What is the vulnerability ID for this Cisco ASA and FTD vulnerability?

The vulnerability ID for this Cisco ASA and FTD vulnerability is cisco-sa-asaftd-mgmt-privesc-BMFMUvye.

What is the severity of cisco-sa-asaftd-mgmt-privesc-BMFMUvye?

The severity of cisco-sa-asaftd-mgmt-privesc-BMFMUvye is high (8.8).

How does the vulnerability in Cisco ASA Software and FTD Software web services interface affect the system?

The vulnerability in Cisco ASA Software and FTD Software web services interface allows an authenticated, but unprivileged, remote attacker to elevate privileges to level 15.

Which Cisco ASA Software versions are affected by this vulnerability?

The affected Cisco ASA Software versions are 9.17, 9.16, 9.15, 9.14, 9.12, 9.8, and earlier versions.

How can I fix the vulnerability in Cisco FTD Software?

To fix the vulnerability in Cisco FTD Software, apply one of the following hotfixes: Cisco_FTD_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_FP1K_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_FP2K_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_Hotfix_AA-6.7.0.4-2.sh.REL.tar, or upgrade to version 6.4.0.15.

Vulnerability/
cisco-sa-asaftd-mgmt-privesc-BMFMUvye

high

8.8

CWE

266

27/4/2022

cisco-sa-asaftd-mgmt-privesc-BMFMUvye: Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Privilege Escalation Vulnerability

First published: Wed Apr 27 2022(Updated: )

A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, but unprivileged, remote attacker to elevate privileges to level 15. This vulnerability is due to improper separation of authentication and authorization scopes. An attacker could exploit this vulnerability by sending crafted HTTPS messages to the web services interface of an affected device. A successful exploit could allow the attacker to gain privilege level 15 access to the web management interface of the device. This includes privilege level 15 access to the device using management tools like the Cisco Adaptive Security Device Manager (ASDM) or the Cisco Security Manager (CSM). Note: With Cisco FTD Software, the impact is lower than the CVSS score suggests because the affected web management interface allows for read access only. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-mgmt-privesc-BMFMUvye This advisory is part of the April 2022 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: April 2022 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication.

Credit: the Orange CERT-CC SA2 teams.

Affected Software	Affected Version	How to fix
Cisco ASA Software	=9.17<9.17.1.7=9.16<9.16.2.13=9.15<9.15.1.21>=9.13<=9.14<9.14.4>=9.9=9.10<=9.12<9.12.4.38>=9.7 and earlier<=9.8<9.8.4.43	9.17.1.7 9.16.2.13 9.15.1.21 9.14.4 9.12.4.38 9.8.4.43
Cisco FTD Software	>=6.5.0=6.6.0<=6.7.0<Cisco_FTD_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_FP1K_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_FP2K_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_Hotfix_AA-6.7.0.4-2.sh.REL.tar>=6.2.2 and earlier=6.2.3=6.3.0<=6.4.0<6.4.0.15	Cisco_FTD_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_FP1K_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_FP2K_Hotfix_AA-6.7.0.4-2.sh.REL.tarCisco_FTD_SSP_Hotfix_AA-6.7.0.4-2.sh.REL.tar 6.4.0.15

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-mgmt-privesc-BMFMUvye (Advisory)

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2022-20759

Frequently Asked Questions

What is the vulnerability ID for this Cisco ASA and FTD vulnerability?
The vulnerability ID for this Cisco ASA and FTD vulnerability is cisco-sa-asaftd-mgmt-privesc-BMFMUvye.
What is the severity of cisco-sa-asaftd-mgmt-privesc-BMFMUvye?
The severity of cisco-sa-asaftd-mgmt-privesc-BMFMUvye is high (8.8).
How does the vulnerability in Cisco ASA Software and FTD Software web services interface affect the system?
The vulnerability in Cisco ASA Software and FTD Software web services interface allows an authenticated, but unprivileged, remote attacker to elevate privileges to level 15.
Which Cisco ASA Software versions are affected by this vulnerability?
The affected Cisco ASA Software versions are 9.17, 9.16, 9.15, 9.14, 9.12, 9.8, and earlier versions.
How can I fix the vulnerability in Cisco FTD Software?
To fix the vulnerability in Cisco FTD Software, apply one of the following hotfixes: Cisco_FTD_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_FP1K_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_FP2K_Hotfix_AA-6.7.0.4-2.sh.REL.tar, Cisco_FTD_SSP_Hotfix_AA-6.7.0.4-2.sh.REL.tar, or upgrade to version 6.4.0.15.

agent/author
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/cisco-advisory
source/Cisco
agent/software-canonical-lookup
agent/references
agent/title
agent/severity
agent/weakness
agent/description
agent/event
agent/tags
agent/source
vendor/cisco
canonical/cisco asa software
version/cisco asa software/9.17
version/cisco asa software/9.16
version/cisco asa software/9.15
version/cisco asa software/9.13
version/cisco asa software/9.14
version/cisco asa software/9.9
version/cisco asa software/9.10
version/cisco asa software/9.12
version/cisco asa software/9.7 and earlier
version/cisco asa software/9.8
canonical/cisco ftd software
version/cisco ftd software/6.5.0
version/cisco ftd software/6.6.0
version/cisco ftd software/6.7.0
version/cisco ftd software/6.2.2 and earlier
version/cisco ftd software/6.2.3
version/cisco ftd software/6.3.0
version/cisco ftd software/6.4.0