CVE-2020-3455: Cisco FXOS Software for Firepower 4100/9300 Series Appliances Secure Boot Bypass Vulnerability
First published: Wed Oct 21 2020(Updated: )
A vulnerability in the secure boot process of Cisco FXOS Software could allow an authenticated, local attacker to bypass the secure boot mechanisms. The vulnerability is due to insufficient protections of the secure boot process. An attacker could exploit this vulnerability by injecting code into a specific file that is then referenced during the device boot process. A successful exploit could allow the attacker to break the chain of trust and inject code into the boot process of the device which would be executed at each boot and maintain persistence across reboots.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Firepower Extensible Operating System | <2.4.1.268 | |
| Cisco Firepower Extensible Operating System | >=2.6<2.6.1.214 | |
| Cisco Firepower Extensible Operating System | >=2.7<2.7.1.131 | |
| Cisco Firepower 4110 | ||
| Cisco Firepower 4112 | ||
| Cisco Firepower 4115 | ||
| Cisco Firepower 4120 | ||
| Cisco Firepower 4125 | ||
| Cisco Firepower 4140 | ||
| Cisco Firepower 4145 | ||
| Cisco Firepower 4150 | ||
| Cisco Firepower 9300 Sm-24 | ||
| Cisco Firepower 9300 Sm-36 | ||
| Cisco Firepower 9300 Sm-40 | ||
| Cisco Firepower 9300 Sm-44 | ||
| Cisco Firepower 9300 Sm-44 X 3 | ||
| Cisco Firepower 9300 Sm-48 | ||
| Cisco Firepower 9300 Sm-56 | ||
| Cisco Firepower 9300 Sm-56 X 3 |
Remedy
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxos-sbbp-XTuPkYTn
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the Cisco FXOS Software vulnerability (CVE-2020-3455)?
The vulnerability is in the secure boot process of Cisco FXOS Software, allowing an authenticated local attacker to bypass secure boot mechanisms.
How does the Cisco FXOS Software vulnerability (CVE-2020-3455) occur?
The vulnerability is due to insufficient protections of the secure boot process, which can be exploited by injecting malicious code.
What is the severity of the Cisco FXOS Software vulnerability (CVE-2020-3455)?
The severity of the vulnerability is high, with a CVSS score of 7.8.
Which software versions are affected by the Cisco FXOS Software vulnerability (CVE-2020-3455)?
Cisco Firepower Extensible Operating System versions 2.4.1.268 to 2.7.1.131 are affected.
How can the Cisco FXOS Software vulnerability (CVE-2020-3455) be mitigated?
Cisco has released software updates to address the vulnerability. Refer to the Cisco Security Advisory for details and apply the necessary patches.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/title
- agent/author
- agent/references
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- vendor/cisco
- canonical/cisco firepower extensible operating system
- version/cisco firepower extensible operating system/2.6
- version/cisco firepower extensible operating system/2.7
- canonical/cisco firepower 4110
- canonical/cisco firepower 4112
- canonical/cisco firepower 4115
- canonical/cisco firepower 4120
- canonical/cisco firepower 4125
- canonical/cisco firepower 4140
- canonical/cisco firepower 4145
- canonical/cisco firepower 4150
- canonical/cisco firepower 9300 sm-24
- canonical/cisco firepower 9300 sm-36
- canonical/cisco firepower 9300 sm-40
- canonical/cisco firepower 9300 sm-44
- canonical/cisco firepower 9300 sm-44 x 3
- canonical/cisco firepower 9300 sm-48
- canonical/cisco firepower 9300 sm-56
- canonical/cisco firepower 9300 sm-56 x 3