CVE-2022-20942
First published: Thu Nov 03 2022(Updated: )
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an authenticated, remote attacker to retrieve sensitive information from an affected device, including user credentials. This vulnerability is due to weak enforcement of back-end authorization checks. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain confidential data that is stored on the affected device.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco AsyncOS | <14.2.1-015 | |
| Cisco AsyncOS | >=14.3.0<14.3.0-023 | |
| Cisco Secure Email Gateway | ||
| Cisco AsyncOS | <14.2.0-217 | |
| Cisco AsyncOS | >=14.3.0<14.3.0-115 | |
| Cisco Secure Email and Web Manager | ||
| Cisco AsyncOS | <12.0.5-011 | |
| Cisco AsyncOS | >=12.5<12.5.4-005 | |
| Cisco AsyncOS | >=14.0<14.0.2-012 | |
| Cisco Secure Web Appliance | ||
| All of | ||
| Any of | ||
| Cisco AsyncOS | <14.2.1-015 | |
| Cisco AsyncOS | >=14.3.0<14.3.0-023 | |
| Cisco Secure Email Gateway | ||
| All of | ||
| Any of | ||
| Cisco AsyncOS | <14.2.0-217 | |
| Cisco AsyncOS | >=14.3.0<14.3.0-115 | |
| Cisco Secure Email and Web Manager | ||
| All of | ||
| Any of | ||
| Cisco AsyncOS | <12.0.5-011 | |
| Cisco AsyncOS | >=12.5<12.5.4-005 | |
| Cisco AsyncOS | >=14.0<14.0.2-012 | |
| Cisco Secure Web Appliance |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-20942?
CVE-2022-20942 is a vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance.
How can an attacker exploit CVE-2022-20942?
An authenticated, remote attacker can exploit CVE-2022-20942 to retrieve sensitive information.
What is the severity of CVE-2022-20942?
CVE-2022-20942 has a severity rating of 6.5 (Medium).
Which software versions are affected by CVE-2022-20942?
CVE-2022-20942 affects Cisco AsyncOS versions up to and excluding 14.2.1-015 and versions up to and excluding 14.3.0-023.
How can I fix CVE-2022-20942?
To fix CVE-2022-20942, update to a version of Cisco AsyncOS that is not affected by the vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/references
- agent/severity
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/cisco
- canonical/cisco asyncos
- version/cisco asyncos/14.3.0
- canonical/cisco secure email gateway
- canonical/cisco secure email and web manager
- version/cisco asyncos/12.5
- version/cisco asyncos/14.0
- canonical/cisco secure web appliance