CVE-2022-20677 - Vulnerability Details

Description

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being authenticated, or conduct a cross-site scripting (XSS) attack against a user of the affected software. For more information about these vulnerabilities, see the Details section of this advisory.

Published: 2022-04-15

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Cisco

Cisco IOS

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:cisco:ios:17.6.1:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4221_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:8101-32fh:-:::::::*
	cpe:2.3:h:cisco:8101-32h:-:::::::*
	cpe:2.3:h:cisco:8102-64h:-:::::::*
	cpe:2.3:h:cisco:8201:-:::::::*
	cpe:2.3:h:cisco:8201-32fh:-:::::::*
	cpe:2.3:h:cisco:8202:-:::::::*
	cpe:2.3:h:cisco:8800:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x:-:::::::*
	cpe:2.3:h:cisco:asr_1002-hx:-:::::::*
	cpe:2.3:h:cisco:asr_1006-x:-:::::::*
	cpe:2.3:h:cisco:asr_1009-x:-:::::::*
	cpe:2.3:h:cisco:asr_900:-:::::::*
	cpe:2.3:h:cisco:asr_9000v-v2:-:::::::*
	cpe:2.3:h:cisco:asr_9001:-:::::::*
	cpe:2.3:h:cisco:asr_9006:-:::::::*
	cpe:2.3:h:cisco:asr_9010:-:::::::*
	cpe:2.3:h:cisco:asr_9901:-:::::::*
	cpe:2.3:h:cisco:asr_9902:-:::::::*
	cpe:2.3:h:cisco:asr_9903:-:::::::*
	cpe:2.3:h:cisco:asr_9904:-:::::::*
	cpe:2.3:h:cisco:asr_9906:-:::::::*
	cpe:2.3:h:cisco:asr_9910:-:::::::*
	cpe:2.3:h:cisco:asr_9912:-:::::::*
	cpe:2.3:h:cisco:asr_9922:-:::::::*
	cpe:2.3:h:cisco:catalyst_3650:-:::::::*
	cpe:2.3:h:cisco:catalyst_3850:-:::::::*
	cpe:2.3:h:cisco:catalyst_8200:-:::::::*
	cpe:2.3:h:cisco:catalyst_8300:-:::::::*
	cpe:2.3:h:cisco:catalyst_8500:-:::::::*
	cpe:2.3:h:cisco:catalyst_8500l:-:::::::*
	cpe:2.3:h:cisco:catalyst_9200:-:::::::*
	cpe:2.3:h:cisco:catalyst_9300:-:::::::*
	cpe:2.3:h:cisco:catalyst_9400:-:::::::*
	cpe:2.3:h:cisco:catalyst_9500:-:::::::*
	cpe:2.3:h:cisco:catalyst_9500h:-:::::::*
	cpe:2.3:h:cisco:catalyst_9600:-:::::::*
	cpe:2.3:h:cisco:catalyst_9800:-:::::::*
	cpe:2.3:h:cisco:catalyst_9800-40:-:::::::*
	cpe:2.3:h:cisco:catalyst_9800-80:-:::::::*
	cpe:2.3:h:cisco:catalyst_9800-cl:-:::::::*
	cpe:2.3:h:cisco:catalyst_9800-l:-:::::::*
	cpe:2.3:h:cisco:catalyst_cg418-e:-:::::::*
	cpe:2.3:h:cisco:catalyst_cg522-e:-:::::::*
	cpe:2.3:h:cisco:catalyst_ess9300:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3200:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3300:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3400:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie9300:-:::::::*
	cpe:2.3:h:cisco:cloud_services_router_1000v:-:::::::*
	cpe:2.3:h:cisco:esr3300:-:::::::*
	cpe:2.3:h:cisco:esr6300:-:::::::*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2022-25927	Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being authenticated, or conduct a cross-site scripting (XSS) attack against a user of the affected software. For more information about these vulnerabilities, see the Details section of this advisory.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.0016.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-yuXQ6hFj

History

Wed, 06 Nov 2024 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Subscriptions

Cisco 1100-4g Integrated Services Router 1100-6g Integrated Services Router 1101 Integrated Services Router 1109 Integrated Services Router 1111x Integrated Services Router 111x Integrated Services Router 1120 Integrated Services Router 1131 Integrated Services Router 1160 Integrated Services Router 4221 Integrated Services Router 8101-32fh 8101-32h 8102-64h 8201 8201-32fh 8202 8800 Asr 1001-x Asr 1002-hx Asr 1006-x Asr 1009-x Asr 900 Asr 9000v-v2 Asr 9001 Asr 9006 Asr 9010 Asr 9901 Asr 9902 Asr 9903 Asr 9904 Asr 9906 Asr 9910 Asr 9912 Asr 9922 Catalyst 3650 Catalyst 3850 Catalyst 8200 Catalyst 8300 Catalyst 8500 Catalyst 8500l Catalyst 9200 Catalyst 9300 Catalyst 9400 Catalyst 9500 Catalyst 9500h Catalyst 9600 Catalyst 9800 Catalyst 9800-40 Catalyst 9800-80 Catalyst 9800-cl Catalyst 9800-l Catalyst Cg418-e Catalyst Cg522-e Catalyst Ess9300 Catalyst Ie3200 Catalyst Ie3300 Catalyst Ie3400 Catalyst Ie9300 Cloud Services Router 1000v Esr3300 Esr6300 Ios

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2022-04-15T14:16:46.734Z

Updated: 2024-11-06T16:25:32.069Z

Reserved: 2021-11-02T00:00:00.000Z

Link: CVE-2022-20677

Vulnrichment

Updated: 2024-08-03T02:17:52.949Z

NVD

Status : Modified

Published: 2022-04-15T15:15:12.413

Modified: 2024-11-21T06:43:17.923

Link: CVE-2022-20677

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object