CVE-2022-20851: Cisco IOS XE Software Web UI Command Injection Vulnerability
First published: Fri Sep 30 2022(Updated: )
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI API. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges. To exploit this vulnerability, an attacker must have valid Administrator privileges on the affected device.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XE Web UI | =17.6.1 | |
| Cisco 1000 Integrated Services Router | ||
| Cisco 1100-4g/6g Integrated Services Router | ||
| Cisco 1109-4p Integrated Services Router | ||
| Cisco 1100 Integrated Services Router | ||
| Cisco 1100 Integrated Services Router | ||
| Cisco 1100 Series Integrated Services Router | ||
| Cisco 1101 Integrated Services Router | ||
| Cisco 1101 Integrated Services Router | ||
| Cisco 1109 Integrated Services Router | ||
| Cisco 1109 Integrated Services Router | ||
| Cisco 1109 Integrated Services Router | ||
| Cisco 1111x-8p | ||
| Cisco 111x Integrated Services Router | ||
| Cisco 111x Integrated Services Router | ||
| Cisco 1120 Integrated Services Router | ||
| Cisco 1131 Integrated Services Router | ||
| Cisco 1160 Integrated Services Router | ||
| Cisco 4000 Series Integrated Services Routers | ||
| Cisco 4221 Integrated Services Router | ||
| Cisco 4321/k9 Integrated Services Router | ||
| Cisco 4331/k9-rf Integrated Services Router | ||
| Cisco 4351/k9-rf Integrated Services Router | ||
| Cisco 4431 Integrated Services Router | ||
| Cisco 4451-X Integrated Services Router | ||
| Cisco 4451-X Integrated Services Router | ||
| Cisco 4441 Integrated Services Router | ||
| Cisco 8101-32h | ||
| Cisco 8101-32h | ||
| Cisco 8102-64h | ||
| Cisco 8201 | ||
| Cisco 8201 | ||
| Cisco 8202 | ||
| Cisco 8800 12-slot | ||
| Cisco 8800 18-slot | ||
| Cisco 8800 4-slot | ||
| Cisco 8800 8-slot | ||
| Cisco 8804 | ||
| Cisco 8808 | ||
| Cisco 8812 | ||
| Cisco 8818 | ||
| Cisco 8831 Firmware | ||
| Cisco ASR 1000 Series | ||
| Cisco ASR 1000 series software | ||
| Cisco ASR 1001 | ||
| Cisco ASR 1001 | ||
| Cisco ASR 1001-HX-RF | ||
| Cisco ASR 1001-X | ||
| Cisco ASR 1001-X | ||
| Cisco ASR 1002 Fixed Router | ||
| Cisco ASR 1002 Fixed Router | ||
| Cisco ASR 1002-HX | ||
| Cisco ASR 1002-X | ||
| Cisco ASR 1002-X | ||
| Cisco ASR 1002-X | ||
| Cisco ASR 1004 | ||
| Cisco ASR 1006 | ||
| Cisco ASR 1006-X | ||
| Cisco ASR 1009-X | ||
| Cisco ASR 1013 | ||
| Cisco ASR 1023 Router | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-12x48UQ | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-12x48UQ-S | ||
| Cisco Catalyst 3650-12X48UR | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-12X48UR-L | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-12x48UZ-L | ||
| Cisco Catalyst 3650-12x48uz-s | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-24PD-S | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-24PS-E | ||
| Cisco Catalyst 3650-24PS-L | ||
| Cisco Catalyst 3650-24PS | ||
| Cisco Catalyst 3650-24TD-E | ||
| Cisco Catalyst 3650-24TD-L | ||
| Cisco Catalyst 3650-24TD Switch | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-24TS-L | ||
| Cisco Catalyst 3650-24TS-S | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-48FQ-E | ||
| Cisco Catalyst 3650-48FQ-L | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-48FQM Switch | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-48FQM Switch | ||
| Cisco Catalyst 3650 Series Switch | ||
| Cisco Catalyst 3650 Series Switch WS-C3650-48FS | ||
| Cisco Catalyst 3650 Series Switch WS-C3650-48FS | ||
| Cisco Catalyst 3650-48PD-E | ||
| Cisco Catalyst 3650-48PD | ||
| Cisco Catalyst 3650-48PD-S | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-48PQ-L | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-48PS-L | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 Series | ||
| Cisco Catalyst 3650-48TQ-S | ||
| Cisco Catalyst 3650-48TS Switch | ||
| Cisco Catalyst 3650-48TS Switch | ||
| Cisco Catalyst 3650-48TS Switch | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-8X24UQ | ||
| Cisco Catalyst 3650 | ||
| Cisco Catalyst 3650-8X24UQ | ||
| Cisco Catalyst 3650-8X24UQ | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-12X48U-E | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 Series | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 9300-24s-e Firmware | ||
| Cisco Catalyst 3850-24S-S | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-24T-L | ||
| Cisco Catalyst 3850-24T-S | ||
| Cisco Catalyst 3850-24U | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-24XS | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-24XU | ||
| Cisco Catalyst 3850-24XU | ||
| Cisco Catalyst 3850-24XU | ||
| Cisco Catalyst 3850-24XU | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-48F-E | ||
| Cisco Catalyst 3850-48F-L | ||
| Cisco Catalyst 3850-48F-S | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-48P-S | ||
| Cisco Catalyst 3850-48PW-S | ||
| Cisco Catalyst 3850-48T-E | ||
| Cisco Catalyst 3850-48T-L | ||
| Cisco Catalyst 3850 Series | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-48U-E | ||
| Cisco Catalyst 3850-48U | ||
| Cisco Catalyst 3850-48U | ||
| Cisco Catalyst 3850-48XS | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850-48XS | ||
| Cisco Catalyst 3850-48XS | ||
| Cisco Catalyst 3850-48XS-S | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 3850 | ||
| Cisco Catalyst 8200 | ||
| Cisco Catalyst 8300 | ||
| Cisco Catalyst 8300-1N1S-4T2X | ||
| Cisco Catalyst 8300 | ||
| Cisco Catalyst 8300-2N2S-4T2X | ||
| Cisco Catalyst 8300 | ||
| Cisco Catalyst 8500L Series Router | ||
| Cisco Catalyst 8500 | ||
| Cisco Catalyst 8500 | ||
| Cisco Catalyst 8510 CSR | ||
| Cisco Catalyst 8510MSR | ||
| Cisco Catalyst 8540CSR | ||
| Cisco Catalyst 8540MSR | ||
| Cisco Catalyst 9200CX | ||
| Cisco Catalyst 9200CX | ||
| Cisco Catalyst 9200 Series | ||
| Cisco Catalyst 9300 Firmware | ||
| Cisco Catalyst 9300-24p-a Firmware | ||
| Cisco Catalyst 9300-24p-e Firmware | ||
| Cisco Catalyst 9300-24s-a Firmware | ||
| Cisco Catalyst 9300-24s-e Firmware | ||
| Cisco Catalyst 9300-24t-a Firmware | ||
| Cisco Catalyst 9300-24t-e Firmware | ||
| Cisco Catalyst 9300-24u-a Firmware | ||
| Cisco Catalyst 9300-24u-e Firmware | ||
| Cisco Catalyst 9300-24ux-a Firmware | ||
| Cisco Catalyst 9300-24ux-e Firmware | ||
| Cisco Catalyst 9300-48p-a Firmware | ||
| Cisco Catalyst 9300-48p-e Firmware | ||
| Cisco Catalyst 9300-48s-a Firmware | ||
| Cisco Catalyst 9300-48s-e Firmware | ||
| Cisco Catalyst 9300-48t-a Firmware | ||
| Cisco Catalyst 9300-48t-e Firmware | ||
| Cisco Catalyst 9300-48u-a Firmware | ||
| Cisco Catalyst 9300-48u-e Firmware | ||
| Cisco Catalyst 9300-48un-a Firmware | ||
| Cisco Catalyst 9300-48un-e Firmware | ||
| Cisco Catalyst 9300-48uxm-a Firmware | ||
| Cisco Catalyst 9300-48uxm-e Firmware | ||
| Cisco Catalyst 9300l Firmware | ||
| Cisco Catalyst 9300L-24P-4G-A Firmware | ||
| Cisco Catalyst 9300l-24p-4g-e Firmware | ||
| Cisco Catalyst 9300L-24P-4X-A Firmware | ||
| Cisco Catalyst 9300l-24p-4x-e Firmware | ||
| Cisco Catalyst 9300l-24t-4g-a Firmware | ||
| Cisco Catalyst 9300L-24T-4G-E Firmware | ||
| Cisco Catalyst 9300l-24t-4x-a Firmware | ||
| Cisco Catalyst 9300L-24T-4X-E Firmware | ||
| Cisco Catalyst 9300L-48P-4G-A Firmware | ||
| Cisco Catalyst 9300l-48p-4g-e Firmware | ||
| Cisco Catalyst 9300l-48p-4x-a Firmware | ||
| Cisco Catalyst 9300L-48P-4X-E Firmware | ||
| Cisco Catalyst 9300l-48t-4g-a Firmware | ||
| Cisco Catalyst 9300l-48t-4g-e Firmware | ||
| Cisco Catalyst 9300l-48t-4x-a Firmware | ||
| Cisco Catalyst 9300L-48T-4X-E Firmware | ||
| Cisco Catalyst 9300L Stack | ||
| Cisco Catalyst 9300lm Firmware | ||
| Cisco Catalyst 9300x Firmware | ||
| Cisco Catalyst 9400 | ||
| Cisco Catalyst 9400 Supervisor Engine-1 | ||
| Cisco Catalyst C9407R | ||
| Cisco Catalyst C9410R | ||
| Cisco Catalyst 9500 Series | ||
| Cisco Catalyst 9500H | ||
| Cisco Catalyst 9600 | ||
| Cisco Catalyst 9600 Supervisor Engine-1 | ||
| Cisco Catalyst 9600 | ||
| Cisco Catalyst 9800 Firmware | ||
| Cisco Catalyst 9800-40 | ||
| Cisco Catalyst 9800-80 | ||
| Cisco Catalyst 9800-CL | ||
| Cisco Catalyst 9800-L | ||
| Cisco Catalyst 9800-L | ||
| Cisco Catalyst 9800-L |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-20851?
The severity of CVE-2022-20851 is classified as high due to its potential for exploitation via injection attacks.
How do I fix CVE-2022-20851?
To fix CVE-2022-20851, upgrade to a patched version of Cisco IOS XE Software as specified in the security advisory.
What kind of attack can be performed using CVE-2022-20851?
CVE-2022-20851 can be exploited to execute injection attacks on affected Cisco devices.
Which devices are affected by CVE-2022-20851?
CVE-2022-20851 affects Cisco IOS XE Software version 17.6.1 and potentially other versions if they do not include the necessary patches.
Is authentication required to exploit CVE-2022-20851?
Yes, an attacker must be authenticated to exploit CVE-2022-20851.
- agent/type
- agent/weakness
- agent/severity
- agent/title
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xe web ui
- version/cisco ios xe web ui/17.6.1
- canonical/cisco 1000 integrated services router
- canonical/cisco 1100-4g/6g integrated services router
- canonical/cisco 1109-4p integrated services router
- canonical/cisco 1100 integrated services router
- canonical/cisco 1100 series integrated services router
- canonical/cisco 1101 integrated services router
- canonical/cisco 1109 integrated services router
- canonical/cisco 1111x-8p
- canonical/cisco 111x integrated services router
- canonical/cisco 1120 integrated services router
- canonical/cisco 1131 integrated services router
- canonical/cisco 1160 integrated services router
- canonical/cisco 4000 series integrated services routers
- canonical/cisco 4221 integrated services router
- canonical/cisco 4321/k9 integrated services router
- canonical/cisco 4331/k9-rf integrated services router
- canonical/cisco 4351/k9-rf integrated services router
- canonical/cisco 4431 integrated services router
- canonical/cisco 4451-x integrated services router
- canonical/cisco 4441 integrated services router
- canonical/cisco 8101-32h
- canonical/cisco 8102-64h
- canonical/cisco 8201
- canonical/cisco 8202
- canonical/cisco 8800 12-slot
- canonical/cisco 8800 18-slot
- canonical/cisco 8800 4-slot
- canonical/cisco 8800 8-slot
- canonical/cisco 8804
- canonical/cisco 8808
- canonical/cisco 8812
- canonical/cisco 8818
- canonical/cisco 8831 firmware
- canonical/cisco asr 1000 series
- canonical/cisco asr 1000 series software
- canonical/cisco asr 1001
- canonical/cisco asr 1001-hx-rf
- canonical/cisco asr 1001-x
- canonical/cisco asr 1002 fixed router
- canonical/cisco asr 1002-hx
- canonical/cisco asr 1002-x
- canonical/cisco asr 1004
- canonical/cisco asr 1006
- canonical/cisco asr 1006-x
- canonical/cisco asr 1009-x
- canonical/cisco asr 1013
- canonical/cisco asr 1023 router
- canonical/cisco catalyst 3650
- canonical/cisco catalyst 3650-12x48uq
- canonical/cisco catalyst 3650-12x48uq-s
- canonical/cisco catalyst 3650-12x48ur
- canonical/cisco catalyst 3650-12x48ur-l
- canonical/cisco catalyst 3650-12x48uz-l
- canonical/cisco catalyst 3650-12x48uz-s
- canonical/cisco catalyst 3650-24pd-s
- canonical/cisco catalyst 3650-24ps-e
- canonical/cisco catalyst 3650-24ps-l
- canonical/cisco catalyst 3650-24ps
- canonical/cisco catalyst 3650-24td-e
- canonical/cisco catalyst 3650-24td-l
- canonical/cisco catalyst 3650-24td switch
- canonical/cisco catalyst 3650-24ts-l
- canonical/cisco catalyst 3650-24ts-s
- canonical/cisco catalyst 3650-48fq-e
- canonical/cisco catalyst 3650-48fq-l
- canonical/cisco catalyst 3650-48fqm switch
- canonical/cisco catalyst 3650 series switch
- canonical/cisco catalyst 3650 series switch ws-c3650-48fs
- canonical/cisco catalyst 3650-48pd-e
- canonical/cisco catalyst 3650-48pd
- canonical/cisco catalyst 3650-48pd-s
- canonical/cisco catalyst 3650-48pq-l
- canonical/cisco catalyst 3650-48ps-l
- canonical/cisco catalyst 3650 series
- canonical/cisco catalyst 3650-48tq-s
- canonical/cisco catalyst 3650-48ts switch
- canonical/cisco catalyst 3650-8x24uq
- canonical/cisco catalyst 3850
- canonical/cisco catalyst 3850-12x48u-e
- canonical/cisco catalyst 3850 series
- canonical/cisco catalyst 9300-24s-e firmware
- canonical/cisco catalyst 3850-24s-s
- canonical/cisco catalyst 3850-24t-l
- canonical/cisco catalyst 3850-24t-s
- canonical/cisco catalyst 3850-24u
- canonical/cisco catalyst 3850-24xs
- canonical/cisco catalyst 3850-24xu
- canonical/cisco catalyst 3850-48f-e
- canonical/cisco catalyst 3850-48f-l
- canonical/cisco catalyst 3850-48f-s
- canonical/cisco catalyst 3850-48p-s
- canonical/cisco catalyst 3850-48pw-s
- canonical/cisco catalyst 3850-48t-e
- canonical/cisco catalyst 3850-48t-l
- canonical/cisco catalyst 3850-48u-e
- canonical/cisco catalyst 3850-48u
- canonical/cisco catalyst 3850-48xs
- canonical/cisco catalyst 3850-48xs-s
- canonical/cisco catalyst 8200
- canonical/cisco catalyst 8300
- canonical/cisco catalyst 8300-1n1s-4t2x
- canonical/cisco catalyst 8300-2n2s-4t2x
- canonical/cisco catalyst 8500l series router
- canonical/cisco catalyst 8500
- canonical/cisco catalyst 8510 csr
- canonical/cisco catalyst 8510msr
- canonical/cisco catalyst 8540csr
- canonical/cisco catalyst 8540msr
- canonical/cisco catalyst 9200cx
- canonical/cisco catalyst 9200 series
- canonical/cisco catalyst 9300 firmware
- canonical/cisco catalyst 9300-24p-a firmware
- canonical/cisco catalyst 9300-24p-e firmware
- canonical/cisco catalyst 9300-24s-a firmware
- canonical/cisco catalyst 9300-24t-a firmware
- canonical/cisco catalyst 9300-24t-e firmware
- canonical/cisco catalyst 9300-24u-a firmware
- canonical/cisco catalyst 9300-24u-e firmware
- canonical/cisco catalyst 9300-24ux-a firmware
- canonical/cisco catalyst 9300-24ux-e firmware
- canonical/cisco catalyst 9300-48p-a firmware
- canonical/cisco catalyst 9300-48p-e firmware
- canonical/cisco catalyst 9300-48s-a firmware
- canonical/cisco catalyst 9300-48s-e firmware
- canonical/cisco catalyst 9300-48t-a firmware
- canonical/cisco catalyst 9300-48t-e firmware
- canonical/cisco catalyst 9300-48u-a firmware
- canonical/cisco catalyst 9300-48u-e firmware
- canonical/cisco catalyst 9300-48un-a firmware
- canonical/cisco catalyst 9300-48un-e firmware
- canonical/cisco catalyst 9300-48uxm-a firmware
- canonical/cisco catalyst 9300-48uxm-e firmware
- canonical/cisco catalyst 9300l firmware
- canonical/cisco catalyst 9300l-24p-4g-a firmware
- canonical/cisco catalyst 9300l-24p-4g-e firmware
- canonical/cisco catalyst 9300l-24p-4x-a firmware
- canonical/cisco catalyst 9300l-24p-4x-e firmware
- canonical/cisco catalyst 9300l-24t-4g-a firmware
- canonical/cisco catalyst 9300l-24t-4g-e firmware
- canonical/cisco catalyst 9300l-24t-4x-a firmware
- canonical/cisco catalyst 9300l-24t-4x-e firmware
- canonical/cisco catalyst 9300l-48p-4g-a firmware
- canonical/cisco catalyst 9300l-48p-4g-e firmware
- canonical/cisco catalyst 9300l-48p-4x-a firmware
- canonical/cisco catalyst 9300l-48p-4x-e firmware
- canonical/cisco catalyst 9300l-48t-4g-a firmware
- canonical/cisco catalyst 9300l-48t-4g-e firmware
- canonical/cisco catalyst 9300l-48t-4x-a firmware
- canonical/cisco catalyst 9300l-48t-4x-e firmware
- canonical/cisco catalyst 9300l stack
- canonical/cisco catalyst 9300lm firmware
- canonical/cisco catalyst 9300x firmware
- canonical/cisco catalyst 9400
- canonical/cisco catalyst 9400 supervisor engine-1
- canonical/cisco catalyst c9407r
- canonical/cisco catalyst c9410r
- canonical/cisco catalyst 9500 series
- canonical/cisco catalyst 9500h
- canonical/cisco catalyst 9600
- canonical/cisco catalyst 9600 supervisor engine-1
- canonical/cisco catalyst 9800 firmware
- canonical/cisco catalyst 9800-40
- canonical/cisco catalyst 9800-80
- canonical/cisco catalyst 9800-cl
- canonical/cisco catalyst 9800-l