Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-ASA-FTD-CMD-INJ-SELPRVG
HistoryApr 28, 2021 - 4:00 p.m.

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection Vulnerability

2021-04-2816:00:00
tools.cisco.com
74
cisco
software
vulnerability
command injection
authentication

EPSS

0

Percentile

5.2%

JSON

A vulnerability in the CLI of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system (OS) of an affected device.

The vulnerability is due to insufficient input validation of commands that are supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input for specific commands. A successful exploit could allow the attacker to execute commands on the underlying OS with root privileges. To exploit this vulnerability, an attacker must have valid administrator-level credentials.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-cmd-inj-SELprvG [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-cmd-inj-SELprvG”]

Affected configurations

Vulners
Node
ciscocisco_adaptive_security_appliance_\(asa\)_softwareMatch9.14
OR
ciscocisco_adaptive_security_appliance_\(asa\)_softwareMatch9.15
OR
ciscofirepower_2100_firmwareMatchany
OR
ciscoasa_5500-x_series_ips_ssp_softwareMatchany
OR
ciscofirepower_threat_defense_softwareMatch6.6
OR
ciscofirepower_management_center_1000_firmwareMatchany
OR
ciscoindustrial_security_appliances_3000_firmwareMatchany
OR
ciscofirepower_9000_firmwareMatchany
OR
ciscocisco_adaptive_security_appliance_\(asa\)_softwareMatch9.14.2.4
OR
ciscocisco_adaptive_security_appliance_\(asa\)_softwareMatch9.15.1
OR
ciscoadaptive_security_appliance_softwareMatch2100_series
OR
ciscoasaMatch5500-x_series_firewalls
OR
ciscofirepower_threat_defense_softwareMatch6.6.0
OR
ciscofirepower_threat_defense_softwareMatch6.6.0.1
OR
ciscofirepower_threat_defense_softwareMatch6.6.1
OR
ciscofirepower_threat_defense_softwareMatch1000_series
OR
ciscofirepower_threat_defense_softwareMatch3000_series_industrial_security_appliances_\(isa\)
OR
ciscofirepower_threat_defense_softwareMatch9000_series
OR
ciscoasaMatch5500-x_series_firewalls
OR
ciscoadaptive_security_appliance_softwareMatch2100_series
OR
ciscofirepower_threat_defense_softwareMatch9000_series
OR
ciscofirepower_threat_defense_softwareMatch1000_series
OR
ciscofirepower_threat_defense_softwareMatch3000_series_industrial_security_appliances_\(isa\)
VendorProductVersionCPE
ciscocisco_adaptive_security_appliance_\(asa\)_software9.14cpe:2.3:a:cisco:cisco_adaptive_security_appliance_\(asa\)_software:9.14:*:*:*:*:*:*:*
ciscocisco_adaptive_security_appliance_\(asa\)_software9.15cpe:2.3:a:cisco:cisco_adaptive_security_appliance_\(asa\)_software:9.15:*:*:*:*:*:*:*
ciscofirepower_2100_firmwareanycpe:2.3:o:cisco:firepower_2100_firmware:any:*:*:*:*:*:*:*
ciscoasa_5500-x_series_ips_ssp_softwareanycpe:2.3:a:cisco:asa_5500-x_series_ips_ssp_software:any:*:*:*:*:*:*:*
ciscofirepower_threat_defense_software6.6cpe:2.3:a:cisco:firepower_threat_defense_software:6.6:*:*:*:*:*:*:*
ciscofirepower_management_center_1000_firmwareanycpe:2.3:o:cisco:firepower_management_center_1000_firmware:any:*:*:*:*:*:*:*
ciscoindustrial_security_appliances_3000_firmwareanycpe:2.3:o:cisco:industrial_security_appliances_3000_firmware:any:*:*:*:*:*:*:*
ciscofirepower_9000_firmwareanycpe:2.3:o:cisco:firepower_9000_firmware:any:*:*:*:*:*:*:*
ciscocisco_adaptive_security_appliance_\(asa\)_software9.14.2.4cpe:2.3:a:cisco:cisco_adaptive_security_appliance_\(asa\)_software:9.14.2.4:*:*:*:*:*:*:*
ciscocisco_adaptive_security_appliance_\(asa\)_software9.15.1cpe:2.3:a:cisco:cisco_adaptive_security_appliance_\(asa\)_software:9.15.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

prion 1
nvd 1
cve 1
cvelist 1
prion
prion
Input validation
2021-04-29 18:15:00
nvd
nvd
CVE-2021-1476
2021-04-29 18:15:09
cve
cve
CVE-2021-1476
2021-04-29 18:15:09
cvelist
cvelist
CVE-2021-1476 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection Vulnerability
2021-04-29 17:30:55

EPSS

0

Percentile

5.2%

JSON
Related for CISCO-SA-ASA-FTD-CMD-INJ-SELPRVG
prion1nvd1cve1cvelist1