CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
47.8%
A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level privileges are required to exploit this vulnerability.
This vulnerability is due to improper validation of a file when it is read from system flash memory. An attacker could exploit this vulnerability by copying a crafted file to the disk0: file system of an affected device. A successful exploit could allow the attacker to execute arbitrary code on the affected device after the next reload of the device, which could alter system behavior. Because the injected code could persist across device reboots, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.
[
{
"vendor": "Cisco",
"product": "Cisco Adaptive Security Appliance (ASA) Software",
"versions": [
{
"version": "9.8.1",
"status": "affected"
},
{
"version": "9.8.1.5",
"status": "affected"
},
{
"version": "9.8.1.7",
"status": "affected"
},
{
"version": "9.8.2",
"status": "affected"
},
{
"version": "9.8.2.8",
"status": "affected"
},
{
"version": "9.8.2.14",
"status": "affected"
},
{
"version": "9.8.2.15",
"status": "affected"
},
{
"version": "9.8.2.17",
"status": "affected"
},
{
"version": "9.8.2.20",
"status": "affected"
},
{
"version": "9.8.2.24",
"status": "affected"
},
{
"version": "9.8.2.26",
"status": "affected"
},
{
"version": "9.8.2.28",
"status": "affected"
},
{
"version": "9.8.2.33",
"status": "affected"
},
{
"version": "9.8.2.35",
"status": "affected"
},
{
"version": "9.8.2.38",
"status": "affected"
},
{
"version": "9.8.3.8",
"status": "affected"
},
{
"version": "9.8.3.11",
"status": "affected"
},
{
"version": "9.8.3.14",
"status": "affected"
},
{
"version": "9.8.3.16",
"status": "affected"
},
{
"version": "9.8.3.18",
"status": "affected"
},
{
"version": "9.8.3.21",
"status": "affected"
},
{
"version": "9.8.3",
"status": "affected"
},
{
"version": "9.8.3.26",
"status": "affected"
},
{
"version": "9.8.3.29",
"status": "affected"
},
{
"version": "9.8.4",
"status": "affected"
},
{
"version": "9.8.4.3",
"status": "affected"
},
{
"version": "9.8.4.7",
"status": "affected"
},
{
"version": "9.8.4.8",
"status": "affected"
},
{
"version": "9.8.4.10",
"status": "affected"
},
{
"version": "9.8.4.12",
"status": "affected"
},
{
"version": "9.8.4.15",
"status": "affected"
},
{
"version": "9.8.4.17",
"status": "affected"
},
{
"version": "9.8.4.25",
"status": "affected"
},
{
"version": "9.8.4.20",
"status": "affected"
},
{
"version": "9.8.4.22",
"status": "affected"
},
{
"version": "9.8.4.26",
"status": "affected"
},
{
"version": "9.8.4.29",
"status": "affected"
},
{
"version": "9.8.4.32",
"status": "affected"
},
{
"version": "9.8.4.33",
"status": "affected"
},
{
"version": "9.8.4.34",
"status": "affected"
},
{
"version": "9.8.4.35",
"status": "affected"
},
{
"version": "9.8.4.39",
"status": "affected"
},
{
"version": "9.8.4.40",
"status": "affected"
},
{
"version": "9.8.4.41",
"status": "affected"
},
{
"version": "9.8.4.43",
"status": "affected"
},
{
"version": "9.8.4.44",
"status": "affected"
},
{
"version": "9.8.4.45",
"status": "affected"
},
{
"version": "9.8.4.46",
"status": "affected"
},
{
"version": "9.8.4.48",
"status": "affected"
},
{
"version": "9.12.1",
"status": "affected"
},
{
"version": "9.12.1.2",
"status": "affected"
},
{
"version": "9.12.1.3",
"status": "affected"
},
{
"version": "9.12.2",
"status": "affected"
},
{
"version": "9.12.2.4",
"status": "affected"
},
{
"version": "9.12.2.5",
"status": "affected"
},
{
"version": "9.12.2.9",
"status": "affected"
},
{
"version": "9.12.3",
"status": "affected"
},
{
"version": "9.12.3.2",
"status": "affected"
},
{
"version": "9.12.3.7",
"status": "affected"
},
{
"version": "9.12.4",
"status": "affected"
},
{
"version": "9.12.3.12",
"status": "affected"
},
{
"version": "9.12.3.9",
"status": "affected"
},
{
"version": "9.12.2.1",
"status": "affected"
},
{
"version": "9.12.4.2",
"status": "affected"
},
{
"version": "9.12.4.4",
"status": "affected"
},
{
"version": "9.12.4.7",
"status": "affected"
},
{
"version": "9.12.4.10",
"status": "affected"
},
{
"version": "9.12.4.13",
"status": "affected"
},
{
"version": "9.12.4.8",
"status": "affected"
},
{
"version": "9.12.4.18",
"status": "affected"
},
{
"version": "9.12.4.24",
"status": "affected"
},
{
"version": "9.12.4.26",
"status": "affected"
},
{
"version": "9.12.4.29",
"status": "affected"
},
{
"version": "9.12.4.30",
"status": "affected"
},
{
"version": "9.12.4.35",
"status": "affected"
},
{
"version": "9.12.4.37",
"status": "affected"
},
{
"version": "9.12.4.38",
"status": "affected"
},
{
"version": "9.12.4.39",
"status": "affected"
},
{
"version": "9.12.4.40",
"status": "affected"
},
{
"version": "9.12.4.41",
"status": "affected"
},
{
"version": "9.12.4.47",
"status": "affected"
},
{
"version": "9.12.4.48",
"status": "affected"
},
{
"version": "9.12.4.50",
"status": "affected"
},
{
"version": "9.12.4.52",
"status": "affected"
},
{
"version": "9.12.4.54",
"status": "affected"
},
{
"version": "9.12.4.55",
"status": "affected"
},
{
"version": "9.12.4.56",
"status": "affected"
},
{
"version": "9.12.4.58",
"status": "affected"
},
{
"version": "9.12.4.62",
"status": "affected"
},
{
"version": "9.12.4.65",
"status": "affected"
},
{
"version": "9.14.1",
"status": "affected"
},
{
"version": "9.14.1.10",
"status": "affected"
},
{
"version": "9.14.1.6",
"status": "affected"
},
{
"version": "9.14.1.15",
"status": "affected"
},
{
"version": "9.14.1.19",
"status": "affected"
},
{
"version": "9.14.1.30",
"status": "affected"
},
{
"version": "9.14.2",
"status": "affected"
},
{
"version": "9.14.2.4",
"status": "affected"
},
{
"version": "9.14.2.8",
"status": "affected"
},
{
"version": "9.14.2.13",
"status": "affected"
},
{
"version": "9.14.2.15",
"status": "affected"
},
{
"version": "9.14.3",
"status": "affected"
},
{
"version": "9.14.3.1",
"status": "affected"
},
{
"version": "9.14.3.9",
"status": "affected"
},
{
"version": "9.14.3.11",
"status": "affected"
},
{
"version": "9.14.3.13",
"status": "affected"
},
{
"version": "9.14.3.18",
"status": "affected"
},
{
"version": "9.14.3.15",
"status": "affected"
},
{
"version": "9.14.4",
"status": "affected"
},
{
"version": "9.14.4.6",
"status": "affected"
},
{
"version": "9.14.4.7",
"status": "affected"
},
{
"version": "9.14.4.12",
"status": "affected"
},
{
"version": "9.14.4.13",
"status": "affected"
},
{
"version": "9.14.4.14",
"status": "affected"
},
{
"version": "9.14.4.15",
"status": "affected"
},
{
"version": "9.14.4.17",
"status": "affected"
},
{
"version": "9.14.4.22",
"status": "affected"
},
{
"version": "9.14.4.23",
"status": "affected"
},
{
"version": "9.15.1",
"status": "affected"
},
{
"version": "9.15.1.7",
"status": "affected"
},
{
"version": "9.15.1.10",
"status": "affected"
},
{
"version": "9.15.1.15",
"status": "affected"
},
{
"version": "9.15.1.16",
"status": "affected"
},
{
"version": "9.15.1.17",
"status": "affected"
},
{
"version": "9.15.1.1",
"status": "affected"
},
{
"version": "9.15.1.21",
"status": "affected"
},
{
"version": "9.16.1",
"status": "affected"
},
{
"version": "9.16.1.28",
"status": "affected"
},
{
"version": "9.16.2",
"status": "affected"
},
{
"version": "9.16.2.3",
"status": "affected"
},
{
"version": "9.16.2.7",
"status": "affected"
},
{
"version": "9.16.2.11",
"status": "affected"
},
{
"version": "9.16.2.13",
"status": "affected"
},
{
"version": "9.16.2.14",
"status": "affected"
},
{
"version": "9.16.3",
"status": "affected"
},
{
"version": "9.16.3.3",
"status": "affected"
},
{
"version": "9.16.3.14",
"status": "affected"
},
{
"version": "9.16.3.15",
"status": "affected"
},
{
"version": "9.16.3.19",
"status": "affected"
},
{
"version": "9.16.3.23",
"status": "affected"
},
{
"version": "9.16.4",
"status": "affected"
},
{
"version": "9.16.4.9",
"status": "affected"
},
{
"version": "9.16.4.14",
"status": "affected"
},
{
"version": "9.16.4.18",
"status": "affected"
},
{
"version": "9.16.4.19",
"status": "affected"
},
{
"version": "9.16.4.27",
"status": "affected"
},
{
"version": "9.16.4.38",
"status": "affected"
},
{
"version": "9.16.4.39",
"status": "affected"
},
{
"version": "9.16.4.42",
"status": "affected"
},
{
"version": "9.16.4.48",
"status": "affected"
},
{
"version": "9.16.4.55",
"status": "affected"
},
{
"version": "9.17.1",
"status": "affected"
},
{
"version": "9.17.1.7",
"status": "affected"
},
{
"version": "9.17.1.9",
"status": "affected"
},
{
"version": "9.17.1.10",
"status": "affected"
},
{
"version": "9.17.1.11",
"status": "affected"
},
{
"version": "9.17.1.13",
"status": "affected"
},
{
"version": "9.17.1.15",
"status": "affected"
},
{
"version": "9.17.1.20",
"status": "affected"
},
{
"version": "9.17.1.30",
"status": "affected"
},
{
"version": "9.17.1.33",
"status": "affected"
},
{
"version": "9.18.1",
"status": "affected"
},
{
"version": "9.18.1.3",
"status": "affected"
},
{
"version": "9.18.2",
"status": "affected"
},
{
"version": "9.18.2.5",
"status": "affected"
},
{
"version": "9.18.2.7",
"status": "affected"
},
{
"version": "9.18.2.8",
"status": "affected"
},
{
"version": "9.18.3",
"status": "affected"
},
{
"version": "9.18.3.39",
"status": "affected"
},
{
"version": "9.18.3.46",
"status": "affected"
},
{
"version": "9.18.3.53",
"status": "affected"
},
{
"version": "9.18.3.55",
"status": "affected"
},
{
"version": "9.18.3.56",
"status": "affected"
},
{
"version": "9.18.4",
"status": "affected"
},
{
"version": "9.18.4.5",
"status": "affected"
},
{
"version": "9.18.4.8",
"status": "affected"
},
{
"version": "9.19.1",
"status": "affected"
},
{
"version": "9.19.1.5",
"status": "affected"
},
{
"version": "9.19.1.9",
"status": "affected"
},
{
"version": "9.19.1.12",
"status": "affected"
},
{
"version": "9.19.1.18",
"status": "affected"
},
{
"version": "9.19.1.22",
"status": "affected"
},
{
"version": "9.19.1.24",
"status": "affected"
},
{
"version": "9.19.1.27",
"status": "affected"
},
{
"version": "9.20.1",
"status": "affected"
},
{
"version": "9.20.1.5",
"status": "affected"
},
{
"version": "9.20.2",
"status": "affected"
}
]
},
{
"vendor": "Cisco",
"product": "Cisco Firepower Threat Defense Software",
"versions": [
{
"version": "6.2.3",
"status": "affected"
},
{
"version": "6.2.3.1",
"status": "affected"
},
{
"version": "6.2.3.2",
"status": "affected"
},
{
"version": "6.2.3.3",
"status": "affected"
},
{
"version": "6.2.3.4",
"status": "affected"
},
{
"version": "6.2.3.5",
"status": "affected"
},
{
"version": "6.2.3.6",
"status": "affected"
},
{
"version": "6.2.3.7",
"status": "affected"
},
{
"version": "6.2.3.8",
"status": "affected"
},
{
"version": "6.2.3.10",
"status": "affected"
},
{
"version": "6.2.3.11",
"status": "affected"
},
{
"version": "6.2.3.9",
"status": "affected"
},
{
"version": "6.2.3.12",
"status": "affected"
},
{
"version": "6.2.3.13",
"status": "affected"
},
{
"version": "6.2.3.14",
"status": "affected"
},
{
"version": "6.2.3.15",
"status": "affected"
},
{
"version": "6.2.3.16",
"status": "affected"
},
{
"version": "6.2.3.17",
"status": "affected"
},
{
"version": "6.2.3.18",
"status": "affected"
},
{
"version": "6.6.0",
"status": "affected"
},
{
"version": "6.6.0.1",
"status": "affected"
},
{
"version": "6.6.1",
"status": "affected"
},
{
"version": "6.6.3",
"status": "affected"
},
{
"version": "6.6.4",
"status": "affected"
},
{
"version": "6.6.5",
"status": "affected"
},
{
"version": "6.6.5.1",
"status": "affected"
},
{
"version": "6.6.5.2",
"status": "affected"
},
{
"version": "6.6.7",
"status": "affected"
},
{
"version": "6.6.7.1",
"status": "affected"
},
{
"version": "6.4.0",
"status": "affected"
},
{
"version": "6.4.0.1",
"status": "affected"
},
{
"version": "6.4.0.3",
"status": "affected"
},
{
"version": "6.4.0.2",
"status": "affected"
},
{
"version": "6.4.0.4",
"status": "affected"
},
{
"version": "6.4.0.5",
"status": "affected"
},
{
"version": "6.4.0.6",
"status": "affected"
},
{
"version": "6.4.0.7",
"status": "affected"
},
{
"version": "6.4.0.8",
"status": "affected"
},
{
"version": "6.4.0.9",
"status": "affected"
},
{
"version": "6.4.0.10",
"status": "affected"
},
{
"version": "6.4.0.11",
"status": "affected"
},
{
"version": "6.4.0.12",
"status": "affected"
},
{
"version": "6.4.0.13",
"status": "affected"
},
{
"version": "6.4.0.14",
"status": "affected"
},
{
"version": "6.4.0.15",
"status": "affected"
},
{
"version": "6.4.0.16",
"status": "affected"
},
{
"version": "6.4.0.17",
"status": "affected"
},
{
"version": "6.7.0",
"status": "affected"
},
{
"version": "6.7.0.1",
"status": "affected"
},
{
"version": "6.7.0.2",
"status": "affected"
},
{
"version": "6.7.0.3",
"status": "affected"
},
{
"version": "7.0.0",
"status": "affected"
},
{
"version": "7.0.0.1",
"status": "affected"
},
{
"version": "7.0.1",
"status": "affected"
},
{
"version": "7.0.1.1",
"status": "affected"
},
{
"version": "7.0.2",
"status": "affected"
},
{
"version": "7.0.2.1",
"status": "affected"
},
{
"version": "7.0.3",
"status": "affected"
},
{
"version": "7.0.4",
"status": "affected"
},
{
"version": "7.0.5",
"status": "affected"
},
{
"version": "7.0.6",
"status": "affected"
},
{
"version": "7.0.6.1",
"status": "affected"
},
{
"version": "7.1.0",
"status": "affected"
},
{
"version": "7.1.0.1",
"status": "affected"
},
{
"version": "7.1.0.2",
"status": "affected"
},
{
"version": "7.1.0.3",
"status": "affected"
},
{
"version": "7.2.0",
"status": "affected"
},
{
"version": "7.2.0.1",
"status": "affected"
},
{
"version": "7.2.1",
"status": "affected"
},
{
"version": "7.2.2",
"status": "affected"
},
{
"version": "7.2.3",
"status": "affected"
},
{
"version": "7.2.4",
"status": "affected"
},
{
"version": "7.2.4.1",
"status": "affected"
},
{
"version": "7.2.5",
"status": "affected"
},
{
"version": "7.2.5.1",
"status": "affected"
},
{
"version": "7.3.0",
"status": "affected"
},
{
"version": "7.3.1",
"status": "affected"
},
{
"version": "7.3.1.1",
"status": "affected"
},
{
"version": "7.4.0",
"status": "affected"
},
{
"version": "7.4.1",
"status": "affected"
}
]
}
]
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
47.8%