Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-20868
HistoryNov 04, 2022 - 6:15 p.m.

CVE-2022-20868

2022-11-0418:15:10
CWE-321
CWE-798
[email protected]
web.nvd.nist.gov
cisco
email security appliance
vulnerability
web-based management
authenticated
remote attacker
elevate privileges
hardcoded value
encrypt token
crafted http request
impersonate user

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.4%

JSON

A vulnerability in the web-based management interface of Cisco Email Security Appliance, Cisco Secure Email and Web Manager and Cisco Secure Web Appliance could allow an authenticated, remote attacker to elevate privileges on an affected system. The attacker needs valid credentials to exploit this vulnerability.

This vulnerability is due to the use of a hardcoded value to encrypt a token used for certain APIs calls . An attacker could exploit this vulnerability by authenticating to the device and sending a crafted HTTP request. A successful exploit could allow the attacker to impersonate another valid user and execute commands with the privileges of that user account.

Affected configurations

NVD
Node
ciscoasyncosRange13.014.2.1
AND
ciscosecure_email_gatewayMatch-
Node
ciscoasyncosRange12.014.2.0
AND
ciscosecure_email_and_web_managerMatch-
Node
ciscoasyncosRange11.812.5.5
OR
ciscoasyncosRange14.014.0.4
OR
ciscoasyncosMatch14.5
AND
ciscosecure_web_applianceMatch-

Related

cve 1
cvelist 1
prion 1
nessus 3
cisco 1
cve
cve
CVE-2022-20868
2022-11-04 18:15:10
cvelist
cvelist
CVE-2022-20868
2022-11-03 19:29:31
prion
prion
Hardcoded credentials
2022-11-04 18:15:00
nessus
nessus
Cisco Secure Web Appliance Privilege Escalation (cisco-sa-esasmawsa-vulns-YRuSW5mD)
2022-11-03 00:00:00
Cisco Secure Email and Web Manager Multiple Vulnerabilities (cisco-sa-esasmawsa-vulns-YRuSW5mD)
2022-11-03 00:00:00
Cisco Email Security Appliance Multiple Vulnerabilities (cisco-sa-esasmawsa-vulns-YRuSW5mD)
2022-11-03 00:00:00
cisco
cisco
Cisco Email Security Appliance, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Next Generation Management Vulnerabilities
2022-11-02 16:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.4%

JSON
Related for NVD:CVE-2022-20868
cve1cvelist1prion1nessus3cisco1