What is CVE-2022-20956?

CVE-2022-20956 is a vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) that could allow an authenticated, remote attacker to bypass authorization and access system files.

What is the severity of CVE-2022-20956?

The severity of CVE-2022-20956 is high, with a CVSS score of 8.8.

What is affected by CVE-2022-20956?

Cisco Identity Services Engine versions 3.1, 3.1-patch1, 3.1-patch3, 3.1-patch4, and 3.2 are affected by CVE-2022-20956.

How can an attacker exploit CVE-2022-20956?

An authenticated, remote attacker can exploit CVE-2022-20956 by bypassing authorization in the web-based management interface of Cisco ISE and accessing system files.

Is there a fix available for CVE-2022-20956?

Yes, Cisco has released patches to address the vulnerability. Please refer to the Cisco Security Advisory for more information.

Vulnerability/
CVE-2022-20956

high

8.8

CWE

648

3/11/2022

25/1/2024

CVE-2022-20956

First published: Thu Nov 03 2022(Updated: )

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass authorization and access system files. This vulnerability is due to improper access control in the web-based management interface of an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected device. A successful exploit could allow the attacker to list, download, and delete certain files that they should not have access to. Cisco plans to release software updates that address this vulnerability. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-access-contol-EeufSUCx ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-access-contol-EeufSUCx"]

Credit: ykramarz@cisco.com ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Identity Services Engine	=3.1
Cisco Identity Services Engine	=3.1-patch1
Cisco Identity Services Engine	=3.1-patch3
Cisco Identity Services Engine	=3.1-patch4
Cisco Identity Services Engine	=3.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2022-20956?
CVE-2022-20956 is a vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) that could allow an authenticated, remote attacker to bypass authorization and access system files.
What is the severity of CVE-2022-20956?
The severity of CVE-2022-20956 is high, with a CVSS score of 8.8.
What is affected by CVE-2022-20956?
Cisco Identity Services Engine versions 3.1, 3.1-patch1, 3.1-patch3, 3.1-patch4, and 3.2 are affected by CVE-2022-20956.
How can an attacker exploit CVE-2022-20956?
An authenticated, remote attacker can exploit CVE-2022-20956 by bypassing authorization in the web-based management interface of Cisco ISE and accessing system files.
Is there a fix available for CVE-2022-20956?
Yes, Cisco has released patches to address the vulnerability. Please refer to the Cisco Security Advisory for more information.

collector/nvd-index
agent/type
agent/softwarecombine
agent/severity
agent/first-publish-date
agent/event
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/weakness
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/cisco
canonical/cisco identity services engine
version/cisco identity services engine/3.1
version/cisco identity services engine/3.1-patch1
version/cisco identity services engine/3.1-patch3
version/cisco identity services engine/3.1-patch4
version/cisco identity services engine/3.2