cisco-sa-ftd-cmdinject-FmzsLN8: Cisco Firepower Threat Defense Software Command Injection Vulnerabilities
First published: Wed Oct 27 2021(Updated: )
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-cmdinject-FmzsLN8 This advisory is part of the October 2021 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: October 2021 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication.
Credit: CVE-2021-34755: This vulnerability was found by Ilkin Gasimov Cisco during internal security testingCVE-2021-34756 Cisco during internal security testingCVE-2021-34752: These vulnerabilities were found by Brandon Sakai Cisco during internal security testing
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco FTD Software | >=6.5.0=6.6.0<=6.7.0<6.7.0.3 (Jan 2022)>=6.2.2 and earlier=6.2.3=6.3.0<=6.4.0<6.4.0.13 (Nov 2021) | 6.7.0.3 (Jan 2022) 6.4.0.13 (Nov 2021) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for the Cisco Firepower Threat Defense Software Command Injection Vulnerabilities?
The vulnerability ID is cisco-sa-ftd-cmdinject-FmzsLN8.
What is the severity rating of the Cisco Firepower Threat Defense Software Command Injection Vulnerabilities?
The severity rating is 7.8 (High).
What software versions are affected by the Cisco Firepower Threat Defense Software Command Injection Vulnerabilities?
The affected software versions include 6.5.0 up to 6.7.0.3 (Jan 2022) and 6.2.2 and earlier, 6.2.3, 6.3.0, and 6.4.0 up to 6.4.0.13 (Nov 2021) of Cisco FTD Software.
How can an authenticated, local attacker exploit the Cisco Firepower Threat Defense Software Command Injection Vulnerabilities?
An authenticated, local attacker could exploit these vulnerabilities by executing arbitrary commands with root privileges through the CLI of Cisco Firepower Threat Defense Software.
Where can I find more information about the Cisco Firepower Threat Defense Software Command Injection Vulnerabilities?
You can find more information about these vulnerabilities in the Details section of the advisory available at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-cmdinject-FmzsLN8.
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/cisco-advisory
- source/Cisco
- agent/software-canonical-lookup
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/tags
- agent/event
- agent/description
- vendor/cisco
- canonical/cisco ftd software
- version/cisco ftd software/6.5.0
- version/cisco ftd software/6.6.0
- version/cisco ftd software/6.7.0
- version/cisco ftd software/6.2.2 and earlier
- version/cisco ftd software/6.2.3
- version/cisco ftd software/6.3.0
- version/cisco ftd software/6.4.0