Main Vulnerability Database Exploits ID:8339 - Exploit for OS Command Injection in Firepower NGFW - CVE-2022-20828

ID:8339 - Exploit for OS Command Injection in Firepower NGFW - CVE-2022-20828

Published: September 5, 2022

Vulnerability identifier: #VU64597

Vulnerability risk: Low

CVE-ID: CVE-2022-20828

CWE-ID: CWE-78

Exploitation vector: Local access

Vulnerable software:
Firepower NGFW

Link to public exploit:

https://packetstormsecurity.com/files/download/168256/cisco_asax_sfr_rce.rb.txt

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in the CLI parser of Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER module. A local user can pass specially crafted parameters to the affected CLI command and execute arbitrary commands on the system with root privileges.

Remediation

Install updates from vendor's website.

ID:8339 - Exploit for OS Command Injection in Firepower NGFW - CVE-2022-20828

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human