VDB
CVE-2022-20769
CVE-2022-20769
PUBLISHED
CVSS 7.800000190734863 HIGH
De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
EPSS 0.05% · 17.3th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.05%
17.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | wireless_lan_controller_software | 0, 0, 0 |
| Cisco | Cisco Catalyst SD-WAN Manager | 20.6.2.2.2, *, 19.2.31 |
| Cisco | Cisco SD-WAN vContainer | 20.3.1, 20.1.1, 17.2.5 |
| Cisco | N/A | |
| Cisco | IOS | |
| Cisco | IOS XE | |
| Cisco | Cisco Catalyst SD-WAN | 20.6.1.1, 18.3.1, 19.2.1 |
| Cisco | Cisco SD-WAN vEdge Router | 18.3.8, 19.0.0, 18.3.3 |
| Cisco | Cisco SD-WAN vEdge Cloud | 20.3.7.2, 20.3.8, 20.6.6 |
Exploit Intelligence
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-20775 (circl)
- 20220928 Cisco SD-WAN Software Privilege Escalation Vulnerabilities (circl)
- https://github.com/orangecertcc/security-research/security/advisories/GHSA-wmjv-552v-pxjc (circl)
- cisco-sa-sd-wan-priv-E6e8tEdF (circl)
- CIRCL exploited: CVE-2022-20775 (circl-sighting)
- CIRCL seen: CVE-2022-20775 (circl-sighting)
- CIRCL seen: CVE-2022-20775 (circl-sighting)
- CIRCL seen: CVE-2022-20775 (circl-sighting)
- CIRCL seen: CVE-2022-20775 (circl-sighting)
- CIRCL seen: CVE-2022-20775 (circl-sighting)
…and 14 more exploits
Timeline
- Sep 29, 2022 CVE Published
- Oct 1, 2022 EPSS Score
- Nov 14, 2022 EPSS Score
- Dec 29, 2022 EPSS Score
- Feb 11, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- May 11, 2023 EPSS Score
- Jun 24, 2023 EPSS Score
- Aug 8, 2023 EPSS Score
- Sep 21, 2023 EPSS Score
- Nov 4, 2023 EPSS Score
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-6vpe-dos-tJBtf5Zv advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-alg-dos-KU9Z8kFX advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-cat-verify-D4NEQA6q advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewc-priv-esc-nderYLtK advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-udp-dos-XDyEwhNz advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-mpls-dos-Ab4OUL3 advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-dos-mKGRrsCB advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-cip-dos-9rTbKLt9 advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-EgVqtON8 advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssh-excpt-dos-FzOBQTnk advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-dhcp-dos-76pCjPxK advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-mob-dos-342YAc6J advisory
- cisco-sa-sd-wan-priv-E6e8tEdF url
- https://github.com/orangecertcc/security-research/security/advisories/GHSA-wmjv-552v-pxjc url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-20775 url
- https://nvd.nist.gov/vuln/detail/CVE-2022-20769 advisory