VDB
CVE-2022-20868
CVE-2022-20868
PUBLISHED
CVSS 4.699999809265137 MEDIUM
A vulnerability in the web-based management interface of Cisco Email Security Appliance, Cisco Secure Email and Web Manager and Cisco Secure Web Appliance could allow an authenticated, remote attacker to elevate privileges on an affected system. The attacker needs valid credentials to exploit this vulnerability. This vulnerability is due to the use of a hardcoded value to encrypt a token used for certain APIs calls . An attacker could exploit this vulnerability by authenticating to the device and sending a crafted HTTP request. A successful exploit could allow the attacker to impersonate another valid user and execute commands with the privileges of that user account.
EPSS 0.29% · 52.7th percentile
Risk Scores
CVSS 3.1
4.699999809265137
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
EPSS Score
0.29%
52.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Secure Web Appliance | 12.5.2-007, 12.5.4-005, 14.5.0-498 |
| Cisco | Cisco Secure Email | 14.2.0-620, 14.0.0-698, 13.5.1-277 |
| Cisco | Cisco Secure Email and Web Manager | 12.5.0-636, 12.0.1-011, 14.1.0-223 |
| cisco | asyncos | 12.0, 13.0, 14.5 |
Exploit Intelligence
Timeline
- Nov 3, 2022 CVE Published
- Nov 5, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Jan 30, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 15, 2023 EPSS Score
- Apr 27, 2023 EPSS Score
- Jun 9, 2023 EPSS Score
- Jul 22, 2023 EPSS Score
- Oct 16, 2023 EPSS Score
- Nov 29, 2023 EPSS Score
- Jan 11, 2024 EPSS Score
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-csrf-vgNtTpAs advisory
- cisco-sa-esasmawsa-vulns-YRuSW5mD url
- https://nvd.nist.gov/vuln/detail/CVE-2022-20868 advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esasmawsa-vulns-YRuSW5mD url