A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.

This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.12511.

Exploitation none

Automatable no

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Cisco Cisco Redundancy Configuration Manager unknown
Version Status Constraints
2021.02.0 affected
2021.01.0 affected
21.19.n13 affected
21.17.19 affected
21.18.24 affected
21.25.0 affected
21.15.60 affected
21.22.11 affected
21.20.25 affected
21.20.21 affected
21.24.2 affected
21.23.10 affected
21.22.n5 affected
21.15.57 affected
21.25.1 affected
21.18.21 affected
21.23.1 affected
21.19.11 affected
21.16.c16 affected
21.23.5 affected
21.22.4 affected
21.22.ua2 affected
21.23.n6 affected
21.17.18 affected
21.17.17 affected
21.21.KS2 affected
21.20.23 affected
21.20.15 affected
21.20.p9 affected
21.20.17 affected
21.20.14 affected
21.21.3 affected
21.19.n9 affected
21.23.0 affected
21.5.30 affected
21.22.n4 affected
21.20.12 affected
21.23.b2 affected
21.20.13 affected
21.18.22 affected
21.18.23 affected
21.20.24 affected
21.23.6 affected
21.21.1 affected
21.23.8 affected
21.11.20 affected
21.15.58 affected
21.24.0 affected
21.18.18 affected
21.20.u8 affected
21.18.19 affected
21.21.2 affected
21.22.2 affected
21.22.8 affected
21.22.uj3 affected
21.22.5 affected
21.22.3 affected
21.22.10 affected
21.18.20 affected
21.15.55 affected
21.12.22 affected
21.23.4 affected
21.15.59 affected
21.22.ua0 affected
21.20.16 affected
21.20.18 affected
21.20.19 affected
21.19.n7 affected
21.20.20 affected
21.19.n10 affected
21.19.n11 affected
21.22.7 affected
21.22.ua3 affected
21.19.n12 affected
21.23.9 affected
21.18.16 affected
21.16.10 affected
21.22.6 affected
21.18.17 affected
21.24.1 affected
21.11.21 affected
21.23.3 affected
21.9.13 affected
21.20.k8 affected
21.19.n8 affected
21.22.9 affected
21.16.c17 affected
21.16.9 affected
21.23.2 affected
21.20.22 affected
21.18.7 affected
21.19.6 affected
21.23.7 affected
21.11.16 affected
21.18.13 affected
21.15.47 affected
21.19.n6 affected
6.9.8 affected
21.20.k6 affected
21.20.6 affected
21.19.10 affected
21.19.n4 affected
21.15.46 affected
21.17.14 affected
21.15.52 affected
21.16.6 affected
21.22.n3 affected
21.15.54 affected
21.18.15 affected
21.18.11 affected
21.18.8 affected
21.12.20 affected
21.5.28 affected
21.20.11 affected
21.8.12 affected
21.19.7 affected
21.19.5 affected
21.11.19 affected
21.16.c15 affected
21.18.12 affected
21.15.51 affected
21.18.14 affected
21.11.15 affected
21.16.c14 affected
21.20.4 affected
21.20.7 affected
21.14.b22 affected
21.17.10 affected
21.12.21 affected
21.19.9 affected
21.13.21 affected
21.14.23 affected
21.20.UV0 affected
21.10.6 affected
21.15.45 affected
21.15.53 affected
21.17.15 affected
21.17.16 affected
6.14.2 affected
21.19.n3 affected
21.17.11 affected
21.21.0 affected
21.20.10 affected
21.20.3 affected
21.20.5 affected
21.16.7 affected
21.22.1 affected
21.17.9 affected
21.17.13 affected
21.20.2 affected
21.20.9 affected
21.5.27 affected
21.14.22 affected
21.19.8 affected
21.22.n2 affected
21.16.8 affected
21.11.17 affected
21.20.8 affected
21.20.k7 affected
21.18.9 affected
21.19.n5 affected
21.11.18 affected
21.5.29 affected
21.15.48 affected
21.22.0 affected
21.14.b19 affected
21.15.17 affected
21.16.c4 affected
21.19.2 affected
6.2.b17 affected
6.9.7 affected
21.16.c6 affected
21.17.8 affected
21.11.13 affected
21.12.19 affected
21.12.18 affected
21.6.15 affected
21.20.0 affected
6.13.EY2 affected
21.15.36 affected
21.15.21 affected
21.15.43 affected
6.14.0 affected
21.14.b15 affected
21.15.14 affected
21.15.15 affected
21.16.c7 affected
21.16.c3 affected
6.13.EY1 affected
21.15.13 affected
21.12.15 affected
21.5.25 affected
21.14.b12 affected
21.18.6 affected
21.19.4 affected
21.17.3 affected
21.16.c5 affected
21.14.b21 affected
21.18.1 affected
6.11.0 affected
21.14.17 affected
21.5.26 affected
21.14.b13 affected
21.14.b16 affected
21.15.22 affected
21.15.23 affected
21.16.3 affected
21.16.c10 affected
21.16.d1 affected
21.15.28 affected
21.11.11 affected
21.15.30 affected
21.15.29 affected
21.13.18 affected
21.12.16 affected
21.17.5 affected
21.14.b18 affected
21.14.RH0 affected
21.14.b14 affected
6.6.7 affected
21.15.20 affected
21.15.32 affected
21.14.18 affected
21.6.b25 affected
21.17.2 affected
6.2.b15 affected
21.15.33 affected
21.13.19 affected
6.2.b14 affected
21.19.n1 affected
21.19.1 affected
21.19.0 affected
21.6.b26 affected
6.2.b16 affected
21.11.12 affected
21.18.3 affected
21.17.7 affected
21.14.12 affected
21.19.n2 affected
21.16.c11 affected
21.16.c12 affected
6.10.0 affected
21.16.4 affected
6.13.0 affected
21.13.16 affected
21.16.c13 affected
21.17.1 affected
21.17.6 affected
21.12.17 affected
21.11.10 affected
21.20.SV1 affected
21.11.14 affected
6.11.1 affected
21.17.0 affected
21.9.12 affected
21.20.1 affected
21.14.19 affected
21.14.c3 affected
21.15.18 affected
21.15.19 affected
21.15.16 affected
21.15.39 affected
6.6.6 affected
21.14.11 affected
21.14.b17 affected
21.14.16 affected
21.15.24 affected
21.6.b24 affected
21.16.c9 affected
21.16.c8 affected
6.8.1 affected
21.15.27 affected
21.15.26 affected
21.15.25 affected
21.17.4 affected
21.13.17 affected
6.9.5 affected
21.18.5 affected
21.15.40 affected
6.12.0 affected
21.18.2 affected
21.12.14 affected
21.16.d0 affected
21.14.20 affected
21.18.0 affected
21.15.37 affected
21.15.41 affected
21.18.4 affected
21.20.SV2 affected
21.20.SV3 affected
21.16.5 affected
21.20.SV5 affected
5.1.15 affected
21.19.3 affected
21.13.20 affected
21.14.b20 affected
21.15.7 affected
21.13.15 affected
21.15.11 affected
21.15.9 affected
21.15.0 affected
21.10.4 affected
21.12.12 affected
21.12.4 affected
21.12.8 affected
21.15.5 affected
21.13.8 affected
21.8.10 affected
21.14.6 affected
21.15.1 affected
21.8.11 affected
21.4.16 affected
21.9.11 affected
21.16.c0 affected
21.13.14 affected
21.13.4 affected
21.14.7 affected
21.14.8 affected
21.9.8 affected
21.16.c2 affected
21.15.10 affected
21.15.2 affected
21.15.6 affected
6.7.0 affected
21.13.6 affected
21.9.10 affected
21.14.1 affected
21.7.13 affected
21.11.8 affected
21.14.2 affected
21.14.0 affected
21.12.10 affected
21.9.9 affected
21.13.5 affected
21.13.2 affected
21.13.9 affected
21.13.10 affected
21.12.5 affected
21.12.9 affected
21.5.23 affected
21.14.10 affected
21.14.c2 affected
21.14.9 affected
21.11.6 affected
21.5.20 affected
21.13.12 affected
21.15.12 affected
6.9.2 affected
21.15.4 affected
21.13.11 affected
21.13.7 affected
21.10.5 affected
21.6.b19 affected
21.6.b23 affected
21.13.0 affected
21.6.14 affected
21.13.13 affected
21.4.17 affected
21.11.9 affected
21.11.2 affected
21.15.8 affected
21.16.2 affected
21.16.1 affected
21.16.c1 affected
21.5.21 affected
21.11.4 affected
21.6.b21 affected
21.14.a5 affected
21.10.3 affected
21.11.5 affected
21.13.3 affected
21.5.22 affected
21.12.7 affected
21.12.13 affected
21.12.6 affected
21.5.19 affected
21.6.b22 affected
21.11.7 affected
21.13.1 affected
21.14.a0 affected
21.14.4 affected
21.14.5 affected
21.5.24 affected
21.14.3 affected
21.16.0 affected
21.6.b20 affected
21.7.5 affected
21.15.3 affected
21.6.12 affected
21.8.5 affected
21.9.7 affected
21.12.11 affected
21.12.2 affected
6.2.b6 affected
21.8.4 affected
6.2.b5 affected
21.5.15 affected
21.8.1 affected
21.4.13 affected
21.10.0 affected
21.5.13 affected
21.9.0 affected
21.9.4 affected
21.4.9 affected
21.4.12 affected
21.11.3 affected
21.5.16 affected
21.7.9 affected
6.5.0 affected
21.4.8 affected
21.6.8 affected
21.6.5 affected
21.8.3 affected
21.6.10 affected
21.6.4 affected
21.7.8 affected
21.4.15 affected
21.4.11 affected
21.8.6 affected
21.8.ca1 affected
21.9.6 affected
21.4.7 affected
21.11.0 affected
21.11.1 affected
21.5.7 affected
6.2.b4 affected
21.7.7 affected
21.6.b14 affected
21.6.b13 affected
21.6.b15 affected
21.7.6 affected
21.6.6 affected
21.9.5 affected
21.5.9 affected
21.5.14 affected
21.8.8 affected
21.5.12 affected
21.8.0 affected
21.5.8 affected
21.7.10 affected
6.2.5 affected
21.8.9 affected
6.4.0 affected
21.6.b17 affected
21.6.b16 affected
21.6.11 affected
21.10.1 affected
21.4.10 affected
21.4.14 affected
21.6.9 affected
21.6.7 affected
21.12.3 affected
21.9.1 affected
21.9.2 affected
21.12.0 affected
21.7.12 affected
21.10.2 affected
21.8.7 affected
21.8.2 affected
21.5.6 affected
21.5.10 affected
21.6.13 affected
21.6.b18 affected
21.7.11 affected
21.7.1 affected
21.9.3 affected
21.7.0 affected
21.5.11 affected
21.5.17 affected
21.5.4 affected
21.7.3 affected
21.4.1 affected
21.4.3 affected
21.7.2 affected
21.4.5 affected
21.5.2 affected
21.6.3 affected
21.6.0 affected
21.6.2 affected
21.5.5 affected
21.4.6 affected
21.4.0 affected
21.4.2 affected
21.4.4 affected
21.7.4 affected
21.5.0 affected
21.5.1 affected
21.6.1 affected
21.5.3 affected
21.19.n14 affected
21.25.3 affected
21.23.11 affected
21.23.b3 affected
21.20.c22 affected
21.20.27 affected
21.23.n7 affected
21.20.26 affected
21.23.12 affected
21.20.28 affected
21.22.ua5 affected

No data.

No data.

No data.

Project Subscriptions

Vendors Products
Cisco Subscribe
Redundancy Configuration Manager Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2022-25899 A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user. The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq cve-icon cve-icon
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO cve-icon cve-icon
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe cve-icon cve-icon
History

Fri, 15 Nov 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Cisco
Cisco redundancy Configuration Manager
CPEs cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*
Vendors & Products Cisco
Cisco redundancy Configuration Manager
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 15 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Description A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user. The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Title Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability
Weaknesses CWE-489
References
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2024-11-15T19:41:58.793Z

Reserved: 2021-11-02T13:28:29.035Z

Link: CVE-2022-20649

cve-icon Vulnrichment

Updated: 2024-11-15T19:41:42.667Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-15T16:15:20.247

Modified: 2024-11-18T17:11:56.587

Link: CVE-2022-20649

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses