CVE-2022-20220: Cisco FMC/FTD CLI Command Injection Vulnerability

Critical Vulnerability Information Vulnerability Name: Cisco Secure Firewall Management Center and Secure Firewall Threat Defense Software Command Injection Vulnerability CVE ID: CVE-2022-20220 Severity: Medium Affected Products: - Cisco Secure Firewall Management Center (FMC) Software - Cisco Secure Firewall Threat Defense (FTD) Software Vulnerability Description: A command injection vulnerability exists in the CLI of Cisco Secure FMC and FTD software, allowing an authenticated local attacker to execute arbitrary commands on the underlying operating system with root privileges. Exploitation Requirements: The attacker must have valid login credentials for the device and be able to inject specific commands into privileged commands. Successful exploitation of this vulnerability may allow the attacker to gain root privileges and execute arbitrary commands. Remediation Recommendation: Cisco has released software updates to address this vulnerability. Customers should regularly check Cisco’s security advisories to determine exposure and obtain complete upgrade solutions. Affected Versions: All vulnerable versions of Cisco Secure FMC and FTD software. Unaffected Products: Cisco has confirmed that this vulnerability does not affect Cisco Secure Firewall Adaptive Security Appliance (ASA) software. Mitigation Measures: No mitigations are currently available. Patch Software: Cisco provides the Cisco Software Checker tool to help customers determine whether their version is affected and identify the earliest available fix. Discovery Source: This vulnerability was discovered by Sathishchakumar Eswaramoorthy during internal security testing.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-20220: Cisco FMC/FTD CLI Command Injection Vulnerability