CVE-2022-20829

Exploit

EPSS 4.6%
Published 24.06.2022 16:15:08
Last modified 21.11.2024 06:43:38
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the validation of those images by Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker with administrative privileges to upload an ASDM image that contains malicious code to a device that is running Cisco ASA Software. This vulnerability is due to insufficient validation of the authenticity of an ASDM image during its installation on a device that is running Cisco ASA Software. An attacker could exploit this vulnerability by installing a crafted ASDM image on the device that is running Cisco ASA Software and then waiting for a targeted user to access that device using ASDM. A successful exploit could allow the attacker to execute arbitrary code on the machine of the targeted user with the privileges of that user on that machine. Notes: To successfully exploit this vulnerability, the attacker must have administrative privileges on the device that is running Cisco ASA Software. Potential targets are limited to users who manage the same device that is running Cisco ASA Software using ASDM. Cisco has released and will release software updates that address this vulnerability.

Affected products Warnungen 0 Metrics 4 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Isa 3000 Firmware Version < 9.18.2

Cisco ≫ Isa 3000 Version-

Cisco ≫ Asa 5585-x Firmware Version < 9.18.2

Cisco ≫ Asa 5585-x Version-

Cisco ≫ Asa 5512-x Firmware Version < 9.18.2

Cisco ≫ Asa 5512-x Version-

Cisco ≫ Asa 5515-x Firmware Version < 9.18.2

Cisco ≫ Asa 5515-x Version-

Cisco ≫ Adaptive Security Device Manager Version < 7.18.1.150

   Cisco ≫ Firepower 1010 Version-
   Cisco ≫ Firepower 1120 Version-
   Cisco ≫ Firepower 1140 Version-
   Cisco ≫ Firepower 1150 Version-
   Cisco ≫ Firepower 2110 Version-
   Cisco ≫ Firepower 2120 Version-
   Cisco ≫ Firepower 2130 Version-
   Cisco ≫ Firepower 2140 Version-
   Cisco ≫ Firepower 4110 Version-
   Cisco ≫ Firepower 4112 Version-
   Cisco ≫ Firepower 4115 Version-
   Cisco ≫ Firepower 4120 Version-
   Cisco ≫ Firepower 4125 Version-
   Cisco ≫ Firepower 4140 Version-
   Cisco ≫ Firepower 4145 Version-
   Cisco ≫ Firepower 9300 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	4.6%	0.888

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C
psirt@cisco.com	9.1	2.3	6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CWE-345 Insufficient Verification of Data Authenticity

The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

https://www.rapid7.com/blog/post/2022/08/11/rapid7-discovered-vulnerabilities-in-cisco-asa-asdm-and-firepower-services-software/

Third Party Advisory

Exploit

https://github.com/jbaines-r7/theway

Third Party Advisory

Exploit

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-asdm-sig-NPKvwDjm

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-20829

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-20829

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-20829

EUVD