Lucene search

CiscoCISCO-SA-IOX-8WHGN5DL

HistoryFeb 01, 2023 - 4:00 p.m.

Cisco IOx Application Hosting Environment Command Injection Vulnerability

2023-02-0116:00:00

tools.cisco.com

cisco

iox

application hosting

command injection

vulnerability

authentication

remote attacker

arbitrary commands

root access

operating system

sanitization

application deployment

software updates

EPSS

0.003

Percentile

70.0%

JSON

A vulnerability in the Cisco IOx application hosting environment could allow an authenticated, remote attacker to execute arbitrary commands as root on the underlying host operating system.

This vulnerability is due to incomplete sanitization of parameters that are passed in for activation of an application. An attacker could exploit this vulnerability by deploying and activating an application in the Cisco IOx application hosting environment with a crafted activation payload file. A successful exploit could allow the attacker to execute arbitrary commands as root on the underlying host operating system.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-8whGn5dL [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-8whGn5dL”]

Affected configurations

Vulners

Node

ciscoiosMatch15.6t

ciscoiosMatch15.6m

ciscoiosMatch15.7m

ciscoiosMatch15.8m

ciscoiosMatch15.9m

ciscoiosMatchany

ciscocisco_ios_xe_softwareMatch16.3

ciscocisco_ios_xe_softwareMatch16.4

ciscocisco_ios_xe_softwareMatch16.5

ciscocisco_ios_xe_softwareMatch16.6

ciscocisco_ios_xe_softwareMatch16.7

ciscocisco_ios_xe_softwareMatch16.8

ciscocisco_ios_xe_softwareMatch16.9

ciscocisco_ios_xe_softwareMatch16.10

ciscocisco_ios_xe_softwareMatch16.11

ciscocisco_ios_xe_softwareMatch16.12

ciscocisco_ios_xe_softwareMatch17.1

ciscocisco_ios_xe_softwareMatch17.2

ciscocisco_ios_xe_softwareMatch17.3

ciscocisco_ios_xe_softwareMatch17.4

ciscocisco_ios_xe_softwareMatch17.5

ciscocisco_ios_xe_softwareMatch17.6

ciscocisco_ios_xe_softwareMatch17.7

ciscocisco_ios_xe_softwareMatch17.8

ciscocisco_ios_xe_softwareMatchany

ciscoic3000_industrial_compute_gatewayMatchany

ciscoir510_operating_systemMatchany

ciscocgr1000_compute_moduleMatchany

ciscoiosMatch15.6\(1\)t

ciscoiosMatch15.6\(2\)t

ciscoiosMatch15.6\(1\)t0a

ciscoiosMatch15.6\(1\)t1

ciscoiosMatch15.6\(2\)t1

ciscoiosMatch15.6\(1\)t2

ciscoiosMatch15.6\(2\)t2

ciscoiosMatch15.6\(1\)t3

ciscoiosMatch15.6\(2\)t3

ciscoiosMatch15.6\(3\)m

ciscoiosMatch15.6\(3\)m1

ciscoiosMatch15.6\(3\)m0a

ciscoiosMatch15.6\(3\)m1b

ciscoiosMatch15.6\(3\)m2

ciscoiosMatch15.6\(3\)m3

ciscoiosMatch15.6\(3\)m3a

ciscoiosMatch15.6\(3\)m4

ciscoiosMatch15.6\(3\)m5

ciscoiosMatch15.6\(3\)m6

ciscoiosMatch15.6\(3\)m7

ciscoiosMatch15.6\(3\)m6a

ciscoiosMatch15.6\(3\)m6b

ciscoiosMatch15.6\(3\)m8

ciscoiosMatch15.7\(3\)m

ciscoiosMatch15.7\(3\)m1

ciscoiosMatch15.7\(3\)m0a

ciscoiosMatch15.7\(3\)m3

ciscoiosMatch15.7\(3\)m2

ciscoiosMatch15.7\(3\)m4

ciscoiosMatch15.7\(3\)m5

ciscoiosMatch15.7\(3\)m4a

ciscoiosMatch15.7\(3\)m4b

ciscoiosMatch15.7\(3\)m6

ciscoiosMatch15.8\(3\)m

ciscoiosMatch15.8\(3\)m1

ciscoiosMatch15.8\(3\)m0a

ciscoiosMatch15.8\(3\)m2

ciscoiosMatch15.8\(3\)m3

ciscoiosMatch15.8\(3\)m2a

ciscoiosMatch15.8\(3\)m4

ciscoiosMatch15.8\(3\)m5

ciscoiosMatch15.8\(3\)m6

ciscoiosMatch15.8\(3\)m7

ciscoiosMatch15.8\(3\)m8

ciscoiosMatch15.8\(3\)m9

ciscoiosMatch15.9\(3\)m

ciscoiosMatch15.9\(3\)m1

ciscoiosMatch15.9\(3\)m2

ciscoiosMatch15.9\(3\)m3

ciscoiosMatch15.9\(3\)m2a

ciscoiosMatch15.9\(3\)m4

ciscoiosMatch15.9\(3\)m5

ciscoiosMatch15.9\(3\)m4a

ciscoiosMatch15.9\(3\)m6

ciscoiosMatch15.9\(3\)m6a

ciscoiosMatch15.9\(3\)m6b

ciscoiosMatchany

ciscocisco_ios_xe_softwareMatch16.3.2

ciscocisco_ios_xe_softwareMatch16.3.3

ciscocisco_ios_xe_softwareMatch16.3.4

ciscocisco_ios_xe_softwareMatch16.3.5

ciscocisco_ios_xe_softwareMatch16.3.6

ciscocisco_ios_xe_softwareMatch16.3.7

ciscocisco_ios_xe_softwareMatch16.3.8

ciscocisco_ios_xe_softwareMatch16.3.9

ciscocisco_ios_xe_softwareMatch16.3.10

ciscocisco_ios_xe_softwareMatch16.3.11

ciscocisco_ios_xe_softwareMatch16.4.1

ciscocisco_ios_xe_softwareMatch16.4.2

ciscocisco_ios_xe_softwareMatch16.4.3

ciscocisco_ios_xe_softwareMatch16.5.1

ciscocisco_ios_xe_softwareMatch16.5.1b

ciscocisco_ios_xe_softwareMatch16.5.2

ciscocisco_ios_xe_softwareMatch16.5.3

ciscocisco_ios_xe_softwareMatch16.6.1

ciscocisco_ios_xe_softwareMatch16.6.2

ciscocisco_ios_xe_softwareMatch16.6.3

ciscocisco_ios_xe_softwareMatch16.6.4

ciscocisco_ios_xe_softwareMatch16.6.5

ciscocisco_ios_xe_softwareMatch16.6.4s

ciscocisco_ios_xe_softwareMatch16.6.5a

ciscocisco_ios_xe_softwareMatch16.6.6

ciscocisco_ios_xe_softwareMatch16.6.5b

ciscocisco_ios_xe_softwareMatch16.6.7

ciscocisco_ios_xe_softwareMatch16.6.7a

ciscocisco_ios_xe_softwareMatch16.6.8

ciscocisco_ios_xe_softwareMatch16.6.9

ciscocisco_ios_xe_softwareMatch16.6.10

ciscocisco_ios_xe_softwareMatch16.7.1

ciscocisco_ios_xe_softwareMatch16.7.2

ciscocisco_ios_xe_softwareMatch16.7.3

ciscocisco_ios_xe_softwareMatch16.8.1

ciscocisco_ios_xe_softwareMatch16.8.1b

ciscocisco_ios_xe_softwareMatch16.8.1s

ciscocisco_ios_xe_softwareMatch16.8.1c

ciscocisco_ios_xe_softwareMatch16.8.2

ciscocisco_ios_xe_softwareMatch16.8.3

ciscocisco_ios_xe_softwareMatch16.9.1

ciscocisco_ios_xe_softwareMatch16.9.2

ciscocisco_ios_xe_softwareMatch16.9.1a

ciscocisco_ios_xe_softwareMatch16.9.1b

ciscocisco_ios_xe_softwareMatch16.9.1s

ciscocisco_ios_xe_softwareMatch16.9.1c

ciscocisco_ios_xe_softwareMatch16.9.3

ciscocisco_ios_xe_softwareMatch16.9.2a

ciscocisco_ios_xe_softwareMatch16.9.2s

ciscocisco_ios_xe_softwareMatch16.9.3h

ciscocisco_ios_xe_softwareMatch16.9.4

ciscocisco_ios_xe_softwareMatch16.9.3s

ciscocisco_ios_xe_softwareMatch16.9.4c

ciscocisco_ios_xe_softwareMatch16.9.5

ciscocisco_ios_xe_softwareMatch16.9.5f

ciscocisco_ios_xe_softwareMatch16.9.6

ciscocisco_ios_xe_softwareMatch16.9.7

ciscocisco_ios_xe_softwareMatch16.9.8

ciscocisco_ios_xe_softwareMatch16.9.8a

ciscocisco_ios_xe_softwareMatch16.9.8b

ciscocisco_ios_xe_softwareMatch16.10.1

ciscocisco_ios_xe_softwareMatch16.10.1a

ciscocisco_ios_xe_softwareMatch16.10.1s

ciscocisco_ios_xe_softwareMatch16.10.1e

ciscocisco_ios_xe_softwareMatch16.10.2

ciscocisco_ios_xe_softwareMatch16.10.3

ciscocisco_ios_xe_softwareMatch16.11.1

ciscocisco_ios_xe_softwareMatch16.11.1a

ciscocisco_ios_xe_softwareMatch16.11.1b

ciscocisco_ios_xe_softwareMatch16.11.2

ciscocisco_ios_xe_softwareMatch16.11.1s

ciscocisco_ios_xe_softwareMatch16.11.1c

ciscocisco_ios_xe_softwareMatch16.12.1

ciscocisco_ios_xe_softwareMatch16.12.1s

ciscocisco_ios_xe_softwareMatch16.12.1a

ciscocisco_ios_xe_softwareMatch16.12.1c

ciscocisco_ios_xe_softwareMatch16.12.2

ciscocisco_ios_xe_softwareMatch16.12.2a

ciscocisco_ios_xe_softwareMatch16.12.3

ciscocisco_ios_xe_softwareMatch16.12.8

ciscocisco_ios_xe_softwareMatch16.12.2s

ciscocisco_ios_xe_softwareMatch16.12.2t

ciscocisco_ios_xe_softwareMatch16.12.4

ciscocisco_ios_xe_softwareMatch16.12.3s

ciscocisco_ios_xe_softwareMatch16.12.5

ciscocisco_ios_xe_softwareMatch16.12.6

ciscocisco_ios_xe_softwareMatch16.12.5a

ciscocisco_ios_xe_softwareMatch16.12.7

ciscocisco_ios_xe_softwareMatch17.1.1

ciscocisco_ios_xe_softwareMatch17.1.1a

ciscocisco_ios_xe_softwareMatch17.1.1s

ciscocisco_ios_xe_softwareMatch17.1.2

ciscocisco_ios_xe_softwareMatch17.1.1t

ciscocisco_ios_xe_softwareMatch17.1.3

ciscocisco_ios_xe_softwareMatch17.2.1

ciscocisco_ios_xe_softwareMatch17.2.1r

ciscocisco_ios_xe_softwareMatch17.2.1v

ciscocisco_ios_xe_softwareMatch17.2.2

ciscocisco_ios_xe_softwareMatch17.2.3

ciscocisco_ios_xe_softwareMatch17.3.5a

ciscocisco_ios_xe_softwareMatch17.3.5b

ciscocisco_ios_xe_softwareMatch17.4.1

ciscocisco_ios_xe_softwareMatch17.4.2

ciscocisco_ios_xe_softwareMatch17.4.1a

ciscocisco_ios_xe_softwareMatch17.4.1b

ciscocisco_ios_xe_softwareMatch17.4.1c

ciscocisco_ios_xe_softwareMatch17.5.1

ciscocisco_ios_xe_softwareMatch17.5.1a

ciscocisco_ios_xe_softwareMatch17.6.1

ciscocisco_ios_xe_softwareMatch17.6.2

ciscocisco_ios_xe_softwareMatch17.6.1a

ciscocisco_ios_xe_softwareMatch17.6.3

ciscocisco_ios_xe_softwareMatch17.6.3a

ciscocisco_ios_xe_softwareMatch17.6.4

ciscocisco_ios_xe_softwareMatch17.7.1

ciscocisco_ios_xe_softwareMatch17.7.1a

ciscocisco_ios_xe_softwareMatch17.7.1b

ciscocisco_ios_xe_softwareMatch17.7.2

ciscocisco_ios_xe_softwareMatch17.8.1

ciscocisco_ios_xe_softwareMatch17.8.1a

ciscocisco_ios_xe_softwareMatchany

ciscoic3000_industrial_compute_gatewayMatchany

ciscoir510_operating_systemMatchany

ciscocgr1000_compute_moduleMatchany

VendorProductVersionCPE
ciscoios15.6tcpe:2.3:o:cisco:ios:15.6t:*:*:*:*:*:*:*
ciscoios15.6mcpe:2.3:o:cisco:ios:15.6m:*:*:*:*:*:*:*
ciscoios15.7mcpe:2.3:o:cisco:ios:15.7m:*:*:*:*:*:*:*
ciscoios15.8mcpe:2.3:o:cisco:ios:15.8m:*:*:*:*:*:*:*
ciscoios15.9mcpe:2.3:o:cisco:ios:15.9m:*:*:*:*:*:*:*
ciscoiosanycpe:2.3:o:cisco:ios:any:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.3cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.4cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.5cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.6cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.6t	cpe:2.3:o:cisco:ios:15.6t:::::::*
cisco	ios	15.6m	cpe:2.3:o:cisco:ios:15.6m:::::::*
cisco	ios	15.7m	cpe:2.3:o:cisco:ios:15.7m:::::::*
cisco	ios	15.8m	cpe:2.3:o:cisco:ios:15.8m:::::::*
cisco	ios	15.9m	cpe:2.3:o:cisco:ios:15.9m:::::::*
cisco	ios	any	cpe:2.3:o:cisco:ios:any:::::::*
cisco	cisco_ios_xe_software	16.3	cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:::::::*
cisco	cisco_ios_xe_software	16.4	cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:::::::*
cisco	cisco_ios_xe_software	16.5	cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:::::::*
cisco	cisco_ios_xe_software	16.6	cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:::::::*