Main Vulnerability Database Vulnerabilities #VU64597

#VU64597 OS Command Injection in Firepower NGFW - CVE-2022-20828

Published: June 22, 2022 / Updated: September 5, 2022

Vulnerability identifier: #VU64597

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:A/U:Clear

CVE-ID: CVE-2022-20828

CWE-ID: CWE-78

Exploitation vector: Local access

Exploit availability: Public exploit is available

Vulnerable software:
Firepower NGFW

Software vendor:
Cisco Systems, Inc

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in the CLI parser of Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER module. A local user can pass specially crafted parameters to the affected CLI command and execute arbitrary commands on the system with root privileges.

Remediation

Install updates from vendor's website.

External links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asasfr-cmd-inject-PE4GfdG
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwb32418

#VU64597 OS Command Injection in Firepower NGFW - CVE-2022-20828

Description

Remediation

External links

Please verify you're human