CVE-2022-20649 (GCVE-0-2022-20649)
Vulnerability from cvelistv5 – Published: 2024-11-15 15:59 – Updated: 2024-11-15 19:41
VLAI?
Summary
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.
This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Severity ?
8.1 (High)
CWE
- CWE-489 - Active Debug Code
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Redundancy Configuration Manager |
Affected:
2021.02.0
Affected: 2021.01.0 Affected: 21.19.n13 Affected: 21.17.19 Affected: 21.18.24 Affected: 21.25.0 Affected: 21.15.60 Affected: 21.22.11 Affected: 21.20.25 Affected: 21.20.21 Affected: 21.24.2 Affected: 21.23.10 Affected: 21.22.n5 Affected: 21.15.57 Affected: 21.25.1 Affected: 21.18.21 Affected: 21.23.1 Affected: 21.19.11 Affected: 21.16.c16 Affected: 21.23.5 Affected: 21.22.4 Affected: 21.22.ua2 Affected: 21.23.n6 Affected: 21.17.18 Affected: 21.17.17 Affected: 21.21.KS2 Affected: 21.20.23 Affected: 21.20.15 Affected: 21.20.p9 Affected: 21.20.17 Affected: 21.20.14 Affected: 21.21.3 Affected: 21.19.n9 Affected: 21.23.0 Affected: 21.5.30 Affected: 21.22.n4 Affected: 21.20.12 Affected: 21.23.b2 Affected: 21.20.13 Affected: 21.18.22 Affected: 21.18.23 Affected: 21.20.24 Affected: 21.23.6 Affected: 21.21.1 Affected: 21.23.8 Affected: 21.11.20 Affected: 21.15.58 Affected: 21.24.0 Affected: 21.18.18 Affected: 21.20.u8 Affected: 21.18.19 Affected: 21.21.2 Affected: 21.22.2 Affected: 21.22.8 Affected: 21.22.uj3 Affected: 21.22.5 Affected: 21.22.3 Affected: 21.22.10 Affected: 21.18.20 Affected: 21.15.55 Affected: 21.12.22 Affected: 21.23.4 Affected: 21.15.59 Affected: 21.22.ua0 Affected: 21.20.16 Affected: 21.20.18 Affected: 21.20.19 Affected: 21.19.n7 Affected: 21.20.20 Affected: 21.19.n10 Affected: 21.19.n11 Affected: 21.22.7 Affected: 21.22.ua3 Affected: 21.19.n12 Affected: 21.23.9 Affected: 21.18.16 Affected: 21.16.10 Affected: 21.22.6 Affected: 21.18.17 Affected: 21.24.1 Affected: 21.11.21 Affected: 21.23.3 Affected: 21.9.13 Affected: 21.20.k8 Affected: 21.19.n8 Affected: 21.22.9 Affected: 21.16.c17 Affected: 21.16.9 Affected: 21.23.2 Affected: 21.20.22 Affected: 21.18.7 Affected: 21.19.6 Affected: 21.23.7 Affected: 21.11.16 Affected: 21.18.13 Affected: 21.15.47 Affected: 21.19.n6 Affected: 6.9.8 Affected: 21.20.k6 Affected: 21.20.6 Affected: 21.19.10 Affected: 21.19.n4 Affected: 21.15.46 Affected: 21.17.14 Affected: 21.15.52 Affected: 21.16.6 Affected: 21.22.n3 Affected: 21.15.54 Affected: 21.18.15 Affected: 21.18.11 Affected: 21.18.8 Affected: 21.12.20 Affected: 21.5.28 Affected: 21.20.11 Affected: 21.8.12 Affected: 21.19.7 Affected: 21.19.5 Affected: 21.11.19 Affected: 21.16.c15 Affected: 21.18.12 Affected: 21.15.51 Affected: 21.18.14 Affected: 21.11.15 Affected: 21.16.c14 Affected: 21.20.4 Affected: 21.20.7 Affected: 21.14.b22 Affected: 21.17.10 Affected: 21.12.21 Affected: 21.19.9 Affected: 21.13.21 Affected: 21.14.23 Affected: 21.20.UV0 Affected: 21.10.6 Affected: 21.15.45 Affected: 21.15.53 Affected: 21.17.15 Affected: 21.17.16 Affected: 6.14.2 Affected: 21.19.n3 Affected: 21.17.11 Affected: 21.21.0 Affected: 21.20.10 Affected: 21.20.3 Affected: 21.20.5 Affected: 21.16.7 Affected: 21.22.1 Affected: 21.17.9 Affected: 21.17.13 Affected: 21.20.2 Affected: 21.20.9 Affected: 21.5.27 Affected: 21.14.22 Affected: 21.19.8 Affected: 21.22.n2 Affected: 21.16.8 Affected: 21.11.17 Affected: 21.20.8 Affected: 21.20.k7 Affected: 21.18.9 Affected: 21.19.n5 Affected: 21.11.18 Affected: 21.5.29 Affected: 21.15.48 Affected: 21.22.0 Affected: 21.14.b19 Affected: 21.15.17 Affected: 21.16.c4 Affected: 21.19.2 Affected: 6.2.b17 Affected: 6.9.7 Affected: 21.16.c6 Affected: 21.17.8 Affected: 21.11.13 Affected: 21.12.19 Affected: 21.12.18 Affected: 21.6.15 Affected: 21.20.0 Affected: 6.13.EY2 Affected: 21.15.36 Affected: 21.15.21 Affected: 21.15.43 Affected: 6.14.0 Affected: 21.14.b15 Affected: 21.15.14 Affected: 21.15.15 Affected: 21.16.c7 Affected: 21.16.c3 Affected: 6.13.EY1 Affected: 21.15.13 Affected: 21.12.15 Affected: 21.5.25 Affected: 21.14.b12 Affected: 21.18.6 Affected: 21.19.4 Affected: 21.17.3 Affected: 21.16.c5 Affected: 21.14.b21 Affected: 21.18.1 Affected: 6.11.0 Affected: 21.14.17 Affected: 21.5.26 Affected: 21.14.b13 Affected: 21.14.b16 Affected: 21.15.22 Affected: 21.15.23 Affected: 21.16.3 Affected: 21.16.c10 Affected: 21.16.d1 Affected: 21.15.28 Affected: 21.11.11 Affected: 21.15.30 Affected: 21.15.29 Affected: 21.13.18 Affected: 21.12.16 Affected: 21.17.5 Affected: 21.14.b18 Affected: 21.14.RH0 Affected: 21.14.b14 Affected: 6.6.7 Affected: 21.15.20 Affected: 21.15.32 Affected: 21.14.18 Affected: 21.6.b25 Affected: 21.17.2 Affected: 6.2.b15 Affected: 21.15.33 Affected: 21.13.19 Affected: 6.2.b14 Affected: 21.19.n1 Affected: 21.19.1 Affected: 21.19.0 Affected: 21.6.b26 Affected: 6.2.b16 Affected: 21.11.12 Affected: 21.18.3 Affected: 21.17.7 Affected: 21.14.12 Affected: 21.19.n2 Affected: 21.16.c11 Affected: 21.16.c12 Affected: 6.10.0 Affected: 21.16.4 Affected: 6.13.0 Affected: 21.13.16 Affected: 21.16.c13 Affected: 21.17.1 Affected: 21.17.6 Affected: 21.12.17 Affected: 21.11.10 Affected: 21.20.SV1 Affected: 21.11.14 Affected: 6.11.1 Affected: 21.17.0 Affected: 21.9.12 Affected: 21.20.1 Affected: 21.14.19 Affected: 21.14.c3 Affected: 21.15.18 Affected: 21.15.19 Affected: 21.15.16 Affected: 21.15.39 Affected: 6.6.6 Affected: 21.14.11 Affected: 21.14.b17 Affected: 21.14.16 Affected: 21.15.24 Affected: 21.6.b24 Affected: 21.16.c9 Affected: 21.16.c8 Affected: 6.8.1 Affected: 21.15.27 Affected: 21.15.26 Affected: 21.15.25 Affected: 21.17.4 Affected: 21.13.17 Affected: 6.9.5 Affected: 21.18.5 Affected: 21.15.40 Affected: 6.12.0 Affected: 21.18.2 Affected: 21.12.14 Affected: 21.16.d0 Affected: 21.14.20 Affected: 21.18.0 Affected: 21.15.37 Affected: 21.15.41 Affected: 21.18.4 Affected: 21.20.SV2 Affected: 21.20.SV3 Affected: 21.16.5 Affected: 21.20.SV5 Affected: 5.1.15 Affected: 21.19.3 Affected: 21.13.20 Affected: 21.14.b20 Affected: 21.15.7 Affected: 21.13.15 Affected: 21.15.11 Affected: 21.15.9 Affected: 21.15.0 Affected: 21.10.4 Affected: 21.12.12 Affected: 21.12.4 Affected: 21.12.8 Affected: 21.15.5 Affected: 21.13.8 Affected: 21.8.10 Affected: 21.14.6 Affected: 21.15.1 Affected: 21.8.11 Affected: 21.4.16 Affected: 21.9.11 Affected: 21.16.c0 Affected: 21.13.14 Affected: 21.13.4 Affected: 21.14.7 Affected: 21.14.8 Affected: 21.9.8 Affected: 21.16.c2 Affected: 21.15.10 Affected: 21.15.2 Affected: 21.15.6 Affected: 6.7.0 Affected: 21.13.6 Affected: 21.9.10 Affected: 21.14.1 Affected: 21.7.13 Affected: 21.11.8 Affected: 21.14.2 Affected: 21.14.0 Affected: 21.12.10 Affected: 21.9.9 Affected: 21.13.5 Affected: 21.13.2 Affected: 21.13.9 Affected: 21.13.10 Affected: 21.12.5 Affected: 21.12.9 Affected: 21.5.23 Affected: 21.14.10 Affected: 21.14.c2 Affected: 21.14.9 Affected: 21.11.6 Affected: 21.5.20 Affected: 21.13.12 Affected: 21.15.12 Affected: 6.9.2 Affected: 21.15.4 Affected: 21.13.11 Affected: 21.13.7 Affected: 21.10.5 Affected: 21.6.b19 Affected: 21.6.b23 Affected: 21.13.0 Affected: 21.6.14 Affected: 21.13.13 Affected: 21.4.17 Affected: 21.11.9 Affected: 21.11.2 Affected: 21.15.8 Affected: 21.16.2 Affected: 21.16.1 Affected: 21.16.c1 Affected: 21.5.21 Affected: 21.11.4 Affected: 21.6.b21 Affected: 21.14.a5 Affected: 21.10.3 Affected: 21.11.5 Affected: 21.13.3 Affected: 21.5.22 Affected: 21.12.7 Affected: 21.12.13 Affected: 21.12.6 Affected: 21.5.19 Affected: 21.6.b22 Affected: 21.11.7 Affected: 21.13.1 Affected: 21.14.a0 Affected: 21.14.4 Affected: 21.14.5 Affected: 21.5.24 Affected: 21.14.3 Affected: 21.16.0 Affected: 21.6.b20 Affected: 21.7.5 Affected: 21.15.3 Affected: 21.6.12 Affected: 21.8.5 Affected: 21.9.7 Affected: 21.12.11 Affected: 21.12.2 Affected: 6.2.b6 Affected: 21.8.4 Affected: 6.2.b5 Affected: 21.5.15 Affected: 21.8.1 Affected: 21.4.13 Affected: 21.10.0 Affected: 21.5.13 Affected: 21.9.0 Affected: 21.9.4 Affected: 21.4.9 Affected: 21.4.12 Affected: 21.11.3 Affected: 21.5.16 Affected: 21.7.9 Affected: 6.5.0 Affected: 21.4.8 Affected: 21.6.8 Affected: 21.6.5 Affected: 21.8.3 Affected: 21.6.10 Affected: 21.6.4 Affected: 21.7.8 Affected: 21.4.15 Affected: 21.4.11 Affected: 21.8.6 Affected: 21.8.ca1 Affected: 21.9.6 Affected: 21.4.7 Affected: 21.11.0 Affected: 21.11.1 Affected: 21.5.7 Affected: 6.2.b4 Affected: 21.7.7 Affected: 21.6.b14 Affected: 21.6.b13 Affected: 21.6.b15 Affected: 21.7.6 Affected: 21.6.6 Affected: 21.9.5 Affected: 21.5.9 Affected: 21.5.14 Affected: 21.8.8 Affected: 21.5.12 Affected: 21.8.0 Affected: 21.5.8 Affected: 21.7.10 Affected: 6.2.5 Affected: 21.8.9 Affected: 6.4.0 Affected: 21.6.b17 Affected: 21.6.b16 Affected: 21.6.11 Affected: 21.10.1 Affected: 21.4.10 Affected: 21.4.14 Affected: 21.6.9 Affected: 21.6.7 Affected: 21.12.3 Affected: 21.9.1 Affected: 21.9.2 Affected: 21.12.0 Affected: 21.7.12 Affected: 21.10.2 Affected: 21.8.7 Affected: 21.8.2 Affected: 21.5.6 Affected: 21.5.10 Affected: 21.6.13 Affected: 21.6.b18 Affected: 21.7.11 Affected: 21.7.1 Affected: 21.9.3 Affected: 21.7.0 Affected: 21.5.11 Affected: 21.5.17 Affected: 21.5.4 Affected: 21.7.3 Affected: 21.4.1 Affected: 21.4.3 Affected: 21.7.2 Affected: 21.4.5 Affected: 21.5.2 Affected: 21.6.3 Affected: 21.6.0 Affected: 21.6.2 Affected: 21.5.5 Affected: 21.4.6 Affected: 21.4.0 Affected: 21.4.2 Affected: 21.4.4 Affected: 21.7.4 Affected: 21.5.0 Affected: 21.5.1 Affected: 21.6.1 Affected: 21.5.3 Affected: 21.19.n14 Affected: 21.25.3 Affected: 21.23.11 Affected: 21.23.b3 Affected: 21.20.c22 Affected: 21.20.27 Affected: 21.23.n7 Affected: 21.20.26 Affected: 21.23.12 Affected: 21.20.28 Affected: 21.22.ua5 |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "redundancy_configuration_manager",
"vendor": "cisco",
"versions": [
{
"lessThan": "21.25.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-20649",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-15T19:40:41.090546Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T19:41:58.793Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Cisco Redundancy Configuration Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "2021.02.0"
},
{
"status": "affected",
"version": "2021.01.0"
},
{
"status": "affected",
"version": "21.19.n13"
},
{
"status": "affected",
"version": "21.17.19"
},
{
"status": "affected",
"version": "21.18.24"
},
{
"status": "affected",
"version": "21.25.0"
},
{
"status": "affected",
"version": "21.15.60"
},
{
"status": "affected",
"version": "21.22.11"
},
{
"status": "affected",
"version": "21.20.25"
},
{
"status": "affected",
"version": "21.20.21"
},
{
"status": "affected",
"version": "21.24.2"
},
{
"status": "affected",
"version": "21.23.10"
},
{
"status": "affected",
"version": "21.22.n5"
},
{
"status": "affected",
"version": "21.15.57"
},
{
"status": "affected",
"version": "21.25.1"
},
{
"status": "affected",
"version": "21.18.21"
},
{
"status": "affected",
"version": "21.23.1"
},
{
"status": "affected",
"version": "21.19.11"
},
{
"status": "affected",
"version": "21.16.c16"
},
{
"status": "affected",
"version": "21.23.5"
},
{
"status": "affected",
"version": "21.22.4"
},
{
"status": "affected",
"version": "21.22.ua2"
},
{
"status": "affected",
"version": "21.23.n6"
},
{
"status": "affected",
"version": "21.17.18"
},
{
"status": "affected",
"version": "21.17.17"
},
{
"status": "affected",
"version": "21.21.KS2"
},
{
"status": "affected",
"version": "21.20.23"
},
{
"status": "affected",
"version": "21.20.15"
},
{
"status": "affected",
"version": "21.20.p9"
},
{
"status": "affected",
"version": "21.20.17"
},
{
"status": "affected",
"version": "21.20.14"
},
{
"status": "affected",
"version": "21.21.3"
},
{
"status": "affected",
"version": "21.19.n9"
},
{
"status": "affected",
"version": "21.23.0"
},
{
"status": "affected",
"version": "21.5.30"
},
{
"status": "affected",
"version": "21.22.n4"
},
{
"status": "affected",
"version": "21.20.12"
},
{
"status": "affected",
"version": "21.23.b2"
},
{
"status": "affected",
"version": "21.20.13"
},
{
"status": "affected",
"version": "21.18.22"
},
{
"status": "affected",
"version": "21.18.23"
},
{
"status": "affected",
"version": "21.20.24"
},
{
"status": "affected",
"version": "21.23.6"
},
{
"status": "affected",
"version": "21.21.1"
},
{
"status": "affected",
"version": "21.23.8"
},
{
"status": "affected",
"version": "21.11.20"
},
{
"status": "affected",
"version": "21.15.58"
},
{
"status": "affected",
"version": "21.24.0"
},
{
"status": "affected",
"version": "21.18.18"
},
{
"status": "affected",
"version": "21.20.u8"
},
{
"status": "affected",
"version": "21.18.19"
},
{
"status": "affected",
"version": "21.21.2"
},
{
"status": "affected",
"version": "21.22.2"
},
{
"status": "affected",
"version": "21.22.8"
},
{
"status": "affected",
"version": "21.22.uj3"
},
{
"status": "affected",
"version": "21.22.5"
},
{
"status": "affected",
"version": "21.22.3"
},
{
"status": "affected",
"version": "21.22.10"
},
{
"status": "affected",
"version": "21.18.20"
},
{
"status": "affected",
"version": "21.15.55"
},
{
"status": "affected",
"version": "21.12.22"
},
{
"status": "affected",
"version": "21.23.4"
},
{
"status": "affected",
"version": "21.15.59"
},
{
"status": "affected",
"version": "21.22.ua0"
},
{
"status": "affected",
"version": "21.20.16"
},
{
"status": "affected",
"version": "21.20.18"
},
{
"status": "affected",
"version": "21.20.19"
},
{
"status": "affected",
"version": "21.19.n7"
},
{
"status": "affected",
"version": "21.20.20"
},
{
"status": "affected",
"version": "21.19.n10"
},
{
"status": "affected",
"version": "21.19.n11"
},
{
"status": "affected",
"version": "21.22.7"
},
{
"status": "affected",
"version": "21.22.ua3"
},
{
"status": "affected",
"version": "21.19.n12"
},
{
"status": "affected",
"version": "21.23.9"
},
{
"status": "affected",
"version": "21.18.16"
},
{
"status": "affected",
"version": "21.16.10"
},
{
"status": "affected",
"version": "21.22.6"
},
{
"status": "affected",
"version": "21.18.17"
},
{
"status": "affected",
"version": "21.24.1"
},
{
"status": "affected",
"version": "21.11.21"
},
{
"status": "affected",
"version": "21.23.3"
},
{
"status": "affected",
"version": "21.9.13"
},
{
"status": "affected",
"version": "21.20.k8"
},
{
"status": "affected",
"version": "21.19.n8"
},
{
"status": "affected",
"version": "21.22.9"
},
{
"status": "affected",
"version": "21.16.c17"
},
{
"status": "affected",
"version": "21.16.9"
},
{
"status": "affected",
"version": "21.23.2"
},
{
"status": "affected",
"version": "21.20.22"
},
{
"status": "affected",
"version": "21.18.7"
},
{
"status": "affected",
"version": "21.19.6"
},
{
"status": "affected",
"version": "21.23.7"
},
{
"status": "affected",
"version": "21.11.16"
},
{
"status": "affected",
"version": "21.18.13"
},
{
"status": "affected",
"version": "21.15.47"
},
{
"status": "affected",
"version": "21.19.n6"
},
{
"status": "affected",
"version": "6.9.8"
},
{
"status": "affected",
"version": "21.20.k6"
},
{
"status": "affected",
"version": "21.20.6"
},
{
"status": "affected",
"version": "21.19.10"
},
{
"status": "affected",
"version": "21.19.n4"
},
{
"status": "affected",
"version": "21.15.46"
},
{
"status": "affected",
"version": "21.17.14"
},
{
"status": "affected",
"version": "21.15.52"
},
{
"status": "affected",
"version": "21.16.6"
},
{
"status": "affected",
"version": "21.22.n3"
},
{
"status": "affected",
"version": "21.15.54"
},
{
"status": "affected",
"version": "21.18.15"
},
{
"status": "affected",
"version": "21.18.11"
},
{
"status": "affected",
"version": "21.18.8"
},
{
"status": "affected",
"version": "21.12.20"
},
{
"status": "affected",
"version": "21.5.28"
},
{
"status": "affected",
"version": "21.20.11"
},
{
"status": "affected",
"version": "21.8.12"
},
{
"status": "affected",
"version": "21.19.7"
},
{
"status": "affected",
"version": "21.19.5"
},
{
"status": "affected",
"version": "21.11.19"
},
{
"status": "affected",
"version": "21.16.c15"
},
{
"status": "affected",
"version": "21.18.12"
},
{
"status": "affected",
"version": "21.15.51"
},
{
"status": "affected",
"version": "21.18.14"
},
{
"status": "affected",
"version": "21.11.15"
},
{
"status": "affected",
"version": "21.16.c14"
},
{
"status": "affected",
"version": "21.20.4"
},
{
"status": "affected",
"version": "21.20.7"
},
{
"status": "affected",
"version": "21.14.b22"
},
{
"status": "affected",
"version": "21.17.10"
},
{
"status": "affected",
"version": "21.12.21"
},
{
"status": "affected",
"version": "21.19.9"
},
{
"status": "affected",
"version": "21.13.21"
},
{
"status": "affected",
"version": "21.14.23"
},
{
"status": "affected",
"version": "21.20.UV0"
},
{
"status": "affected",
"version": "21.10.6"
},
{
"status": "affected",
"version": "21.15.45"
},
{
"status": "affected",
"version": "21.15.53"
},
{
"status": "affected",
"version": "21.17.15"
},
{
"status": "affected",
"version": "21.17.16"
},
{
"status": "affected",
"version": "6.14.2"
},
{
"status": "affected",
"version": "21.19.n3"
},
{
"status": "affected",
"version": "21.17.11"
},
{
"status": "affected",
"version": "21.21.0"
},
{
"status": "affected",
"version": "21.20.10"
},
{
"status": "affected",
"version": "21.20.3"
},
{
"status": "affected",
"version": "21.20.5"
},
{
"status": "affected",
"version": "21.16.7"
},
{
"status": "affected",
"version": "21.22.1"
},
{
"status": "affected",
"version": "21.17.9"
},
{
"status": "affected",
"version": "21.17.13"
},
{
"status": "affected",
"version": "21.20.2"
},
{
"status": "affected",
"version": "21.20.9"
},
{
"status": "affected",
"version": "21.5.27"
},
{
"status": "affected",
"version": "21.14.22"
},
{
"status": "affected",
"version": "21.19.8"
},
{
"status": "affected",
"version": "21.22.n2"
},
{
"status": "affected",
"version": "21.16.8"
},
{
"status": "affected",
"version": "21.11.17"
},
{
"status": "affected",
"version": "21.20.8"
},
{
"status": "affected",
"version": "21.20.k7"
},
{
"status": "affected",
"version": "21.18.9"
},
{
"status": "affected",
"version": "21.19.n5"
},
{
"status": "affected",
"version": "21.11.18"
},
{
"status": "affected",
"version": "21.5.29"
},
{
"status": "affected",
"version": "21.15.48"
},
{
"status": "affected",
"version": "21.22.0"
},
{
"status": "affected",
"version": "21.14.b19"
},
{
"status": "affected",
"version": "21.15.17"
},
{
"status": "affected",
"version": "21.16.c4"
},
{
"status": "affected",
"version": "21.19.2"
},
{
"status": "affected",
"version": "6.2.b17"
},
{
"status": "affected",
"version": "6.9.7"
},
{
"status": "affected",
"version": "21.16.c6"
},
{
"status": "affected",
"version": "21.17.8"
},
{
"status": "affected",
"version": "21.11.13"
},
{
"status": "affected",
"version": "21.12.19"
},
{
"status": "affected",
"version": "21.12.18"
},
{
"status": "affected",
"version": "21.6.15"
},
{
"status": "affected",
"version": "21.20.0"
},
{
"status": "affected",
"version": "6.13.EY2"
},
{
"status": "affected",
"version": "21.15.36"
},
{
"status": "affected",
"version": "21.15.21"
},
{
"status": "affected",
"version": "21.15.43"
},
{
"status": "affected",
"version": "6.14.0"
},
{
"status": "affected",
"version": "21.14.b15"
},
{
"status": "affected",
"version": "21.15.14"
},
{
"status": "affected",
"version": "21.15.15"
},
{
"status": "affected",
"version": "21.16.c7"
},
{
"status": "affected",
"version": "21.16.c3"
},
{
"status": "affected",
"version": "6.13.EY1"
},
{
"status": "affected",
"version": "21.15.13"
},
{
"status": "affected",
"version": "21.12.15"
},
{
"status": "affected",
"version": "21.5.25"
},
{
"status": "affected",
"version": "21.14.b12"
},
{
"status": "affected",
"version": "21.18.6"
},
{
"status": "affected",
"version": "21.19.4"
},
{
"status": "affected",
"version": "21.17.3"
},
{
"status": "affected",
"version": "21.16.c5"
},
{
"status": "affected",
"version": "21.14.b21"
},
{
"status": "affected",
"version": "21.18.1"
},
{
"status": "affected",
"version": "6.11.0"
},
{
"status": "affected",
"version": "21.14.17"
},
{
"status": "affected",
"version": "21.5.26"
},
{
"status": "affected",
"version": "21.14.b13"
},
{
"status": "affected",
"version": "21.14.b16"
},
{
"status": "affected",
"version": "21.15.22"
},
{
"status": "affected",
"version": "21.15.23"
},
{
"status": "affected",
"version": "21.16.3"
},
{
"status": "affected",
"version": "21.16.c10"
},
{
"status": "affected",
"version": "21.16.d1"
},
{
"status": "affected",
"version": "21.15.28"
},
{
"status": "affected",
"version": "21.11.11"
},
{
"status": "affected",
"version": "21.15.30"
},
{
"status": "affected",
"version": "21.15.29"
},
{
"status": "affected",
"version": "21.13.18"
},
{
"status": "affected",
"version": "21.12.16"
},
{
"status": "affected",
"version": "21.17.5"
},
{
"status": "affected",
"version": "21.14.b18"
},
{
"status": "affected",
"version": "21.14.RH0"
},
{
"status": "affected",
"version": "21.14.b14"
},
{
"status": "affected",
"version": "6.6.7"
},
{
"status": "affected",
"version": "21.15.20"
},
{
"status": "affected",
"version": "21.15.32"
},
{
"status": "affected",
"version": "21.14.18"
},
{
"status": "affected",
"version": "21.6.b25"
},
{
"status": "affected",
"version": "21.17.2"
},
{
"status": "affected",
"version": "6.2.b15"
},
{
"status": "affected",
"version": "21.15.33"
},
{
"status": "affected",
"version": "21.13.19"
},
{
"status": "affected",
"version": "6.2.b14"
},
{
"status": "affected",
"version": "21.19.n1"
},
{
"status": "affected",
"version": "21.19.1"
},
{
"status": "affected",
"version": "21.19.0"
},
{
"status": "affected",
"version": "21.6.b26"
},
{
"status": "affected",
"version": "6.2.b16"
},
{
"status": "affected",
"version": "21.11.12"
},
{
"status": "affected",
"version": "21.18.3"
},
{
"status": "affected",
"version": "21.17.7"
},
{
"status": "affected",
"version": "21.14.12"
},
{
"status": "affected",
"version": "21.19.n2"
},
{
"status": "affected",
"version": "21.16.c11"
},
{
"status": "affected",
"version": "21.16.c12"
},
{
"status": "affected",
"version": "6.10.0"
},
{
"status": "affected",
"version": "21.16.4"
},
{
"status": "affected",
"version": "6.13.0"
},
{
"status": "affected",
"version": "21.13.16"
},
{
"status": "affected",
"version": "21.16.c13"
},
{
"status": "affected",
"version": "21.17.1"
},
{
"status": "affected",
"version": "21.17.6"
},
{
"status": "affected",
"version": "21.12.17"
},
{
"status": "affected",
"version": "21.11.10"
},
{
"status": "affected",
"version": "21.20.SV1"
},
{
"status": "affected",
"version": "21.11.14"
},
{
"status": "affected",
"version": "6.11.1"
},
{
"status": "affected",
"version": "21.17.0"
},
{
"status": "affected",
"version": "21.9.12"
},
{
"status": "affected",
"version": "21.20.1"
},
{
"status": "affected",
"version": "21.14.19"
},
{
"status": "affected",
"version": "21.14.c3"
},
{
"status": "affected",
"version": "21.15.18"
},
{
"status": "affected",
"version": "21.15.19"
},
{
"status": "affected",
"version": "21.15.16"
},
{
"status": "affected",
"version": "21.15.39"
},
{
"status": "affected",
"version": "6.6.6"
},
{
"status": "affected",
"version": "21.14.11"
},
{
"status": "affected",
"version": "21.14.b17"
},
{
"status": "affected",
"version": "21.14.16"
},
{
"status": "affected",
"version": "21.15.24"
},
{
"status": "affected",
"version": "21.6.b24"
},
{
"status": "affected",
"version": "21.16.c9"
},
{
"status": "affected",
"version": "21.16.c8"
},
{
"status": "affected",
"version": "6.8.1"
},
{
"status": "affected",
"version": "21.15.27"
},
{
"status": "affected",
"version": "21.15.26"
},
{
"status": "affected",
"version": "21.15.25"
},
{
"status": "affected",
"version": "21.17.4"
},
{
"status": "affected",
"version": "21.13.17"
},
{
"status": "affected",
"version": "6.9.5"
},
{
"status": "affected",
"version": "21.18.5"
},
{
"status": "affected",
"version": "21.15.40"
},
{
"status": "affected",
"version": "6.12.0"
},
{
"status": "affected",
"version": "21.18.2"
},
{
"status": "affected",
"version": "21.12.14"
},
{
"status": "affected",
"version": "21.16.d0"
},
{
"status": "affected",
"version": "21.14.20"
},
{
"status": "affected",
"version": "21.18.0"
},
{
"status": "affected",
"version": "21.15.37"
},
{
"status": "affected",
"version": "21.15.41"
},
{
"status": "affected",
"version": "21.18.4"
},
{
"status": "affected",
"version": "21.20.SV2"
},
{
"status": "affected",
"version": "21.20.SV3"
},
{
"status": "affected",
"version": "21.16.5"
},
{
"status": "affected",
"version": "21.20.SV5"
},
{
"status": "affected",
"version": "5.1.15"
},
{
"status": "affected",
"version": "21.19.3"
},
{
"status": "affected",
"version": "21.13.20"
},
{
"status": "affected",
"version": "21.14.b20"
},
{
"status": "affected",
"version": "21.15.7"
},
{
"status": "affected",
"version": "21.13.15"
},
{
"status": "affected",
"version": "21.15.11"
},
{
"status": "affected",
"version": "21.15.9"
},
{
"status": "affected",
"version": "21.15.0"
},
{
"status": "affected",
"version": "21.10.4"
},
{
"status": "affected",
"version": "21.12.12"
},
{
"status": "affected",
"version": "21.12.4"
},
{
"status": "affected",
"version": "21.12.8"
},
{
"status": "affected",
"version": "21.15.5"
},
{
"status": "affected",
"version": "21.13.8"
},
{
"status": "affected",
"version": "21.8.10"
},
{
"status": "affected",
"version": "21.14.6"
},
{
"status": "affected",
"version": "21.15.1"
},
{
"status": "affected",
"version": "21.8.11"
},
{
"status": "affected",
"version": "21.4.16"
},
{
"status": "affected",
"version": "21.9.11"
},
{
"status": "affected",
"version": "21.16.c0"
},
{
"status": "affected",
"version": "21.13.14"
},
{
"status": "affected",
"version": "21.13.4"
},
{
"status": "affected",
"version": "21.14.7"
},
{
"status": "affected",
"version": "21.14.8"
},
{
"status": "affected",
"version": "21.9.8"
},
{
"status": "affected",
"version": "21.16.c2"
},
{
"status": "affected",
"version": "21.15.10"
},
{
"status": "affected",
"version": "21.15.2"
},
{
"status": "affected",
"version": "21.15.6"
},
{
"status": "affected",
"version": "6.7.0"
},
{
"status": "affected",
"version": "21.13.6"
},
{
"status": "affected",
"version": "21.9.10"
},
{
"status": "affected",
"version": "21.14.1"
},
{
"status": "affected",
"version": "21.7.13"
},
{
"status": "affected",
"version": "21.11.8"
},
{
"status": "affected",
"version": "21.14.2"
},
{
"status": "affected",
"version": "21.14.0"
},
{
"status": "affected",
"version": "21.12.10"
},
{
"status": "affected",
"version": "21.9.9"
},
{
"status": "affected",
"version": "21.13.5"
},
{
"status": "affected",
"version": "21.13.2"
},
{
"status": "affected",
"version": "21.13.9"
},
{
"status": "affected",
"version": "21.13.10"
},
{
"status": "affected",
"version": "21.12.5"
},
{
"status": "affected",
"version": "21.12.9"
},
{
"status": "affected",
"version": "21.5.23"
},
{
"status": "affected",
"version": "21.14.10"
},
{
"status": "affected",
"version": "21.14.c2"
},
{
"status": "affected",
"version": "21.14.9"
},
{
"status": "affected",
"version": "21.11.6"
},
{
"status": "affected",
"version": "21.5.20"
},
{
"status": "affected",
"version": "21.13.12"
},
{
"status": "affected",
"version": "21.15.12"
},
{
"status": "affected",
"version": "6.9.2"
},
{
"status": "affected",
"version": "21.15.4"
},
{
"status": "affected",
"version": "21.13.11"
},
{
"status": "affected",
"version": "21.13.7"
},
{
"status": "affected",
"version": "21.10.5"
},
{
"status": "affected",
"version": "21.6.b19"
},
{
"status": "affected",
"version": "21.6.b23"
},
{
"status": "affected",
"version": "21.13.0"
},
{
"status": "affected",
"version": "21.6.14"
},
{
"status": "affected",
"version": "21.13.13"
},
{
"status": "affected",
"version": "21.4.17"
},
{
"status": "affected",
"version": "21.11.9"
},
{
"status": "affected",
"version": "21.11.2"
},
{
"status": "affected",
"version": "21.15.8"
},
{
"status": "affected",
"version": "21.16.2"
},
{
"status": "affected",
"version": "21.16.1"
},
{
"status": "affected",
"version": "21.16.c1"
},
{
"status": "affected",
"version": "21.5.21"
},
{
"status": "affected",
"version": "21.11.4"
},
{
"status": "affected",
"version": "21.6.b21"
},
{
"status": "affected",
"version": "21.14.a5"
},
{
"status": "affected",
"version": "21.10.3"
},
{
"status": "affected",
"version": "21.11.5"
},
{
"status": "affected",
"version": "21.13.3"
},
{
"status": "affected",
"version": "21.5.22"
},
{
"status": "affected",
"version": "21.12.7"
},
{
"status": "affected",
"version": "21.12.13"
},
{
"status": "affected",
"version": "21.12.6"
},
{
"status": "affected",
"version": "21.5.19"
},
{
"status": "affected",
"version": "21.6.b22"
},
{
"status": "affected",
"version": "21.11.7"
},
{
"status": "affected",
"version": "21.13.1"
},
{
"status": "affected",
"version": "21.14.a0"
},
{
"status": "affected",
"version": "21.14.4"
},
{
"status": "affected",
"version": "21.14.5"
},
{
"status": "affected",
"version": "21.5.24"
},
{
"status": "affected",
"version": "21.14.3"
},
{
"status": "affected",
"version": "21.16.0"
},
{
"status": "affected",
"version": "21.6.b20"
},
{
"status": "affected",
"version": "21.7.5"
},
{
"status": "affected",
"version": "21.15.3"
},
{
"status": "affected",
"version": "21.6.12"
},
{
"status": "affected",
"version": "21.8.5"
},
{
"status": "affected",
"version": "21.9.7"
},
{
"status": "affected",
"version": "21.12.11"
},
{
"status": "affected",
"version": "21.12.2"
},
{
"status": "affected",
"version": "6.2.b6"
},
{
"status": "affected",
"version": "21.8.4"
},
{
"status": "affected",
"version": "6.2.b5"
},
{
"status": "affected",
"version": "21.5.15"
},
{
"status": "affected",
"version": "21.8.1"
},
{
"status": "affected",
"version": "21.4.13"
},
{
"status": "affected",
"version": "21.10.0"
},
{
"status": "affected",
"version": "21.5.13"
},
{
"status": "affected",
"version": "21.9.0"
},
{
"status": "affected",
"version": "21.9.4"
},
{
"status": "affected",
"version": "21.4.9"
},
{
"status": "affected",
"version": "21.4.12"
},
{
"status": "affected",
"version": "21.11.3"
},
{
"status": "affected",
"version": "21.5.16"
},
{
"status": "affected",
"version": "21.7.9"
},
{
"status": "affected",
"version": "6.5.0"
},
{
"status": "affected",
"version": "21.4.8"
},
{
"status": "affected",
"version": "21.6.8"
},
{
"status": "affected",
"version": "21.6.5"
},
{
"status": "affected",
"version": "21.8.3"
},
{
"status": "affected",
"version": "21.6.10"
},
{
"status": "affected",
"version": "21.6.4"
},
{
"status": "affected",
"version": "21.7.8"
},
{
"status": "affected",
"version": "21.4.15"
},
{
"status": "affected",
"version": "21.4.11"
},
{
"status": "affected",
"version": "21.8.6"
},
{
"status": "affected",
"version": "21.8.ca1"
},
{
"status": "affected",
"version": "21.9.6"
},
{
"status": "affected",
"version": "21.4.7"
},
{
"status": "affected",
"version": "21.11.0"
},
{
"status": "affected",
"version": "21.11.1"
},
{
"status": "affected",
"version": "21.5.7"
},
{
"status": "affected",
"version": "6.2.b4"
},
{
"status": "affected",
"version": "21.7.7"
},
{
"status": "affected",
"version": "21.6.b14"
},
{
"status": "affected",
"version": "21.6.b13"
},
{
"status": "affected",
"version": "21.6.b15"
},
{
"status": "affected",
"version": "21.7.6"
},
{
"status": "affected",
"version": "21.6.6"
},
{
"status": "affected",
"version": "21.9.5"
},
{
"status": "affected",
"version": "21.5.9"
},
{
"status": "affected",
"version": "21.5.14"
},
{
"status": "affected",
"version": "21.8.8"
},
{
"status": "affected",
"version": "21.5.12"
},
{
"status": "affected",
"version": "21.8.0"
},
{
"status": "affected",
"version": "21.5.8"
},
{
"status": "affected",
"version": "21.7.10"
},
{
"status": "affected",
"version": "6.2.5"
},
{
"status": "affected",
"version": "21.8.9"
},
{
"status": "affected",
"version": "6.4.0"
},
{
"status": "affected",
"version": "21.6.b17"
},
{
"status": "affected",
"version": "21.6.b16"
},
{
"status": "affected",
"version": "21.6.11"
},
{
"status": "affected",
"version": "21.10.1"
},
{
"status": "affected",
"version": "21.4.10"
},
{
"status": "affected",
"version": "21.4.14"
},
{
"status": "affected",
"version": "21.6.9"
},
{
"status": "affected",
"version": "21.6.7"
},
{
"status": "affected",
"version": "21.12.3"
},
{
"status": "affected",
"version": "21.9.1"
},
{
"status": "affected",
"version": "21.9.2"
},
{
"status": "affected",
"version": "21.12.0"
},
{
"status": "affected",
"version": "21.7.12"
},
{
"status": "affected",
"version": "21.10.2"
},
{
"status": "affected",
"version": "21.8.7"
},
{
"status": "affected",
"version": "21.8.2"
},
{
"status": "affected",
"version": "21.5.6"
},
{
"status": "affected",
"version": "21.5.10"
},
{
"status": "affected",
"version": "21.6.13"
},
{
"status": "affected",
"version": "21.6.b18"
},
{
"status": "affected",
"version": "21.7.11"
},
{
"status": "affected",
"version": "21.7.1"
},
{
"status": "affected",
"version": "21.9.3"
},
{
"status": "affected",
"version": "21.7.0"
},
{
"status": "affected",
"version": "21.5.11"
},
{
"status": "affected",
"version": "21.5.17"
},
{
"status": "affected",
"version": "21.5.4"
},
{
"status": "affected",
"version": "21.7.3"
},
{
"status": "affected",
"version": "21.4.1"
},
{
"status": "affected",
"version": "21.4.3"
},
{
"status": "affected",
"version": "21.7.2"
},
{
"status": "affected",
"version": "21.4.5"
},
{
"status": "affected",
"version": "21.5.2"
},
{
"status": "affected",
"version": "21.6.3"
},
{
"status": "affected",
"version": "21.6.0"
},
{
"status": "affected",
"version": "21.6.2"
},
{
"status": "affected",
"version": "21.5.5"
},
{
"status": "affected",
"version": "21.4.6"
},
{
"status": "affected",
"version": "21.4.0"
},
{
"status": "affected",
"version": "21.4.2"
},
{
"status": "affected",
"version": "21.4.4"
},
{
"status": "affected",
"version": "21.7.4"
},
{
"status": "affected",
"version": "21.5.0"
},
{
"status": "affected",
"version": "21.5.1"
},
{
"status": "affected",
"version": "21.6.1"
},
{
"status": "affected",
"version": "21.5.3"
},
{
"status": "affected",
"version": "21.19.n14"
},
{
"status": "affected",
"version": "21.25.3"
},
{
"status": "affected",
"version": "21.23.11"
},
{
"status": "affected",
"version": "21.23.b3"
},
{
"status": "affected",
"version": "21.20.c22"
},
{
"status": "affected",
"version": "21.20.27"
},
{
"status": "affected",
"version": "21.23.n7"
},
{
"status": "affected",
"version": "21.20.26"
},
{
"status": "affected",
"version": "21.23.12"
},
{
"status": "affected",
"version": "21.20.28"
},
{
"status": "affected",
"version": "21.22.ua5"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\r\n\r\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\r\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\r\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-489",
"description": "Active Debug Code",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T15:59:07.107Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-rcm-vuls-7cS3Nuq",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO"
}
],
"source": {
"advisory": "cisco-sa-rcm-vuls-7cS3Nuq",
"defects": [
"CSCvy80878"
],
"discovery": "INTERNAL"
},
"title": "Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2022-20649",
"datePublished": "2024-11-15T15:59:07.107Z",
"dateReserved": "2021-11-02T13:28:29.035Z",
"dateUpdated": "2024-11-15T19:41:58.793Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\\r\\n\\r\\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\\r\\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\\r\\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad en Cisco RCM para Cisco StarOS Software podr\\u00eda permitir que un atacante remoto no autenticado ejecute c\\u00f3digo remoto en la aplicaci\\u00f3n con privilegios de nivel superusuario en el contexto del contenedor configurado. Esta vulnerabilidad existe porque el modo de depuraci\\u00f3n est\\u00e1 habilitado incorrectamente para servicios espec\\u00edficos. Un atacante podr\\u00eda aprovechar esta vulnerabilidad conect\\u00e1ndose al dispositivo y navegando al servicio con el modo de depuraci\\u00f3n habilitado. Una explotaci\\u00f3n exitosa podr\\u00eda permitir al atacante ejecutar comandos arbitrarios como usuario superusuario. El atacante tendr\\u00eda que realizar un reconocimiento detallado para permitir el acceso no autenticado. La vulnerabilidad tambi\\u00e9n puede ser explotada por un atacante autenticado. Cisco ha publicado actualizaciones de software que solucionan esta vulnerabilidad. No existen workarounds que solucionen esta vulnerabilidad.\"}]",
"id": "CVE-2022-20649",
"lastModified": "2024-11-18T17:11:56.587",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 5.9}]}",
"published": "2024-11-15T16:15:20.247",
"references": "[{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe\", \"source\": \"ykramarz@cisco.com\"}]",
"sourceIdentifier": "ykramarz@cisco.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-489\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-20649\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2024-11-15T16:15:20.247\",\"lastModified\":\"2024-11-18T17:11:56.587\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\\r\\n\\r\\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\\r\\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\\r\\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en Cisco RCM para Cisco StarOS Software podr\u00eda permitir que un atacante remoto no autenticado ejecute c\u00f3digo remoto en la aplicaci\u00f3n con privilegios de nivel superusuario en el contexto del contenedor configurado. Esta vulnerabilidad existe porque el modo de depuraci\u00f3n est\u00e1 habilitado incorrectamente para servicios espec\u00edficos. Un atacante podr\u00eda aprovechar esta vulnerabilidad conect\u00e1ndose al dispositivo y navegando al servicio con el modo de depuraci\u00f3n habilitado. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante ejecutar comandos arbitrarios como usuario superusuario. El atacante tendr\u00eda que realizar un reconocimiento detallado para permitir el acceso no autenticado. La vulnerabilidad tambi\u00e9n puede ser explotada por un atacante autenticado. Cisco ha publicado actualizaciones de software que solucionan esta vulnerabilidad. No existen workarounds que solucionen esta vulnerabilidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-489\"}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe\",\"source\":\"psirt@cisco.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-20649\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-15T19:40:41.090546Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*\"], \"vendor\": \"cisco\", \"product\": \"redundancy_configuration_manager\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"21.25.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-15T19:41:42.667Z\"}}], \"cna\": {\"title\": \"Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability\", \"source\": {\"defects\": [\"CSCvy80878\"], \"advisory\": \"cisco-sa-rcm-vuls-7cS3Nuq\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Redundancy Configuration Manager\", \"versions\": [{\"status\": \"affected\", \"version\": \"2021.02.0\"}, {\"status\": \"affected\", \"version\": \"2021.01.0\"}, {\"status\": \"affected\", \"version\": \"21.19.n13\"}, {\"status\": \"affected\", \"version\": \"21.17.19\"}, {\"status\": \"affected\", \"version\": \"21.18.24\"}, {\"status\": \"affected\", \"version\": \"21.25.0\"}, {\"status\": \"affected\", \"version\": \"21.15.60\"}, {\"status\": \"affected\", \"version\": \"21.22.11\"}, {\"status\": \"affected\", \"version\": \"21.20.25\"}, {\"status\": \"affected\", \"version\": \"21.20.21\"}, {\"status\": \"affected\", \"version\": \"21.24.2\"}, {\"status\": \"affected\", \"version\": \"21.23.10\"}, {\"status\": \"affected\", \"version\": \"21.22.n5\"}, {\"status\": \"affected\", \"version\": \"21.15.57\"}, {\"status\": \"affected\", \"version\": \"21.25.1\"}, {\"status\": \"affected\", \"version\": \"21.18.21\"}, {\"status\": \"affected\", \"version\": \"21.23.1\"}, {\"status\": \"affected\", \"version\": \"21.19.11\"}, {\"status\": \"affected\", \"version\": \"21.16.c16\"}, {\"status\": \"affected\", \"version\": \"21.23.5\"}, {\"status\": \"affected\", \"version\": \"21.22.4\"}, {\"status\": \"affected\", \"version\": \"21.22.ua2\"}, {\"status\": \"affected\", \"version\": \"21.23.n6\"}, {\"status\": \"affected\", \"version\": \"21.17.18\"}, {\"status\": \"affected\", \"version\": \"21.17.17\"}, {\"status\": \"affected\", \"version\": \"21.21.KS2\"}, {\"status\": \"affected\", \"version\": \"21.20.23\"}, {\"status\": \"affected\", \"version\": \"21.20.15\"}, {\"status\": \"affected\", \"version\": \"21.20.p9\"}, {\"status\": \"affected\", \"version\": \"21.20.17\"}, {\"status\": \"affected\", \"version\": \"21.20.14\"}, {\"status\": \"affected\", \"version\": \"21.21.3\"}, {\"status\": \"affected\", \"version\": \"21.19.n9\"}, {\"status\": \"affected\", \"version\": \"21.23.0\"}, {\"status\": \"affected\", \"version\": \"21.5.30\"}, {\"status\": \"affected\", \"version\": \"21.22.n4\"}, {\"status\": \"affected\", \"version\": \"21.20.12\"}, {\"status\": \"affected\", \"version\": \"21.23.b2\"}, {\"status\": \"affected\", \"version\": \"21.20.13\"}, {\"status\": \"affected\", \"version\": \"21.18.22\"}, {\"status\": \"affected\", \"version\": \"21.18.23\"}, {\"status\": \"affected\", \"version\": \"21.20.24\"}, {\"status\": \"affected\", \"version\": \"21.23.6\"}, {\"status\": \"affected\", \"version\": \"21.21.1\"}, {\"status\": \"affected\", \"version\": \"21.23.8\"}, {\"status\": \"affected\", \"version\": \"21.11.20\"}, {\"status\": \"affected\", \"version\": \"21.15.58\"}, {\"status\": \"affected\", \"version\": \"21.24.0\"}, {\"status\": \"affected\", \"version\": \"21.18.18\"}, {\"status\": \"affected\", \"version\": \"21.20.u8\"}, {\"status\": \"affected\", \"version\": \"21.18.19\"}, {\"status\": \"affected\", \"version\": \"21.21.2\"}, {\"status\": \"affected\", \"version\": \"21.22.2\"}, {\"status\": \"affected\", \"version\": \"21.22.8\"}, {\"status\": \"affected\", \"version\": \"21.22.uj3\"}, {\"status\": \"affected\", \"version\": \"21.22.5\"}, {\"status\": \"affected\", \"version\": \"21.22.3\"}, {\"status\": \"affected\", \"version\": \"21.22.10\"}, {\"status\": \"affected\", \"version\": \"21.18.20\"}, {\"status\": \"affected\", \"version\": \"21.15.55\"}, {\"status\": \"affected\", \"version\": \"21.12.22\"}, {\"status\": \"affected\", \"version\": \"21.23.4\"}, {\"status\": \"affected\", \"version\": \"21.15.59\"}, {\"status\": \"affected\", \"version\": \"21.22.ua0\"}, {\"status\": \"affected\", \"version\": \"21.20.16\"}, {\"status\": \"affected\", \"version\": \"21.20.18\"}, {\"status\": \"affected\", \"version\": \"21.20.19\"}, {\"status\": \"affected\", \"version\": \"21.19.n7\"}, {\"status\": \"affected\", \"version\": \"21.20.20\"}, {\"status\": \"affected\", \"version\": \"21.19.n10\"}, {\"status\": \"affected\", \"version\": \"21.19.n11\"}, {\"status\": \"affected\", \"version\": \"21.22.7\"}, {\"status\": \"affected\", \"version\": \"21.22.ua3\"}, {\"status\": \"affected\", \"version\": \"21.19.n12\"}, {\"status\": \"affected\", \"version\": \"21.23.9\"}, {\"status\": \"affected\", \"version\": \"21.18.16\"}, {\"status\": \"affected\", \"version\": \"21.16.10\"}, {\"status\": \"affected\", \"version\": \"21.22.6\"}, {\"status\": \"affected\", \"version\": \"21.18.17\"}, {\"status\": \"affected\", \"version\": \"21.24.1\"}, {\"status\": \"affected\", \"version\": \"21.11.21\"}, {\"status\": \"affected\", \"version\": \"21.23.3\"}, {\"status\": \"affected\", \"version\": \"21.9.13\"}, {\"status\": \"affected\", \"version\": \"21.20.k8\"}, {\"status\": \"affected\", \"version\": \"21.19.n8\"}, {\"status\": \"affected\", \"version\": \"21.22.9\"}, {\"status\": \"affected\", \"version\": \"21.16.c17\"}, {\"status\": \"affected\", \"version\": \"21.16.9\"}, {\"status\": \"affected\", \"version\": \"21.23.2\"}, {\"status\": \"affected\", \"version\": \"21.20.22\"}, {\"status\": \"affected\", \"version\": \"21.18.7\"}, {\"status\": \"affected\", \"version\": \"21.19.6\"}, {\"status\": \"affected\", \"version\": \"21.23.7\"}, {\"status\": \"affected\", \"version\": \"21.11.16\"}, {\"status\": \"affected\", \"version\": \"21.18.13\"}, {\"status\": \"affected\", \"version\": \"21.15.47\"}, {\"status\": \"affected\", \"version\": \"21.19.n6\"}, {\"status\": \"affected\", \"version\": \"6.9.8\"}, {\"status\": \"affected\", \"version\": \"21.20.k6\"}, {\"status\": \"affected\", \"version\": \"21.20.6\"}, {\"status\": \"affected\", \"version\": \"21.19.10\"}, {\"status\": \"affected\", \"version\": \"21.19.n4\"}, {\"status\": \"affected\", \"version\": \"21.15.46\"}, {\"status\": \"affected\", \"version\": \"21.17.14\"}, {\"status\": \"affected\", \"version\": \"21.15.52\"}, {\"status\": \"affected\", \"version\": \"21.16.6\"}, {\"status\": \"affected\", \"version\": \"21.22.n3\"}, {\"status\": \"affected\", \"version\": \"21.15.54\"}, {\"status\": \"affected\", \"version\": \"21.18.15\"}, {\"status\": \"affected\", \"version\": \"21.18.11\"}, {\"status\": \"affected\", \"version\": \"21.18.8\"}, {\"status\": \"affected\", \"version\": \"21.12.20\"}, {\"status\": \"affected\", \"version\": \"21.5.28\"}, {\"status\": \"affected\", \"version\": \"21.20.11\"}, {\"status\": \"affected\", \"version\": \"21.8.12\"}, {\"status\": \"affected\", \"version\": \"21.19.7\"}, {\"status\": \"affected\", \"version\": \"21.19.5\"}, {\"status\": \"affected\", \"version\": \"21.11.19\"}, {\"status\": \"affected\", \"version\": \"21.16.c15\"}, {\"status\": \"affected\", \"version\": \"21.18.12\"}, {\"status\": \"affected\", \"version\": \"21.15.51\"}, {\"status\": \"affected\", \"version\": \"21.18.14\"}, {\"status\": \"affected\", \"version\": \"21.11.15\"}, {\"status\": \"affected\", \"version\": \"21.16.c14\"}, {\"status\": \"affected\", \"version\": \"21.20.4\"}, {\"status\": \"affected\", \"version\": \"21.20.7\"}, {\"status\": \"affected\", \"version\": \"21.14.b22\"}, {\"status\": \"affected\", \"version\": \"21.17.10\"}, {\"status\": \"affected\", \"version\": \"21.12.21\"}, {\"status\": \"affected\", \"version\": \"21.19.9\"}, {\"status\": \"affected\", \"version\": \"21.13.21\"}, {\"status\": \"affected\", \"version\": \"21.14.23\"}, {\"status\": \"affected\", \"version\": \"21.20.UV0\"}, {\"status\": \"affected\", \"version\": \"21.10.6\"}, {\"status\": \"affected\", \"version\": \"21.15.45\"}, {\"status\": \"affected\", \"version\": \"21.15.53\"}, {\"status\": \"affected\", \"version\": \"21.17.15\"}, {\"status\": \"affected\", \"version\": \"21.17.16\"}, {\"status\": \"affected\", \"version\": \"6.14.2\"}, {\"status\": \"affected\", \"version\": \"21.19.n3\"}, {\"status\": \"affected\", \"version\": \"21.17.11\"}, {\"status\": \"affected\", \"version\": \"21.21.0\"}, {\"status\": \"affected\", \"version\": \"21.20.10\"}, {\"status\": \"affected\", \"version\": \"21.20.3\"}, {\"status\": \"affected\", \"version\": \"21.20.5\"}, {\"status\": \"affected\", \"version\": \"21.16.7\"}, {\"status\": \"affected\", \"version\": \"21.22.1\"}, {\"status\": \"affected\", \"version\": \"21.17.9\"}, {\"status\": \"affected\", \"version\": \"21.17.13\"}, {\"status\": \"affected\", \"version\": \"21.20.2\"}, {\"status\": \"affected\", \"version\": \"21.20.9\"}, {\"status\": \"affected\", \"version\": \"21.5.27\"}, {\"status\": \"affected\", \"version\": \"21.14.22\"}, {\"status\": \"affected\", \"version\": \"21.19.8\"}, {\"status\": \"affected\", \"version\": \"21.22.n2\"}, {\"status\": \"affected\", \"version\": \"21.16.8\"}, {\"status\": \"affected\", \"version\": \"21.11.17\"}, {\"status\": \"affected\", \"version\": \"21.20.8\"}, {\"status\": \"affected\", \"version\": \"21.20.k7\"}, {\"status\": \"affected\", \"version\": \"21.18.9\"}, {\"status\": \"affected\", \"version\": \"21.19.n5\"}, {\"status\": \"affected\", \"version\": \"21.11.18\"}, {\"status\": \"affected\", \"version\": \"21.5.29\"}, {\"status\": \"affected\", \"version\": \"21.15.48\"}, {\"status\": \"affected\", \"version\": \"21.22.0\"}, {\"status\": \"affected\", \"version\": \"21.14.b19\"}, {\"status\": \"affected\", \"version\": \"21.15.17\"}, {\"status\": \"affected\", \"version\": \"21.16.c4\"}, {\"status\": \"affected\", \"version\": \"21.19.2\"}, {\"status\": \"affected\", \"version\": \"6.2.b17\"}, {\"status\": \"affected\", \"version\": \"6.9.7\"}, {\"status\": \"affected\", \"version\": \"21.16.c6\"}, {\"status\": \"affected\", \"version\": \"21.17.8\"}, {\"status\": \"affected\", \"version\": \"21.11.13\"}, {\"status\": \"affected\", \"version\": \"21.12.19\"}, {\"status\": \"affected\", \"version\": \"21.12.18\"}, {\"status\": \"affected\", \"version\": \"21.6.15\"}, {\"status\": \"affected\", \"version\": \"21.20.0\"}, {\"status\": \"affected\", \"version\": \"6.13.EY2\"}, {\"status\": \"affected\", \"version\": \"21.15.36\"}, {\"status\": \"affected\", \"version\": \"21.15.21\"}, {\"status\": \"affected\", \"version\": \"21.15.43\"}, {\"status\": \"affected\", \"version\": \"6.14.0\"}, {\"status\": \"affected\", \"version\": \"21.14.b15\"}, {\"status\": \"affected\", \"version\": \"21.15.14\"}, {\"status\": \"affected\", \"version\": \"21.15.15\"}, {\"status\": \"affected\", \"version\": \"21.16.c7\"}, {\"status\": \"affected\", \"version\": \"21.16.c3\"}, {\"status\": \"affected\", \"version\": \"6.13.EY1\"}, {\"status\": \"affected\", \"version\": \"21.15.13\"}, {\"status\": \"affected\", \"version\": \"21.12.15\"}, {\"status\": \"affected\", \"version\": \"21.5.25\"}, {\"status\": \"affected\", \"version\": \"21.14.b12\"}, {\"status\": \"affected\", \"version\": \"21.18.6\"}, {\"status\": \"affected\", \"version\": \"21.19.4\"}, {\"status\": \"affected\", \"version\": \"21.17.3\"}, {\"status\": \"affected\", \"version\": \"21.16.c5\"}, {\"status\": \"affected\", \"version\": \"21.14.b21\"}, {\"status\": \"affected\", \"version\": \"21.18.1\"}, {\"status\": \"affected\", \"version\": \"6.11.0\"}, {\"status\": \"affected\", \"version\": \"21.14.17\"}, {\"status\": \"affected\", \"version\": \"21.5.26\"}, {\"status\": \"affected\", \"version\": \"21.14.b13\"}, {\"status\": \"affected\", \"version\": \"21.14.b16\"}, {\"status\": \"affected\", \"version\": \"21.15.22\"}, {\"status\": \"affected\", \"version\": \"21.15.23\"}, {\"status\": \"affected\", \"version\": \"21.16.3\"}, {\"status\": \"affected\", \"version\": \"21.16.c10\"}, {\"status\": \"affected\", \"version\": \"21.16.d1\"}, {\"status\": \"affected\", \"version\": \"21.15.28\"}, {\"status\": \"affected\", \"version\": \"21.11.11\"}, {\"status\": \"affected\", \"version\": \"21.15.30\"}, {\"status\": \"affected\", \"version\": \"21.15.29\"}, {\"status\": \"affected\", \"version\": \"21.13.18\"}, {\"status\": \"affected\", \"version\": \"21.12.16\"}, {\"status\": \"affected\", \"version\": \"21.17.5\"}, {\"status\": \"affected\", \"version\": \"21.14.b18\"}, {\"status\": \"affected\", \"version\": \"21.14.RH0\"}, {\"status\": \"affected\", \"version\": \"21.14.b14\"}, {\"status\": \"affected\", \"version\": \"6.6.7\"}, {\"status\": \"affected\", \"version\": \"21.15.20\"}, {\"status\": \"affected\", \"version\": \"21.15.32\"}, {\"status\": \"affected\", \"version\": \"21.14.18\"}, {\"status\": \"affected\", \"version\": \"21.6.b25\"}, {\"status\": \"affected\", \"version\": \"21.17.2\"}, {\"status\": \"affected\", \"version\": \"6.2.b15\"}, {\"status\": \"affected\", \"version\": \"21.15.33\"}, {\"status\": \"affected\", \"version\": \"21.13.19\"}, {\"status\": \"affected\", \"version\": \"6.2.b14\"}, {\"status\": \"affected\", \"version\": \"21.19.n1\"}, {\"status\": \"affected\", \"version\": \"21.19.1\"}, {\"status\": \"affected\", \"version\": \"21.19.0\"}, {\"status\": \"affected\", \"version\": \"21.6.b26\"}, {\"status\": \"affected\", \"version\": \"6.2.b16\"}, {\"status\": \"affected\", \"version\": \"21.11.12\"}, {\"status\": \"affected\", \"version\": \"21.18.3\"}, {\"status\": \"affected\", \"version\": \"21.17.7\"}, {\"status\": \"affected\", \"version\": \"21.14.12\"}, {\"status\": \"affected\", \"version\": \"21.19.n2\"}, {\"status\": \"affected\", \"version\": \"21.16.c11\"}, {\"status\": \"affected\", \"version\": \"21.16.c12\"}, {\"status\": \"affected\", \"version\": \"6.10.0\"}, {\"status\": \"affected\", \"version\": \"21.16.4\"}, {\"status\": \"affected\", \"version\": \"6.13.0\"}, {\"status\": \"affected\", \"version\": \"21.13.16\"}, {\"status\": \"affected\", \"version\": \"21.16.c13\"}, {\"status\": \"affected\", \"version\": \"21.17.1\"}, {\"status\": \"affected\", \"version\": \"21.17.6\"}, {\"status\": \"affected\", \"version\": \"21.12.17\"}, {\"status\": \"affected\", \"version\": \"21.11.10\"}, {\"status\": \"affected\", \"version\": \"21.20.SV1\"}, {\"status\": \"affected\", \"version\": \"21.11.14\"}, {\"status\": \"affected\", \"version\": \"6.11.1\"}, {\"status\": \"affected\", \"version\": \"21.17.0\"}, {\"status\": \"affected\", \"version\": \"21.9.12\"}, {\"status\": \"affected\", \"version\": \"21.20.1\"}, {\"status\": \"affected\", \"version\": \"21.14.19\"}, {\"status\": \"affected\", \"version\": \"21.14.c3\"}, {\"status\": \"affected\", \"version\": \"21.15.18\"}, {\"status\": \"affected\", \"version\": \"21.15.19\"}, {\"status\": \"affected\", \"version\": \"21.15.16\"}, {\"status\": \"affected\", \"version\": \"21.15.39\"}, {\"status\": \"affected\", \"version\": \"6.6.6\"}, {\"status\": \"affected\", \"version\": \"21.14.11\"}, {\"status\": \"affected\", \"version\": \"21.14.b17\"}, {\"status\": \"affected\", \"version\": \"21.14.16\"}, {\"status\": \"affected\", \"version\": \"21.15.24\"}, {\"status\": \"affected\", \"version\": \"21.6.b24\"}, {\"status\": \"affected\", \"version\": \"21.16.c9\"}, {\"status\": \"affected\", \"version\": \"21.16.c8\"}, {\"status\": \"affected\", \"version\": \"6.8.1\"}, {\"status\": \"affected\", \"version\": \"21.15.27\"}, {\"status\": \"affected\", \"version\": \"21.15.26\"}, {\"status\": \"affected\", \"version\": \"21.15.25\"}, {\"status\": \"affected\", \"version\": \"21.17.4\"}, {\"status\": \"affected\", \"version\": \"21.13.17\"}, {\"status\": \"affected\", \"version\": \"6.9.5\"}, {\"status\": \"affected\", \"version\": \"21.18.5\"}, {\"status\": \"affected\", \"version\": \"21.15.40\"}, {\"status\": \"affected\", \"version\": \"6.12.0\"}, {\"status\": \"affected\", \"version\": \"21.18.2\"}, {\"status\": \"affected\", \"version\": \"21.12.14\"}, {\"status\": \"affected\", \"version\": \"21.16.d0\"}, {\"status\": \"affected\", \"version\": \"21.14.20\"}, {\"status\": \"affected\", \"version\": \"21.18.0\"}, {\"status\": \"affected\", \"version\": \"21.15.37\"}, {\"status\": \"affected\", \"version\": \"21.15.41\"}, {\"status\": \"affected\", \"version\": \"21.18.4\"}, {\"status\": \"affected\", \"version\": \"21.20.SV2\"}, {\"status\": \"affected\", \"version\": \"21.20.SV3\"}, {\"status\": \"affected\", \"version\": \"21.16.5\"}, {\"status\": \"affected\", \"version\": \"21.20.SV5\"}, {\"status\": \"affected\", \"version\": \"5.1.15\"}, {\"status\": \"affected\", \"version\": \"21.19.3\"}, {\"status\": \"affected\", \"version\": \"21.13.20\"}, {\"status\": \"affected\", \"version\": \"21.14.b20\"}, {\"status\": \"affected\", \"version\": \"21.15.7\"}, {\"status\": \"affected\", \"version\": \"21.13.15\"}, {\"status\": \"affected\", \"version\": \"21.15.11\"}, {\"status\": \"affected\", \"version\": \"21.15.9\"}, {\"status\": \"affected\", \"version\": \"21.15.0\"}, {\"status\": \"affected\", \"version\": \"21.10.4\"}, {\"status\": \"affected\", \"version\": \"21.12.12\"}, {\"status\": \"affected\", \"version\": \"21.12.4\"}, {\"status\": \"affected\", \"version\": \"21.12.8\"}, {\"status\": \"affected\", \"version\": \"21.15.5\"}, {\"status\": \"affected\", \"version\": \"21.13.8\"}, {\"status\": \"affected\", \"version\": \"21.8.10\"}, {\"status\": \"affected\", \"version\": \"21.14.6\"}, {\"status\": \"affected\", \"version\": \"21.15.1\"}, {\"status\": \"affected\", \"version\": \"21.8.11\"}, {\"status\": \"affected\", \"version\": \"21.4.16\"}, {\"status\": \"affected\", \"version\": \"21.9.11\"}, {\"status\": \"affected\", \"version\": \"21.16.c0\"}, {\"status\": \"affected\", \"version\": \"21.13.14\"}, {\"status\": \"affected\", \"version\": \"21.13.4\"}, {\"status\": \"affected\", \"version\": \"21.14.7\"}, {\"status\": \"affected\", \"version\": \"21.14.8\"}, {\"status\": \"affected\", \"version\": \"21.9.8\"}, {\"status\": \"affected\", \"version\": \"21.16.c2\"}, {\"status\": \"affected\", \"version\": \"21.15.10\"}, {\"status\": \"affected\", \"version\": \"21.15.2\"}, {\"status\": \"affected\", \"version\": \"21.15.6\"}, {\"status\": \"affected\", \"version\": \"6.7.0\"}, {\"status\": \"affected\", \"version\": \"21.13.6\"}, {\"status\": \"affected\", \"version\": \"21.9.10\"}, {\"status\": \"affected\", \"version\": \"21.14.1\"}, {\"status\": \"affected\", \"version\": \"21.7.13\"}, {\"status\": \"affected\", \"version\": \"21.11.8\"}, {\"status\": \"affected\", \"version\": \"21.14.2\"}, {\"status\": \"affected\", \"version\": \"21.14.0\"}, {\"status\": \"affected\", \"version\": \"21.12.10\"}, {\"status\": \"affected\", \"version\": \"21.9.9\"}, {\"status\": \"affected\", \"version\": \"21.13.5\"}, {\"status\": \"affected\", \"version\": \"21.13.2\"}, {\"status\": \"affected\", \"version\": \"21.13.9\"}, {\"status\": \"affected\", \"version\": \"21.13.10\"}, {\"status\": \"affected\", \"version\": \"21.12.5\"}, {\"status\": \"affected\", \"version\": \"21.12.9\"}, {\"status\": \"affected\", \"version\": \"21.5.23\"}, {\"status\": \"affected\", \"version\": \"21.14.10\"}, {\"status\": \"affected\", \"version\": \"21.14.c2\"}, {\"status\": \"affected\", \"version\": \"21.14.9\"}, {\"status\": \"affected\", \"version\": \"21.11.6\"}, {\"status\": \"affected\", \"version\": \"21.5.20\"}, {\"status\": \"affected\", \"version\": \"21.13.12\"}, {\"status\": \"affected\", \"version\": \"21.15.12\"}, {\"status\": \"affected\", \"version\": \"6.9.2\"}, {\"status\": \"affected\", \"version\": \"21.15.4\"}, {\"status\": \"affected\", \"version\": \"21.13.11\"}, {\"status\": \"affected\", \"version\": \"21.13.7\"}, {\"status\": \"affected\", \"version\": \"21.10.5\"}, {\"status\": \"affected\", \"version\": \"21.6.b19\"}, {\"status\": \"affected\", \"version\": \"21.6.b23\"}, {\"status\": \"affected\", \"version\": \"21.13.0\"}, {\"status\": \"affected\", \"version\": \"21.6.14\"}, {\"status\": \"affected\", \"version\": \"21.13.13\"}, {\"status\": \"affected\", \"version\": \"21.4.17\"}, {\"status\": \"affected\", \"version\": \"21.11.9\"}, {\"status\": \"affected\", \"version\": \"21.11.2\"}, {\"status\": \"affected\", \"version\": \"21.15.8\"}, {\"status\": \"affected\", \"version\": \"21.16.2\"}, {\"status\": \"affected\", \"version\": \"21.16.1\"}, {\"status\": \"affected\", \"version\": \"21.16.c1\"}, {\"status\": \"affected\", \"version\": \"21.5.21\"}, {\"status\": \"affected\", \"version\": \"21.11.4\"}, {\"status\": \"affected\", \"version\": \"21.6.b21\"}, {\"status\": \"affected\", \"version\": \"21.14.a5\"}, {\"status\": \"affected\", \"version\": \"21.10.3\"}, {\"status\": \"affected\", \"version\": \"21.11.5\"}, {\"status\": \"affected\", \"version\": \"21.13.3\"}, {\"status\": \"affected\", \"version\": \"21.5.22\"}, {\"status\": \"affected\", \"version\": \"21.12.7\"}, {\"status\": \"affected\", \"version\": \"21.12.13\"}, {\"status\": \"affected\", \"version\": \"21.12.6\"}, {\"status\": \"affected\", \"version\": \"21.5.19\"}, {\"status\": \"affected\", \"version\": \"21.6.b22\"}, {\"status\": \"affected\", \"version\": \"21.11.7\"}, {\"status\": \"affected\", \"version\": \"21.13.1\"}, {\"status\": \"affected\", \"version\": \"21.14.a0\"}, {\"status\": \"affected\", \"version\": \"21.14.4\"}, {\"status\": \"affected\", \"version\": \"21.14.5\"}, {\"status\": \"affected\", \"version\": \"21.5.24\"}, {\"status\": \"affected\", \"version\": \"21.14.3\"}, {\"status\": \"affected\", \"version\": \"21.16.0\"}, {\"status\": \"affected\", \"version\": \"21.6.b20\"}, {\"status\": \"affected\", \"version\": \"21.7.5\"}, {\"status\": \"affected\", \"version\": \"21.15.3\"}, {\"status\": \"affected\", \"version\": \"21.6.12\"}, {\"status\": \"affected\", \"version\": \"21.8.5\"}, {\"status\": \"affected\", \"version\": \"21.9.7\"}, {\"status\": \"affected\", \"version\": \"21.12.11\"}, {\"status\": \"affected\", \"version\": \"21.12.2\"}, {\"status\": \"affected\", \"version\": \"6.2.b6\"}, {\"status\": \"affected\", \"version\": \"21.8.4\"}, {\"status\": \"affected\", \"version\": \"6.2.b5\"}, {\"status\": \"affected\", \"version\": \"21.5.15\"}, {\"status\": \"affected\", \"version\": \"21.8.1\"}, {\"status\": \"affected\", \"version\": \"21.4.13\"}, {\"status\": \"affected\", \"version\": \"21.10.0\"}, {\"status\": \"affected\", \"version\": \"21.5.13\"}, {\"status\": \"affected\", \"version\": \"21.9.0\"}, {\"status\": \"affected\", \"version\": \"21.9.4\"}, {\"status\": \"affected\", \"version\": \"21.4.9\"}, {\"status\": \"affected\", \"version\": \"21.4.12\"}, {\"status\": \"affected\", \"version\": \"21.11.3\"}, {\"status\": \"affected\", \"version\": \"21.5.16\"}, {\"status\": \"affected\", \"version\": \"21.7.9\"}, {\"status\": \"affected\", \"version\": \"6.5.0\"}, {\"status\": \"affected\", \"version\": \"21.4.8\"}, {\"status\": \"affected\", \"version\": \"21.6.8\"}, {\"status\": \"affected\", \"version\": \"21.6.5\"}, {\"status\": \"affected\", \"version\": \"21.8.3\"}, {\"status\": \"affected\", \"version\": \"21.6.10\"}, {\"status\": \"affected\", \"version\": \"21.6.4\"}, {\"status\": \"affected\", \"version\": \"21.7.8\"}, {\"status\": \"affected\", \"version\": \"21.4.15\"}, {\"status\": \"affected\", \"version\": \"21.4.11\"}, {\"status\": \"affected\", \"version\": \"21.8.6\"}, {\"status\": \"affected\", \"version\": \"21.8.ca1\"}, {\"status\": \"affected\", \"version\": \"21.9.6\"}, {\"status\": \"affected\", \"version\": \"21.4.7\"}, {\"status\": \"affected\", \"version\": \"21.11.0\"}, {\"status\": \"affected\", \"version\": \"21.11.1\"}, {\"status\": \"affected\", \"version\": \"21.5.7\"}, {\"status\": \"affected\", \"version\": \"6.2.b4\"}, {\"status\": \"affected\", \"version\": \"21.7.7\"}, {\"status\": \"affected\", \"version\": \"21.6.b14\"}, {\"status\": \"affected\", \"version\": \"21.6.b13\"}, {\"status\": \"affected\", \"version\": \"21.6.b15\"}, {\"status\": \"affected\", \"version\": \"21.7.6\"}, {\"status\": \"affected\", \"version\": \"21.6.6\"}, {\"status\": \"affected\", \"version\": \"21.9.5\"}, {\"status\": \"affected\", \"version\": \"21.5.9\"}, {\"status\": \"affected\", \"version\": \"21.5.14\"}, {\"status\": \"affected\", \"version\": \"21.8.8\"}, {\"status\": \"affected\", \"version\": \"21.5.12\"}, {\"status\": \"affected\", \"version\": \"21.8.0\"}, {\"status\": \"affected\", \"version\": \"21.5.8\"}, {\"status\": \"affected\", \"version\": \"21.7.10\"}, {\"status\": \"affected\", \"version\": \"6.2.5\"}, {\"status\": \"affected\", \"version\": \"21.8.9\"}, {\"status\": \"affected\", \"version\": \"6.4.0\"}, {\"status\": \"affected\", \"version\": \"21.6.b17\"}, {\"status\": \"affected\", \"version\": \"21.6.b16\"}, {\"status\": \"affected\", \"version\": \"21.6.11\"}, {\"status\": \"affected\", \"version\": \"21.10.1\"}, {\"status\": \"affected\", \"version\": \"21.4.10\"}, {\"status\": \"affected\", \"version\": \"21.4.14\"}, {\"status\": \"affected\", \"version\": \"21.6.9\"}, {\"status\": \"affected\", \"version\": \"21.6.7\"}, {\"status\": \"affected\", \"version\": \"21.12.3\"}, {\"status\": \"affected\", \"version\": \"21.9.1\"}, {\"status\": \"affected\", \"version\": \"21.9.2\"}, {\"status\": \"affected\", \"version\": \"21.12.0\"}, {\"status\": \"affected\", \"version\": \"21.7.12\"}, {\"status\": \"affected\", \"version\": \"21.10.2\"}, {\"status\": \"affected\", \"version\": \"21.8.7\"}, {\"status\": \"affected\", \"version\": \"21.8.2\"}, {\"status\": \"affected\", \"version\": \"21.5.6\"}, {\"status\": \"affected\", \"version\": \"21.5.10\"}, {\"status\": \"affected\", \"version\": \"21.6.13\"}, {\"status\": \"affected\", \"version\": \"21.6.b18\"}, {\"status\": \"affected\", \"version\": \"21.7.11\"}, {\"status\": \"affected\", \"version\": \"21.7.1\"}, {\"status\": \"affected\", \"version\": \"21.9.3\"}, {\"status\": \"affected\", \"version\": \"21.7.0\"}, {\"status\": \"affected\", \"version\": \"21.5.11\"}, {\"status\": \"affected\", \"version\": \"21.5.17\"}, {\"status\": \"affected\", \"version\": \"21.5.4\"}, {\"status\": \"affected\", \"version\": \"21.7.3\"}, {\"status\": \"affected\", \"version\": \"21.4.1\"}, {\"status\": \"affected\", \"version\": \"21.4.3\"}, {\"status\": \"affected\", \"version\": \"21.7.2\"}, {\"status\": \"affected\", \"version\": \"21.4.5\"}, {\"status\": \"affected\", \"version\": \"21.5.2\"}, {\"status\": \"affected\", \"version\": \"21.6.3\"}, {\"status\": \"affected\", \"version\": \"21.6.0\"}, {\"status\": \"affected\", \"version\": \"21.6.2\"}, {\"status\": \"affected\", \"version\": \"21.5.5\"}, {\"status\": \"affected\", \"version\": \"21.4.6\"}, {\"status\": \"affected\", \"version\": \"21.4.0\"}, {\"status\": \"affected\", \"version\": \"21.4.2\"}, {\"status\": \"affected\", \"version\": \"21.4.4\"}, {\"status\": \"affected\", \"version\": \"21.7.4\"}, {\"status\": \"affected\", \"version\": \"21.5.0\"}, {\"status\": \"affected\", \"version\": \"21.5.1\"}, {\"status\": \"affected\", \"version\": \"21.6.1\"}, {\"status\": \"affected\", \"version\": \"21.5.3\"}, {\"status\": \"affected\", \"version\": \"21.19.n14\"}, {\"status\": \"affected\", \"version\": \"21.25.3\"}, {\"status\": \"affected\", \"version\": \"21.23.11\"}, {\"status\": \"affected\", \"version\": \"21.23.b3\"}, {\"status\": \"affected\", \"version\": \"21.20.c22\"}, {\"status\": \"affected\", \"version\": \"21.20.27\"}, {\"status\": \"affected\", \"version\": \"21.23.n7\"}, {\"status\": \"affected\", \"version\": \"21.20.26\"}, {\"status\": \"affected\", \"version\": \"21.23.12\"}, {\"status\": \"affected\", \"version\": \"21.20.28\"}, {\"status\": \"affected\", \"version\": \"21.22.ua5\"}], \"defaultStatus\": \"unknown\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco\\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that is described in this advisory.\"}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq\", \"name\": \"cisco-sa-rcm-vuls-7cS3Nuq\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe\", \"name\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO\", \"name\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\\r\\n\\r\\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\\r\\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\\r\\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"cwe\", \"cweId\": \"CWE-489\", \"description\": \"Active Debug Code\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2024-11-15T15:59:07.107Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-20649\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-15T19:41:58.793Z\", \"dateReserved\": \"2021-11-02T13:28:29.035Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2024-11-15T15:59:07.107Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…