What is the vulnerability ID for this Cisco Firepower Threat Defense (FTD) Software vulnerability?

The vulnerability ID is CVE-2022-20949.

What is the severity of CVE-2022-20949?

The severity of CVE-2022-20949 is medium.

What software is affected by CVE-2022-20949?

Cisco Firepower Threat Defense (FTD) Software versions 6.1.0 to 7.2.0 are affected.

How does CVE-2022-20949 exploit work?

CVE-2022-20949 allows an authenticated, remote attacker with high privileges to execute configuration commands on an affected system by exploiting a vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software.

Where can I find more information about CVE-2022-20949?

You can find more information about CVE-2022-20949 on the Cisco Security Advisory page: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-mgmt-privesc-7GqR2th

Vulnerability/
CVE-2022-20949

medium

6.5

CWE

399

10/11/2022

3/8/2024

CVE-2022-20949

First published: Thu Nov 10 2022(Updated: )

A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is not properly restricted on an affected device. An attacker could exploit this vulnerability by sending specific messages to the affected HTTPS handler. A successful exploit could allow the attacker to perform configuration changes on the affected system, which should be configured and managed only through Cisco Firepower Management Center (FMC) Software.

Credit: ykramarz@cisco.com ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Firepower Threat Defense	>=6.1.0<=6.1.0.7
Cisco Firepower Threat Defense	>=6.2.0<=6.2.0.6
Cisco Firepower Threat Defense	>=6.2.2<=6.2.2.5
Cisco Firepower Threat Defense	>=6.2.3<=6.2.3.18
Cisco Firepower Threat Defense	>=6.3.0<=6.3.0.5
Cisco Firepower Threat Defense	>=6.4.0<=6.4.0.15
Cisco Firepower Threat Defense	>=6.5.0<=6.5.0.5
Cisco Firepower Threat Defense	>=6.6.0<=6.6.5.2
Cisco Firepower Threat Defense	>=6.7.0<=6.7.0.3
Cisco Firepower Threat Defense	>=7.0.0<=7.0.3
Cisco Firepower Threat Defense	=6.2.1
Cisco Firepower Threat Defense	=7.1.0.0
Cisco Firepower Threat Defense	=7.1.0.1
Cisco Firepower Threat Defense	=7.1.0.2
Cisco Firepower Threat Defense	=7.2.0
Cisco Firepower Threat Defense	=7.2.0.1

Remedy

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-mgmt-privesc-7GqR2th

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this Cisco Firepower Threat Defense (FTD) Software vulnerability?
The vulnerability ID is CVE-2022-20949.
What is the severity of CVE-2022-20949?
The severity of CVE-2022-20949 is medium.
What software is affected by CVE-2022-20949?
Cisco Firepower Threat Defense (FTD) Software versions 6.1.0 to 7.2.0 are affected.
How does CVE-2022-20949 exploit work?
CVE-2022-20949 allows an authenticated, remote attacker with high privileges to execute configuration commands on an affected system by exploiting a vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software.
Where can I find more information about CVE-2022-20949?
You can find more information about CVE-2022-20949 on the Cisco Security Advisory page: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-mgmt-privesc-7GqR2th

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/remedy
agent/last-modified-date
agent/severity
agent/references
agent/author
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/cisco
canonical/cisco firepower threat defense
version/cisco firepower threat defense/6.1.0
version/cisco firepower threat defense/6.1.0.7
version/cisco firepower threat defense/6.2.0
version/cisco firepower threat defense/6.2.0.6
version/cisco firepower threat defense/6.2.2
version/cisco firepower threat defense/6.2.2.5
version/cisco firepower threat defense/6.2.3
version/cisco firepower threat defense/6.2.3.18
version/cisco firepower threat defense/6.3.0
version/cisco firepower threat defense/6.3.0.5
version/cisco firepower threat defense/6.4.0
version/cisco firepower threat defense/6.4.0.15
version/cisco firepower threat defense/6.5.0
version/cisco firepower threat defense/6.5.0.5
version/cisco firepower threat defense/6.6.0
version/cisco firepower threat defense/6.6.5.2
version/cisco firepower threat defense/6.7.0
version/cisco firepower threat defense/6.7.0.3
version/cisco firepower threat defense/7.0.0
version/cisco firepower threat defense/7.0.3
version/cisco firepower threat defense/6.2.1
version/cisco firepower threat defense/7.1.0.0
version/cisco firepower threat defense/7.1.0.1
version/cisco firepower threat defense/7.1.0.2
version/cisco firepower threat defense/7.2.0
version/cisco firepower threat defense/7.2.0.1