (Firepower Threat Defense), от 6.1.0 до 6.1.0.7 включительно (Firepower Threat Defense), от 6.2.0 до 6.2.0.6 включительно (Firepower Threat Defense), от 6.2.2 до 6.2.2.5 включительно (Firepower Threat Defense), от 6.4.0 до 6.4.0.15 включительно (Firepower Threat Defense), 6.6.7 (Firepower Threat Defense), от 7.0.0 до 7.0.4 включительно (Firepower Threat Defense), 1.1.1.147 (FX-OS), 1.1.1.160 (FX-OS), 1.1.2.51 (FX-OS), 1.1.2.178 (FX-OS), 1.1.3.84 (FX-OS), 1.1.3.86 (FX-OS), 1.1.3.97 (FX-OS), 1.1.4.95 (FX-OS), 1.1.4.117 (FX-OS), 1.1.4.140 (FX-OS), 1.1.4.169 (FX-OS), 1.1.4.175 (FX-OS), 1.1.4.178 (FX-OS), 1.1.4.179 (FX-OS), 2.0.1.37 (FX-OS), 2.0.1.68 (FX-OS), 2.0.1.86 (FX-OS), 2.0.1.135 (FX-OS), 2.0.1.141 (FX-OS), 2.0.1.144 (FX-OS), 2.0.1.148 (FX-OS), 2.0.1.149 (FX-OS), 2.0.1.153 (FX-OS), 2.0.1.159 (FX-OS), 2.0.1.188 (FX-OS), 2.0.1.201 (FX-OS), 2.0.1.203 (FX-OS), 2.0.1.204 (FX-OS), 2.0.1.206 (FX-OS), 2.1.1.64 (FX-OS), 2.1.1.73 (FX-OS), 2.1.1.77 (FX-OS), 2.1.1.83 (FX-OS), от 2.1.1.85 до 2.1.1.97 включительно (FX-OS), 2.1.1.106 (FX-OS), 2.1.1.107 (FX-OS), 2.1.1.113 (FX-OS), 2.1.1.115 (FX-OS), 2.1.1.116 (FX-OS), 2.2.1.63 (FX-OS), 2.2.1.66 (FX-OS), 2.2.1.70 (FX-OS), 2.2.2.17 (FX-OS), 2.2.2.19 (FX-OS), 2.2.2.24 (FX-OS), 2.2.2.26 (FX-OS), 2.2.2.28 (FX-OS), 2.2.2.54 (FX-OS), 2.2.2.60 (FX-OS), 2.2.2.71 (FX-OS), 2.2.2.83 (FX-OS), 2.2.2.86 (FX-OS), 2.2.2.91 (FX-OS), 2.2.2.97 (FX-OS), 2.2.2.101 (FX-OS), 2.2.2.137 (FX-OS), 2.2.2.148 (FX-OS), 2.2.2.149 (FX-OS), 2.3.1.56 (FX-OS), 2.3.1.58 (FX-OS), 2.3.1.66 (FX-OS), 2.3.1.73 (FX-OS), 2.3.1.75 (FX-OS), 2.3.1.88 (FX-OS), 2.3.1.91 (FX-OS), 2.3.1.93 (FX-OS), 2.3.1.99 (FX-OS), 2.3.1.110 (FX-OS), 2.3.1.111 (FX-OS), 2.3.1.130 (FX-OS), 2.3.1.144 (FX-OS), 2.3.1.145 (FX-OS), 2.3.1.155 (FX-OS), 2.3.1.166 (FX-OS), 2.3.1.173 (FX-OS), 2.3.1.179 (FX-OS), 2.3.1.180 (FX-OS), 2.3.1.190 (FX-OS), 2.3.1.215 (FX-OS), 2.3.1.216 (FX-OS), 2.3.1.219 (FX-OS), 2.4.1.101 (FX-OS), 2.4.1.214 (FX-OS), 2.4.1.222 (FX-OS), 2.4.1.234 (FX-OS), 2.4.1.238 (FX-OS), 2.4.1.244 (FX-OS), 2.4.1.249 (FX-OS), 2.4.1.252 (FX-OS), 2.4.1.266 (FX-OS), 2.4.1.268 (FX-OS), 2.4.1.273 (FX-OS), 2.6.1.131 (FX-OS), 2.6.1.157 (FX-OS), 2.6.1.166 (FX-OS), 2.6.1.169 (FX-OS), 2.6.1.174 (FX-OS), 2.6.1.187 (FX-OS)

Possible Mitigations

Использование рекомендаций: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK

Reference

https://nvd.nist.gov/vuln/detail/CVE-2022-20934 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK

CWE

CWE-77, CWE-78

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:C/I:C/A:N",
  "CVSS 3.0": "AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "6.2.1 (Firepower Threat Defense), 7.2.0 (Firepower Threat Defense), 7.2.0.1 (Firepower Threat Defense), \u043e\u0442 6.7.0 \u0434\u043e 6.7.0.3 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.5.0 \u0434\u043e 6.5.0.5 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), 6.6.0 (Firepower Threat Defense), 6.6.0.1 (Firepower Threat Defense), 6.6.1 (Firepower Threat Defense), 6.6.3 (Firepower Threat Defense), 6.6.4 (Firepower Threat Defense), \u043e\u0442 6.2.3 \u0434\u043e 6.2.3.18 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.6.5 \u0434\u043e 6.6.5.2 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.3.0 \u0434\u043e 6.3.0.5 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 7.1.0 \u0434\u043e 7.1.0.2 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.1.0 \u0434\u043e 6.1.0.7 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.2.0 \u0434\u043e 6.2.0.6 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.2.2 \u0434\u043e 6.2.2.5 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), \u043e\u0442 6.4.0 \u0434\u043e 6.4.0.15 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), 6.6.7 (Firepower Threat Defense), \u043e\u0442 7.0.0 \u0434\u043e 7.0.4 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Firepower Threat Defense), 1.1.1.147 (FX-OS), 1.1.1.160 (FX-OS), 1.1.2.51 (FX-OS), 1.1.2.178 (FX-OS), 1.1.3.84 (FX-OS), 1.1.3.86 (FX-OS), 1.1.3.97 (FX-OS), 1.1.4.95 (FX-OS), 1.1.4.117 (FX-OS), 1.1.4.140 (FX-OS), 1.1.4.169 (FX-OS), 1.1.4.175 (FX-OS), 1.1.4.178 (FX-OS), 1.1.4.179 (FX-OS), 2.0.1.37 (FX-OS), 2.0.1.68 (FX-OS), 2.0.1.86 (FX-OS), 2.0.1.135 (FX-OS), 2.0.1.141 (FX-OS), 2.0.1.144 (FX-OS), 2.0.1.148 (FX-OS), 2.0.1.149 (FX-OS), 2.0.1.153 (FX-OS), 2.0.1.159 (FX-OS), 2.0.1.188 (FX-OS), 2.0.1.201 (FX-OS), 2.0.1.203 (FX-OS), 2.0.1.204 (FX-OS), 2.0.1.206 (FX-OS), 2.1.1.64 (FX-OS), 2.1.1.73 (FX-OS), 2.1.1.77 (FX-OS), 2.1.1.83 (FX-OS), \u043e\u0442 2.1.1.85 \u0434\u043e 2.1.1.97 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (FX-OS), 2.1.1.106 (FX-OS), 2.1.1.107 (FX-OS), 2.1.1.113 (FX-OS), 2.1.1.115 (FX-OS), 2.1.1.116 (FX-OS), 2.2.1.63 (FX-OS), 2.2.1.66 (FX-OS), 2.2.1.70 (FX-OS), 2.2.2.17 (FX-OS), 2.2.2.19 (FX-OS), 2.2.2.24 (FX-OS), 2.2.2.26 (FX-OS), 2.2.2.28 (FX-OS), 2.2.2.54 (FX-OS), 2.2.2.60 (FX-OS), 2.2.2.71 (FX-OS), 2.2.2.83 (FX-OS), 2.2.2.86 (FX-OS), 2.2.2.91 (FX-OS), 2.2.2.97 (FX-OS), 2.2.2.101 (FX-OS), 2.2.2.137 (FX-OS), 2.2.2.148 (FX-OS), 2.2.2.149 (FX-OS), 2.3.1.56 (FX-OS), 2.3.1.58 (FX-OS), 2.3.1.66 (FX-OS), 2.3.1.73 (FX-OS), 2.3.1.75 (FX-OS), 2.3.1.88 (FX-OS), 2.3.1.91 (FX-OS), 2.3.1.93 (FX-OS), 2.3.1.99 (FX-OS), 2.3.1.110 (FX-OS), 2.3.1.111 (FX-OS), 2.3.1.130 (FX-OS), 2.3.1.144 (FX-OS), 2.3.1.145 (FX-OS), 2.3.1.155 (FX-OS), 2.3.1.166 (FX-OS), 2.3.1.173 (FX-OS), 2.3.1.179 (FX-OS), 2.3.1.180 (FX-OS), 2.3.1.190 (FX-OS), 2.3.1.215 (FX-OS), 2.3.1.216 (FX-OS), 2.3.1.219 (FX-OS), 2.4.1.101 (FX-OS), 2.4.1.214 (FX-OS), 2.4.1.222 (FX-OS), 2.4.1.234 (FX-OS), 2.4.1.238 (FX-OS), 2.4.1.244 (FX-OS), 2.4.1.249 (FX-OS), 2.4.1.252 (FX-OS), 2.4.1.266 (FX-OS), 2.4.1.268 (FX-OS), 2.4.1.273 (FX-OS), 2.6.1.131 (FX-OS), 2.6.1.157 (FX-OS), 2.6.1.166 (FX-OS), 2.6.1.169 (FX-OS), 2.6.1.174 (FX-OS), 2.6.1.187 (FX-OS)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.11.2022",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "12.12.2022",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "12.12.2022",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2022-07213",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-20934",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Firepower Threat Defense, FX-OS",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Cisco Systems Inc. FX-OS 1.1.1.147 , Cisco Systems Inc. FX-OS 1.1.1.160 , Cisco Systems Inc. FX-OS 1.1.2.51 , Cisco Systems Inc. FX-OS 1.1.2.178 , Cisco Systems Inc. FX-OS 1.1.3.84 , Cisco Systems Inc. FX-OS 1.1.3.86 , Cisco Systems Inc. FX-OS 1.1.3.97 , Cisco Systems Inc. FX-OS 1.1.4.95 , Cisco Systems Inc. FX-OS 1.1.4.117 , Cisco Systems Inc. FX-OS 1.1.4.140 , Cisco Systems Inc. FX-OS 1.1.4.169 , Cisco Systems Inc. FX-OS 1.1.4.175 , Cisco Systems Inc. FX-OS 1.1.4.178 , Cisco Systems Inc. FX-OS 1.1.4.179 , Cisco Systems Inc. FX-OS 2.0.1.37 , Cisco Systems Inc. FX-OS 2.0.1.68 , Cisco Systems Inc. FX-OS 2.0.1.86 , Cisco Systems Inc. FX-OS 2.0.1.135 , Cisco Systems Inc. FX-OS 2.0.1.141 , Cisco Systems Inc. FX-OS 2.0.1.144 , Cisco Systems Inc. FX-OS 2.0.1.148 , Cisco Systems Inc. FX-OS 2.0.1.149 , Cisco Systems Inc. FX-OS 2.0.1.153 , Cisco Systems Inc. FX-OS 2.0.1.159 , Cisco Systems Inc. FX-OS 2.0.1.188 , Cisco Systems Inc. FX-OS 2.0.1.201 , Cisco Systems Inc. FX-OS 2.0.1.203 , Cisco Systems Inc. FX-OS 2.0.1.204 , Cisco Systems Inc. FX-OS 2.0.1.206 , Cisco Systems Inc. FX-OS 2.1.1.64 , Cisco Systems Inc. FX-OS 2.1.1.73 , Cisco Systems Inc. FX-OS 2.1.1.77 , Cisco Systems Inc. FX-OS 2.1.1.83 , Cisco Systems Inc. FX-OS \u043e\u0442 2.1.1.85 \u0434\u043e 2.1.1.97 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e , Cisco Systems Inc. FX-OS 2.1.1.106 , Cisco Systems Inc. FX-OS 2.1.1.107 , Cisco Systems Inc. FX-OS 2.1.1.113 , Cisco Systems Inc. FX-OS 2.1.1.115 , Cisco Systems Inc. FX-OS 2.1.1.116 , Cisco Systems Inc. FX-OS 2.2.1.63 , Cisco Systems Inc. FX-OS 2.2.1.66 , Cisco Systems Inc. FX-OS 2.2.1.70 , Cisco Systems Inc. FX-OS 2.2.2.17 , Cisco Systems Inc. FX-OS 2.2.2.19 , Cisco Systems Inc. FX-OS 2.2.2.24 , Cisco Systems Inc. FX-OS 2.2.2.26 , Cisco Systems Inc. FX-OS 2.2.2.28 , Cisco Systems Inc. FX-OS 2.2.2.54 , Cisco Systems Inc. FX-OS 2.2.2.60 , Cisco Systems Inc. FX-OS 2.2.2.71 , Cisco Systems Inc. FX-OS 2.2.2.83 , Cisco Systems Inc. FX-OS 2.2.2.86 , Cisco Systems Inc. FX-OS 2.2.2.91 , Cisco Systems Inc. FX-OS 2.2.2.97 , Cisco Systems Inc. FX-OS 2.2.2.101 , Cisco Systems Inc. FX-OS 2.2.2.137 , Cisco Systems Inc. FX-OS 2.2.2.148 , Cisco Systems Inc. FX-OS 2.2.2.149 , Cisco Systems Inc. FX-OS 2.3.1.56 , Cisco Systems Inc. FX-OS 2.3.1.58 , Cisco Systems Inc. FX-OS 2.3.1.66 , Cisco Systems Inc. FX-OS 2.3.1.73 , Cisco Systems Inc. FX-OS 2.3.1.75 , Cisco Systems Inc. FX-OS 2.3.1.88 , Cisco Systems Inc. FX-OS 2.3.1.91 , Cisco Systems Inc. FX-OS 2.3.1.93 , Cisco Systems Inc. FX-OS 2.3.1.99 , Cisco Systems Inc. FX-OS 2.3.1.110 , Cisco Systems Inc. FX-OS 2.3.1.111 , Cisco Systems Inc. FX-OS 2.3.1.130 , Cisco Systems Inc. FX-OS 2.3.1.144 , Cisco Systems Inc. FX-OS 2.3.1.145 , Cisco Systems Inc. FX-OS 2.3.1.155 , Cisco Systems Inc. FX-OS 2.3.1.166 , Cisco Systems Inc. FX-OS 2.3.1.173 , Cisco Systems Inc. FX-OS 2.3.1.179 , Cisco Systems Inc. FX-OS 2.3.1.180 , Cisco Systems Inc. FX-OS 2.3.1.190 , Cisco Systems Inc. FX-OS 2.3.1.215 , Cisco Systems Inc. FX-OS 2.3.1.216 , Cisco Systems Inc. FX-OS 2.3.1.219 , Cisco Systems Inc. FX-OS 2.4.1.101 , Cisco Systems Inc. FX-OS 2.4.1.214 , Cisco Systems Inc. FX-OS 2.4.1.222 , Cisco Systems Inc. FX-OS 2.4.1.234 , Cisco Systems Inc. FX-OS 2.4.1.238 , Cisco Systems Inc. FX-OS 2.4.1.244 , Cisco Systems Inc. FX-OS 2.4.1.249 , Cisco Systems Inc. FX-OS 2.4.1.252 , Cisco Systems Inc. FX-OS 2.4.1.266 , Cisco Systems Inc. FX-OS 2.4.1.268 , Cisco Systems Inc. FX-OS 2.4.1.273 , Cisco Systems Inc. FX-OS 2.6.1.131 , Cisco Systems Inc. FX-OS 2.6.1.157 , Cisco Systems Inc. FX-OS 2.6.1.166 , Cisco Systems Inc. FX-OS 2.6.1.169 , Cisco Systems Inc. FX-OS 2.6.1.174 , Cisco Systems Inc. FX-OS 2.6.1.187 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438 (CLI) \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u044d\u043a\u0440\u0430\u043d\u043e\u0432 Cisco Firepower Threat Defense (FTD) \u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Cisco FXOS \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Cisco \u0441\u0435\u0440\u0438\u0438 Firepower 4100 \u0438 Firepower 9300, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435 \u043c\u0435\u0440 \u043f\u043e \u0447\u0438\u0441\u0442\u043a\u0435 \u0434\u0430\u043d\u043d\u044b\u0445 \u043d\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0435\u043c \u0443\u0440\u043e\u0432\u043d\u0435 (\u0412\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u0432 \u043a\u043e\u043c\u0430\u043d\u0434\u0443) (CWE-77), \u041d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435 \u043c\u0435\u0440 \u043f\u043e \u043d\u0435\u0439\u0442\u0440\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432 \u043a\u043e\u043c\u0430\u043d\u0434\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b (\u0412\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u0432 \u043a\u043e\u043c\u0430\u043d\u0434\u0443 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b) (CWE-78)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438 (CLI) \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u044d\u043a\u0440\u0430\u043d\u043e\u0432 Cisco Firepower Threat Defense (FTD) \u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Cisco FXOS \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Cisco \u0441\u0435\u0440\u0438\u0438 Firepower 4100 \u0438 Firepower 9300 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0430\u0440\u0433\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u043a\u043e\u043c\u0430\u043d\u0434. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://nvd.nist.gov/vuln/detail/CVE-2022-20934\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-77, CWE-78",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,2)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6)"
}

CVE-2022-20934 (GCVE-0-2022-20934)

Vulnerability from cvelistv5 – Published: 2022-11-10 17:34 – Updated: 2024-11-19 21:04

Summary

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation for specific CLI commands. An attacker could exploit this vulnerability by injecting operating system commands into a legitimate command. A successful exploit could allow the attacker to escape the restricted command prompt and execute arbitrary commands on the underlying operating system. To successfully exploit this vulnerability, an attacker would need valid Administrator credentials.

Severity ?

6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CWE

CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

Assigner

cisco

References

URL

Tags

https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

Vendor

Product

Version

Cisco

Cisco Firepower Threat Defense Software

Affected: 6.2.3
Affected: 6.2.3.1
Affected: 6.2.3.2
Affected: 6.2.3.3
Affected: 6.2.3.4
Affected: 6.2.3.5
Affected: 6.2.3.6
Affected: 6.2.3.7
Affected: 6.2.3.8
Affected: 6.2.3.10
Affected: 6.2.3.11
Affected: 6.2.3.9
Affected: 6.2.3.12
Affected: 6.2.3.13
Affected: 6.2.3.14
Affected: 6.2.3.15
Affected: 6.2.3.16
Affected: 6.2.3.17
Affected: 6.2.3.18
Affected: 6.6.0
Affected: 6.6.0.1
Affected: 6.6.1
Affected: 6.6.3
Affected: 6.6.4
Affected: 6.6.5
Affected: 6.6.5.1
Affected: 6.6.5.2
Affected: 6.6.7
Affected: 6.4.0
Affected: 6.4.0.1
Affected: 6.4.0.3
Affected: 6.4.0.2
Affected: 6.4.0.4
Affected: 6.4.0.5
Affected: 6.4.0.6
Affected: 6.4.0.7
Affected: 6.4.0.8
Affected: 6.4.0.9
Affected: 6.4.0.10
Affected: 6.4.0.11
Affected: 6.4.0.12
Affected: 6.4.0.13
Affected: 6.4.0.14
Affected: 6.4.0.15
Affected: 6.7.0
Affected: 6.7.0.1
Affected: 6.7.0.2
Affected: 6.7.0.3
Affected: 7.0.0
Affected: 7.0.0.1
Affected: 7.0.1
Affected: 7.0.1.1
Affected: 7.0.2
Affected: 7.0.2.1
Affected: 7.0.3
Affected: 7.0.4
Affected: 7.1.0
Affected: 7.1.0.1
Affected: 7.1.0.2
Affected: 7.2.0
Affected: 7.2.0.1

Cisco

Cisco Firepower Extensible Operating System (FXOS)

Affected: 2.2.1.63
Affected: 2.2.1.66
Affected: 2.2.1.70
Affected: 2.2.2.17
Affected: 2.2.2.19
Affected: 2.2.2.24
Affected: 2.2.2.26
Affected: 2.2.2.28
Affected: 2.2.2.54
Affected: 2.2.2.60
Affected: 2.2.2.71
Affected: 2.2.2.83
Affected: 2.2.2.86
Affected: 2.2.2.91
Affected: 2.2.2.97
Affected: 2.2.2.101
Affected: 2.2.2.137
Affected: 2.2.2.148
Affected: 2.2.2.149
Affected: 2.3.1.99
Affected: 2.3.1.93
Affected: 2.3.1.91
Affected: 2.3.1.88
Affected: 2.3.1.75
Affected: 2.3.1.73
Affected: 2.3.1.66
Affected: 2.3.1.58
Affected: 2.3.1.130
Affected: 2.3.1.111
Affected: 2.3.1.110
Affected: 2.3.1.144
Affected: 2.3.1.145
Affected: 2.3.1.155
Affected: 2.3.1.166
Affected: 2.3.1.173
Affected: 2.3.1.179
Affected: 2.3.1.180
Affected: 2.3.1.56
Affected: 2.3.1.190
Affected: 2.3.1.215
Affected: 2.3.1.216
Affected: 2.3.1.219
Affected: 2.6.1.131
Affected: 2.6.1.157
Affected: 2.6.1.166
Affected: 2.6.1.169
Affected: 2.6.1.174
Affected: 2.6.1.187
Affected: 2.6.1.192
Affected: 2.6.1.204
Affected: 2.6.1.214
Affected: 2.6.1.224
Affected: 2.6.1.229
Affected: 2.6.1.230
Affected: 2.6.1.238
Affected: 2.6.1.239
Affected: 2.6.1.254
Affected: 2.8.1.105
Affected: 2.8.1.125
Affected: 2.8.1.139
Affected: 2.8.1.143
Affected: 2.8.1.152
Affected: 2.8.1.162
Affected: 2.8.1.164
Affected: 2.8.1.172
Affected: 2.9.1.131
Affected: 2.9.1.135
Affected: 2.9.1.143
Affected: 2.9.1.150
Affected: 2.9.1.158
Affected: 2.10.1.159
Affected: 2.10.1.166
Affected: 2.10.1.179
Affected: 2.11.1.154

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:31:57.971Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK",
            "tags": [
              "x_transferred"
            ],
            "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-20934",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-29T21:06:56.393039Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-19T21:04:59.680Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Firepower Threat Defense Software",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "6.2.3"
            },
            {
              "status": "affected",
              "version": "6.2.3.1"
            },
            {
              "status": "affected",
              "version": "6.2.3.2"
            },
            {
              "status": "affected",
              "version": "6.2.3.3"
            },
            {
              "status": "affected",
              "version": "6.2.3.4"
            },
            {
              "status": "affected",
              "version": "6.2.3.5"
            },
            {
              "status": "affected",
              "version": "6.2.3.6"
            },
            {
              "status": "affected",
              "version": "6.2.3.7"
            },
            {
              "status": "affected",
              "version": "6.2.3.8"
            },
            {
              "status": "affected",
              "version": "6.2.3.10"
            },
            {
              "status": "affected",
              "version": "6.2.3.11"
            },
            {
              "status": "affected",
              "version": "6.2.3.9"
            },
            {
              "status": "affected",
              "version": "6.2.3.12"
            },
            {
              "status": "affected",
              "version": "6.2.3.13"
            },
            {
              "status": "affected",
              "version": "6.2.3.14"
            },
            {
              "status": "affected",
              "version": "6.2.3.15"
            },
            {
              "status": "affected",
              "version": "6.2.3.16"
            },
            {
              "status": "affected",
              "version": "6.2.3.17"
            },
            {
              "status": "affected",
              "version": "6.2.3.18"
            },
            {
              "status": "affected",
              "version": "6.6.0"
            },
            {
              "status": "affected",
              "version": "6.6.0.1"
            },
            {
              "status": "affected",
              "version": "6.6.1"
            },
            {
              "status": "affected",
              "version": "6.6.3"
            },
            {
              "status": "affected",
              "version": "6.6.4"
            },
            {
              "status": "affected",
              "version": "6.6.5"
            },
            {
              "status": "affected",
              "version": "6.6.5.1"
            },
            {
              "status": "affected",
              "version": "6.6.5.2"
            },
            {
              "status": "affected",
              "version": "6.6.7"
            },
            {
              "status": "affected",
              "version": "6.4.0"
            },
            {
              "status": "affected",
              "version": "6.4.0.1"
            },
            {
              "status": "affected",
              "version": "6.4.0.3"
            },
            {
              "status": "affected",
              "version": "6.4.0.2"
            },
            {
              "status": "affected",
              "version": "6.4.0.4"
            },
            {
              "status": "affected",
              "version": "6.4.0.5"
            },
            {
              "status": "affected",
              "version": "6.4.0.6"
            },
            {
              "status": "affected",
              "version": "6.4.0.7"
            },
            {
              "status": "affected",
              "version": "6.4.0.8"
            },
            {
              "status": "affected",
              "version": "6.4.0.9"
            },
            {
              "status": "affected",
              "version": "6.4.0.10"
            },
            {
              "status": "affected",
              "version": "6.4.0.11"
            },
            {
              "status": "affected",
              "version": "6.4.0.12"
            },
            {
              "status": "affected",
              "version": "6.4.0.13"
            },
            {
              "status": "affected",
              "version": "6.4.0.14"
            },
            {
              "status": "affected",
              "version": "6.4.0.15"
            },
            {
              "status": "affected",
              "version": "6.7.0"
            },
            {
              "status": "affected",
              "version": "6.7.0.1"
            },
            {
              "status": "affected",
              "version": "6.7.0.2"
            },
            {
              "status": "affected",
              "version": "6.7.0.3"
            },
            {
              "status": "affected",
              "version": "7.0.0"
            },
            {
              "status": "affected",
              "version": "7.0.0.1"
            },
            {
              "status": "affected",
              "version": "7.0.1"
            },
            {
              "status": "affected",
              "version": "7.0.1.1"
            },
            {
              "status": "affected",
              "version": "7.0.2"
            },
            {
              "status": "affected",
              "version": "7.0.2.1"
            },
            {
              "status": "affected",
              "version": "7.0.3"
            },
            {
              "status": "affected",
              "version": "7.0.4"
            },
            {
              "status": "affected",
              "version": "7.1.0"
            },
            {
              "status": "affected",
              "version": "7.1.0.1"
            },
            {
              "status": "affected",
              "version": "7.1.0.2"
            },
            {
              "status": "affected",
              "version": "7.2.0"
            },
            {
              "status": "affected",
              "version": "7.2.0.1"
            }
          ]
        },
        {
          "product": "Cisco Firepower Extensible Operating System (FXOS)",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "2.2.1.63"
            },
            {
              "status": "affected",
              "version": "2.2.1.66"
            },
            {
              "status": "affected",
              "version": "2.2.1.70"
            },
            {
              "status": "affected",
              "version": "2.2.2.17"
            },
            {
              "status": "affected",
              "version": "2.2.2.19"
            },
            {
              "status": "affected",
              "version": "2.2.2.24"
            },
            {
              "status": "affected",
              "version": "2.2.2.26"
            },
            {
              "status": "affected",
              "version": "2.2.2.28"
            },
            {
              "status": "affected",
              "version": "2.2.2.54"
            },
            {
              "status": "affected",
              "version": "2.2.2.60"
            },
            {
              "status": "affected",
              "version": "2.2.2.71"
            },
            {
              "status": "affected",
              "version": "2.2.2.83"
            },
            {
              "status": "affected",
              "version": "2.2.2.86"
            },
            {
              "status": "affected",
              "version": "2.2.2.91"
            },
            {
              "status": "affected",
              "version": "2.2.2.97"
            },
            {
              "status": "affected",
              "version": "2.2.2.101"
            },
            {
              "status": "affected",
              "version": "2.2.2.137"
            },
            {
              "status": "affected",
              "version": "2.2.2.148"
            },
            {
              "status": "affected",
              "version": "2.2.2.149"
            },
            {
              "status": "affected",
              "version": "2.3.1.99"
            },
            {
              "status": "affected",
              "version": "2.3.1.93"
            },
            {
              "status": "affected",
              "version": "2.3.1.91"
            },
            {
              "status": "affected",
              "version": "2.3.1.88"
            },
            {
              "status": "affected",
              "version": "2.3.1.75"
            },
            {
              "status": "affected",
              "version": "2.3.1.73"
            },
            {
              "status": "affected",
              "version": "2.3.1.66"
            },
            {
              "status": "affected",
              "version": "2.3.1.58"
            },
            {
              "status": "affected",
              "version": "2.3.1.130"
            },
            {
              "status": "affected",
              "version": "2.3.1.111"
            },
            {
              "status": "affected",
              "version": "2.3.1.110"
            },
            {
              "status": "affected",
              "version": "2.3.1.144"
            },
            {
              "status": "affected",
              "version": "2.3.1.145"
            },
            {
              "status": "affected",
              "version": "2.3.1.155"
            },
            {
              "status": "affected",
              "version": "2.3.1.166"
            },
            {
              "status": "affected",
              "version": "2.3.1.173"
            },
            {
              "status": "affected",
              "version": "2.3.1.179"
            },
            {
              "status": "affected",
              "version": "2.3.1.180"
            },
            {
              "status": "affected",
              "version": "2.3.1.56"
            },
            {
              "status": "affected",
              "version": "2.3.1.190"
            },
            {
              "status": "affected",
              "version": "2.3.1.215"
            },
            {
              "status": "affected",
              "version": "2.3.1.216"
            },
            {
              "status": "affected",
              "version": "2.3.1.219"
            },
            {
              "status": "affected",
              "version": "2.6.1.131"
            },
            {
              "status": "affected",
              "version": "2.6.1.157"
            },
            {
              "status": "affected",
              "version": "2.6.1.166"
            },
            {
              "status": "affected",
              "version": "2.6.1.169"
            },
            {
              "status": "affected",
              "version": "2.6.1.174"
            },
            {
              "status": "affected",
              "version": "2.6.1.187"
            },
            {
              "status": "affected",
              "version": "2.6.1.192"
            },
            {
              "status": "affected",
              "version": "2.6.1.204"
            },
            {
              "status": "affected",
              "version": "2.6.1.214"
            },
            {
              "status": "affected",
              "version": "2.6.1.224"
            },
            {
              "status": "affected",
              "version": "2.6.1.229"
            },
            {
              "status": "affected",
              "version": "2.6.1.230"
            },
            {
              "status": "affected",
              "version": "2.6.1.238"
            },
            {
              "status": "affected",
              "version": "2.6.1.239"
            },
            {
              "status": "affected",
              "version": "2.6.1.254"
            },
            {
              "status": "affected",
              "version": "2.8.1.105"
            },
            {
              "status": "affected",
              "version": "2.8.1.125"
            },
            {
              "status": "affected",
              "version": "2.8.1.139"
            },
            {
              "status": "affected",
              "version": "2.8.1.143"
            },
            {
              "status": "affected",
              "version": "2.8.1.152"
            },
            {
              "status": "affected",
              "version": "2.8.1.162"
            },
            {
              "status": "affected",
              "version": "2.8.1.164"
            },
            {
              "status": "affected",
              "version": "2.8.1.172"
            },
            {
              "status": "affected",
              "version": "2.9.1.131"
            },
            {
              "status": "affected",
              "version": "2.9.1.135"
            },
            {
              "status": "affected",
              "version": "2.9.1.143"
            },
            {
              "status": "affected",
              "version": "2.9.1.150"
            },
            {
              "status": "affected",
              "version": "2.9.1.158"
            },
            {
              "status": "affected",
              "version": "2.10.1.159"
            },
            {
              "status": "affected",
              "version": "2.10.1.166"
            },
            {
              "status": "affected",
              "version": "2.10.1.179"
            },
            {
              "status": "affected",
              "version": "2.11.1.154"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root.\r\n\r This vulnerability is due to improper input validation for specific CLI commands. An attacker could exploit this vulnerability by injecting operating system commands into a legitimate command. A successful exploit could allow the attacker to escape the restricted command prompt and execute arbitrary commands on the underlying operating system. To successfully exploit this vulnerability, an attacker would need valid Administrator credentials."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-77",
              "description": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-25T16:57:16.127Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK"
        }
      ],
      "source": {
        "advisory": "cisco-sa-ftd-fxos-cmd-inj-Q9bLNsrK",
        "defects": [
          "CSCwb41854",
          "CSCwc02133"
        ],
        "discovery": "INTERNAL"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2022-20934",
    "datePublished": "2022-11-10T17:34:14.014Z",
    "dateReserved": "2021-11-02T13:28:29.192Z",
    "dateUpdated": "2024-11-19T21:04:59.680Z",
    "requesterUserId": "4087f8c1-b21c-479b-99df-de23cb76b743",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2022-07213

CVE-2022-20934 (GCVE-0-2022-20934)

Tags

Sightings

Nomenclature