Action not permitted
Modal body text goes here.
cve-2023-20015
Vulnerability from cvelistv5
Published
2023-02-23 00:00
Modified
2024-10-28 16:33
Severity ?
EPSS score ?
Summary
Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability
References
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Cisco | Cisco Unified Computing System (Managed) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T08:57:35.589Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20230223 Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-20015",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-28T16:19:24.685336Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-28T16:33:53.572Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Cisco Unified Computing System (Managed) ",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2023-02-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-02-23T00:00:00",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "20230223 Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
],
"source": {
"advisory": "cisco-sa-nxfp-cmdinj-XXBZjtR",
"defect": [
[
"CSCwc52151",
"CSCwd11206",
"CSCwd11228"
]
],
"discovery": "INTERNAL"
},
"title": "Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2023-20015",
"datePublished": "2023-02-23T00:00:00",
"dateReserved": "2022-10-27T00:00:00",
"dateUpdated": "2024-10-28T16:33:53.572Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2023-20015\",\"sourceIdentifier\":\"ykramarz@cisco.com\",\"published\":\"2023-02-23T20:15:13.333\",\"lastModified\":\"2023-11-07T04:05:44.210\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9},{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\",\"baseScore\":6.0,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":0.8,\"impactScore\":5.2}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-78\"}]},{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-78\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6536_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"834E1736-9E8D-476A-ADA9-EB81BEB8DC6C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6536:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C36A364-DBC0-44DA-9DB0-6CC8E9D074BF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_64108_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CF884E9-68AA-44F7-A551-F7D7DF2378DB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_64108:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC04D48B-8B2F-45E1-A445-A87E92E790B8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6454_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"085034AF-4825-4E06-BCBD-6F0D80959A26\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6454:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FD096B7-6F8E-4E48-9EC4-9A10AA7D9AA0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6200_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BD99394-5B1B-49FB-9085-3D92E4DBF1A5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0B96E5C-CC27-4020-93CE-413B95DCABB0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6248up_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AE37430-9711-443E-BF69-CAAEDD2A0E45\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6248up:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49112D3F-DFAD-4E71-992B-9E0640FA388C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6296up_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E325ADE-5098-4C1B-82FB-CB04DDB68A2A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6296up:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38A1D8F2-A4A6-4BAC-8326-9F9DE9572FA2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6300_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"192B4BF0-A6E4-4241-8E30-48CAE65203F1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6BCF41B-A617-4563-8D14-E906411354FB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6324_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63D87F40-279D-46BD-9A1E-B980E9DDD24D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6324:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B82093C6-B36D-4E4E-AD7F-8C107646B8D9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6332_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"148B3732-6F6C-4865-8FCC-A215883BEEC9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6332:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E406DDCE-6753-43E9-B6F0-7A038DE84E41\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0\",\"versionEndExcluding\":\"4.0\\\\(4o\\\\)\",\"matchCriteriaId\":\"694A529B-AC10-4DEE-9858-E068DA02B602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"versionEndExcluding\":\"4.1\\\\(3k\\\\)\",\"matchCriteriaId\":\"DCC75B2F-216C-4653-9DFB-D387A1BEABDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.2\\\\(2d\\\\)\",\"matchCriteriaId\":\"409A003C-6F89-45D6-9951-4CE56E9F4BA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ucs_6332-16up_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"027A27D8-DD06-420A-BCDC-553641F5CC83\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ucs_6332-16up:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"054D8EB2-97A3-4725-9DFF-27A4D231D90A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:firepower_extensible_operating_system:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDB194AF-51E8-4379-B416-34049BF03754\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E9552E6-0B9B-4B32-BE79-90D4E3887A7B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4110:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0CBC7F5-7767-43B6-9384-BE143FCDBD7F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4112:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"957D64EB-D60E-4775-B9A8-B21CA48ED3B1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4115:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A694AD51-9008-4AE6-8240-98B17AB527EE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4120:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38AE6DC0-2B03-4D36-9856-42530312CC46\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4125:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71DCEF22-ED20-4330-8502-EC2DD4C9838F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4140:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DB2822B-B752-4CD9-A178-934957E306B4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4145:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81F4868A-6D62-479C-9C19-F9AABDBB6B24\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_4150:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65378F3A-777C-4AE2-87FB-1E7402F9EA1B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18048A84-BA0F-48EF-AFFB-635FF7F70C66\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-36:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"317DF3DD-C7CD-4CA2-804F-A738E048BEB4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-40:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C13CF29B-9308-452B-B7E0-9E818B5A6C1E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-44:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DB527C2-855E-4BB9-BCA7-94BE86100D44\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-44_x_3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E82C1B05-990D-49D2-B80A-C3EDD4082840\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-48:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"421D91C3-8AB3-45E1-9E55-13ED1A4A623E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-56:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D741945-8B0A-408D-A5FE-D5B38DC6D46A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:firepower_9300_sm-56_x_3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9308CA67-E949-4338-A890-22B3C4428D70\"}]}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR\",\"source\":\"ykramarz@cisco.com\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
ghsa-h6vq-xr3x-hmh3
Vulnerability from github
Published
2023-02-23 21:30
Modified
2023-03-13 18:30
Severity ?
Details
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.
{
"affected": [],
"aliases": [
"CVE-2023-20015"
],
"database_specific": {
"cwe_ids": [
"CWE-78"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-02-23T20:15:00Z",
"severity": "MODERATE"
},
"details": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.",
"id": "GHSA-h6vq-xr3x-hmh3",
"modified": "2023-03-13T18:30:43Z",
"published": "2023-02-23T21:30:16Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20015"
},
{
"type": "WEB",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
cisco-sa-nxfp-cmdinj-xxbzjtr
Vulnerability from csaf_cisco
Published
2023-02-22 16:00
Modified
2023-02-22 16:00
Summary
Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability
Notes
Summary
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands.
This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is part of the February 2023 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: February 2023 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75057"].
Vulnerable Products
At the time of publication, this vulnerability affected the following Cisco products if they were running a vulnerable release of Cisco FXOS or NX-OS Software:
Firepower 4100 Series
Firepower 9300 Security Appliances
UCS 6200 Series Fabric Interconnects
UCS 6300 Series Fabric Interconnects
UCS 6400 Series Fabric Interconnects
UCS 6500 Series Fabric Interconnects
Note: Only Cisco UCS 6400 and 6500 Series Fabric Interconnects allow a user with Administrator privileges to execute commands on the underlying operating system with root-level privileges. The other affected products have a reduced impact and only allow a low-privileged user to access some unauthorized unprivileged commands that execute within the CLI and not on the underlying operating system.
For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.
Products Confirmed Not Vulnerable
Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability.
Cisco has confirmed that this vulnerability does not affect the following Cisco products:
Firepower 1000 Series
Firepower 2100 Series
MDS 9000 Series Multilayer Switches
Nexus 1000 Virtual Edge for VMware vSphere
Nexus 1000V Switch for Microsoft Hyper-V
Nexus 1000V Switch for VMware vSphere
Nexus 3000 Series Switches
Nexus 5500 Platform Switches
Nexus 5600 Platform Switches
Nexus 6000 Series Switches
Nexus 7000 Series Switches
Nexus 9000 Series Fabric Switches in ACI mode
Nexus 9000 Series Switches in standalone NX-OS mode
Secure Firewall 3100 Series
Workarounds
There are no workarounds that address this vulnerability.
Fixed Software
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Cisco FXOS and NX-OS Software
To help customers determine their exposure to vulnerabilities in Cisco FXOS and NX-OS Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities that are described in all the advisories that the Software Checker identifies (“Combined First Fixed”).
To use the tool, go to the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps:
Choose which advisories the tool will search—only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"], or all advisories.
Choose the appropriate software.
Choose the appropriate platform.
Enter a release number—for example, 2.9.1.158 for Cisco Firepower 4100 Series Security Appliances or 7.0(3)I7(5) for Cisco Nexus 3000 Series Switches.
Click Check.
Only this advisory All Critical and High advisories All advisories Cisco FXOS Software Cisco NX-OS Software Cisco NX-OS Software in ACI Mode Any Platform Firepower 4100 Series Firepower 9000 Series MDS 9000 Series Multilayer Switches Nexus 1000V Series Switches Nexus 3000 Series Switches Nexus 5000 Series Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches
Cisco UCS Software
At the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.
The left column lists Cisco software releases, and the right column indicates whether a release was affected by the vulnerability described in this advisory and which release included the fix for this vulnerability.
UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects
Cisco UCS Software Release First Fixed Release Earlier than 4.0 Migrate to a fixed release. 4.0 4.0(4o) 4.1 4.1(3k) 4.2 4.2(2d)
The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
Source
This vulnerability was found during internal security testing by Michael Hegglin of the Cisco Advanced Security Initiatives Group (ASIG).
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "This vulnerability was found during internal security testing by Michael Hegglin of the Cisco Advanced Security Initiatives Group (ASIG)."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands.\r\n\r\nThis vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\n\r\n\r\nThis advisory is part of the February 2023 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: February 2023 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75057\"].",
"title": "Summary"
},
{
"category": "general",
"text": "At the time of publication, this vulnerability affected the following Cisco products if they were running a vulnerable release of Cisco FXOS or NX-OS Software:\r\n\r\nFirepower 4100 Series\r\nFirepower 9300 Security Appliances\r\nUCS 6200 Series Fabric Interconnects\r\nUCS 6300 Series Fabric Interconnects\r\nUCS 6400 Series Fabric Interconnects\r\nUCS 6500 Series Fabric Interconnects\r\n\r\nNote: Only Cisco UCS 6400 and 6500 Series Fabric Interconnects allow a user with Administrator privileges to execute commands on the underlying operating system with root-level privileges. The other affected products have a reduced impact and only allow a low-privileged user to access some unauthorized unprivileged commands that execute within the CLI and not on the underlying operating system.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following Cisco products:\r\n\r\nFirepower 1000 Series\r\nFirepower 2100 Series\r\nMDS 9000 Series Multilayer Switches\r\nNexus 1000 Virtual Edge for VMware vSphere\r\nNexus 1000V Switch for Microsoft Hyper-V\r\nNexus 1000V Switch for VMware vSphere\r\nNexus 3000 Series Switches\r\nNexus 5500 Platform Switches\r\nNexus 5600 Platform Switches\r\nNexus 6000 Series Switches\r\nNexus 7000 Series Switches\r\nNexus 9000 Series Fabric Switches in ACI mode\r\nNexus 9000 Series Switches in standalone NX-OS mode\r\nSecure Firewall 3100 Series",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "There are no workarounds that address this vulnerability.",
"title": "Workarounds"
},
{
"category": "general",
"text": "When considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Cisco FXOS and NX-OS Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco FXOS and NX-OS Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities that are described in all the advisories that the Software Checker identifies (\u201cCombined First Fixed\u201d).\r\n\r\nTo use the tool, go to the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps:\r\n\r\nChoose which advisories the tool will search\u2014only this advisory, only advisories with a Critical or High Security Impact Rating (SIR) [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr\"], or all advisories.\r\nChoose the appropriate software.\r\nChoose the appropriate platform.\r\nEnter a release number\u2014for example, 2.9.1.158 for Cisco Firepower 4100 Series Security Appliances or 7.0(3)I7(5) for Cisco Nexus 3000 Series Switches.\r\nClick Check.\r\n\r\n Only this advisory All Critical and High advisories All advisories Cisco FXOS Software Cisco NX-OS Software Cisco NX-OS Software in ACI Mode Any Platform Firepower 4100 Series Firepower 9000 Series MDS 9000 Series Multilayer Switches Nexus 1000V Series Switches Nexus 3000 Series Switches Nexus 5000 Series Switches Nexus 6000 Series Switches Nexus 7000 Series Switches Nexus 9000 Series Switches\r\n\r\n\r\n\r\n\r\n Cisco UCS Software\r\nAt the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.\r\n\r\nThe left column lists Cisco software releases, and the right column indicates whether a release was affected by the vulnerability described in this advisory and which release included the fix for this vulnerability.\r\n\r\nUCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects\r\n Cisco UCS Software Release First Fixed Release Earlier than 4.0 Migrate to a fixed release. 4.0 4.0(4o) 4.1 4.1(3k) 4.2 4.2(2d)\r\nThe Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "This vulnerability was found during internal security testing by Michael Hegglin of the Cisco Advanced Security Initiatives Group (ASIG).",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "Emergency Support:\r\n+1 877 228 7302 (toll-free within North America)\r\n+1 408 525 6532 (International direct-dial)\r\nNon-emergency Support:\r\nEmail: psirt@cisco.com\r\nSupport requests that are received via e-mail are typically acknowledged within 48 hours.",
"issuing_authority": "Cisco product security incident response is the responsibility of the Cisco Product Security Incident Response Team (PSIRT). The Cisco PSIRT is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks. The on-call Cisco PSIRT works 24x7 with Cisco customers, independent security researchers, consultants, industry organizations, and other vendors to identify possible security issues with Cisco products and networks.\r\nMore information can be found in Cisco Security Vulnerability Policy available at https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
},
{
"category": "external",
"summary": "Cisco Event Response: February 2023 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75057"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "Cisco Software Checker",
"url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
},
{
"category": "external",
"summary": "Security Impact Rating (SIR)",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"
},
{
"category": "external",
"summary": "Security Vulnerability Policy",
"url": "http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"
}
],
"title": "Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"tracking": {
"current_release_date": "2023-02-22T16:00:00+00:00",
"generator": {
"date": "2023-02-22T15:50:48+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-nxfp-cmdinj-XXBZjtR",
"initial_release_date": "2023-02-22T16:00:00+00:00",
"revision_history": [
{
"date": "2023-02-22T15:50:33+00:00",
"number": "1.0.0",
"summary": "Initial public release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_family",
"name": "Cisco Unified Computing System (Managed)",
"product": {
"name": "Cisco Unified Computing System (Managed) ",
"product_id": "CSAFPID-112776"
}
},
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "2.2.1.63",
"product": {
"name": "2.2.1.63",
"product_id": "CSAFPID-253492"
}
},
{
"category": "service_pack",
"name": "2.2.1.66",
"product": {
"name": "2.2.1.66",
"product_id": "CSAFPID-253493"
}
},
{
"category": "service_pack",
"name": "2.2.1.70",
"product": {
"name": "2.2.1.70",
"product_id": "CSAFPID-253494"
}
},
{
"category": "service_pack",
"name": "2.2.2.17",
"product": {
"name": "2.2.2.17",
"product_id": "CSAFPID-253495"
}
},
{
"category": "service_pack",
"name": "2.2.2.19",
"product": {
"name": "2.2.2.19",
"product_id": "CSAFPID-253496"
}
},
{
"category": "service_pack",
"name": "2.2.2.24",
"product": {
"name": "2.2.2.24",
"product_id": "CSAFPID-253497"
}
},
{
"category": "service_pack",
"name": "2.2.2.26",
"product": {
"name": "2.2.2.26",
"product_id": "CSAFPID-253498"
}
},
{
"category": "service_pack",
"name": "2.2.2.28",
"product": {
"name": "2.2.2.28",
"product_id": "CSAFPID-253499"
}
},
{
"category": "service_pack",
"name": "2.2.2.54",
"product": {
"name": "2.2.2.54",
"product_id": "CSAFPID-253500"
}
},
{
"category": "service_pack",
"name": "2.2.2.60",
"product": {
"name": "2.2.2.60",
"product_id": "CSAFPID-253501"
}
},
{
"category": "service_pack",
"name": "2.2.2.71",
"product": {
"name": "2.2.2.71",
"product_id": "CSAFPID-253502"
}
},
{
"category": "service_pack",
"name": "2.2.2.83",
"product": {
"name": "2.2.2.83",
"product_id": "CSAFPID-253503"
}
},
{
"category": "service_pack",
"name": "2.2.2.86",
"product": {
"name": "2.2.2.86",
"product_id": "CSAFPID-253504"
}
},
{
"category": "service_pack",
"name": "2.2.2.91",
"product": {
"name": "2.2.2.91",
"product_id": "CSAFPID-273567"
}
},
{
"category": "service_pack",
"name": "2.2.2.97",
"product": {
"name": "2.2.2.97",
"product_id": "CSAFPID-273568"
}
},
{
"category": "service_pack",
"name": "2.2.2.101",
"product": {
"name": "2.2.2.101",
"product_id": "CSAFPID-273569"
}
},
{
"category": "service_pack",
"name": "2.2.2.137",
"product": {
"name": "2.2.2.137",
"product_id": "CSAFPID-280408"
}
},
{
"category": "service_pack",
"name": "2.2.2.148",
"product": {
"name": "2.2.2.148",
"product_id": "CSAFPID-283753"
}
},
{
"category": "service_pack",
"name": "2.2.2.149",
"product": {
"name": "2.2.2.149",
"product_id": "CSAFPID-283805"
}
}
],
"category": "product_version",
"name": "2.2"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.3.1.99",
"product": {
"name": "2.3.1.99",
"product_id": "CSAFPID-256167"
}
},
{
"category": "service_pack",
"name": "2.3.1.93",
"product": {
"name": "2.3.1.93",
"product_id": "CSAFPID-256168"
}
},
{
"category": "service_pack",
"name": "2.3.1.91",
"product": {
"name": "2.3.1.91",
"product_id": "CSAFPID-256169"
}
},
{
"category": "service_pack",
"name": "2.3.1.88",
"product": {
"name": "2.3.1.88",
"product_id": "CSAFPID-256170"
}
},
{
"category": "service_pack",
"name": "2.3.1.75",
"product": {
"name": "2.3.1.75",
"product_id": "CSAFPID-256171"
}
},
{
"category": "service_pack",
"name": "2.3.1.73",
"product": {
"name": "2.3.1.73",
"product_id": "CSAFPID-256172"
}
},
{
"category": "service_pack",
"name": "2.3.1.66",
"product": {
"name": "2.3.1.66",
"product_id": "CSAFPID-256173"
}
},
{
"category": "service_pack",
"name": "2.3.1.58",
"product": {
"name": "2.3.1.58",
"product_id": "CSAFPID-256174"
}
},
{
"category": "service_pack",
"name": "2.3.1.130",
"product": {
"name": "2.3.1.130",
"product_id": "CSAFPID-256175"
}
},
{
"category": "service_pack",
"name": "2.3.1.111",
"product": {
"name": "2.3.1.111",
"product_id": "CSAFPID-256176"
}
},
{
"category": "service_pack",
"name": "2.3.1.110",
"product": {
"name": "2.3.1.110",
"product_id": "CSAFPID-256177"
}
},
{
"category": "service_pack",
"name": "2.3.1.144",
"product": {
"name": "2.3.1.144",
"product_id": "CSAFPID-271836"
}
},
{
"category": "service_pack",
"name": "2.3.1.145",
"product": {
"name": "2.3.1.145",
"product_id": "CSAFPID-271837"
}
},
{
"category": "service_pack",
"name": "2.3.1.155",
"product": {
"name": "2.3.1.155",
"product_id": "CSAFPID-271838"
}
},
{
"category": "service_pack",
"name": "2.3.1.166",
"product": {
"name": "2.3.1.166",
"product_id": "CSAFPID-271839"
}
},
{
"category": "service_pack",
"name": "2.3.1.173",
"product": {
"name": "2.3.1.173",
"product_id": "CSAFPID-276492"
}
},
{
"category": "service_pack",
"name": "2.3.1.179",
"product": {
"name": "2.3.1.179",
"product_id": "CSAFPID-279079"
}
},
{
"category": "service_pack",
"name": "2.3.1.180",
"product": {
"name": "2.3.1.180",
"product_id": "CSAFPID-279082"
}
},
{
"category": "service_pack",
"name": "2.3.1.56",
"product": {
"name": "2.3.1.56",
"product_id": "CSAFPID-279083"
}
},
{
"category": "service_pack",
"name": "2.3.1.190",
"product": {
"name": "2.3.1.190",
"product_id": "CSAFPID-280933"
}
},
{
"category": "service_pack",
"name": "2.3.1.215",
"product": {
"name": "2.3.1.215",
"product_id": "CSAFPID-283751"
}
},
{
"category": "service_pack",
"name": "2.3.1.216",
"product": {
"name": "2.3.1.216",
"product_id": "CSAFPID-283806"
}
},
{
"category": "service_pack",
"name": "2.3.1.219",
"product": {
"name": "2.3.1.219",
"product_id": "CSAFPID-286446"
}
},
{
"category": "service_pack",
"name": "2.3.1.230",
"product": {
"name": "2.3.1.230",
"product_id": "CSAFPID-289299"
}
}
],
"category": "product_version",
"name": "2.3"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.6.1.131",
"product": {
"name": "2.6.1.131",
"product_id": "CSAFPID-271847"
}
},
{
"category": "service_pack",
"name": "2.6.1.157",
"product": {
"name": "2.6.1.157",
"product_id": "CSAFPID-271848"
}
},
{
"category": "service_pack",
"name": "2.6.1.166",
"product": {
"name": "2.6.1.166",
"product_id": "CSAFPID-271849"
}
},
{
"category": "service_pack",
"name": "2.6.1.169",
"product": {
"name": "2.6.1.169",
"product_id": "CSAFPID-271850"
}
},
{
"category": "service_pack",
"name": "2.6.1.174",
"product": {
"name": "2.6.1.174",
"product_id": "CSAFPID-271851"
}
},
{
"category": "service_pack",
"name": "2.6.1.187",
"product": {
"name": "2.6.1.187",
"product_id": "CSAFPID-276494"
}
},
{
"category": "service_pack",
"name": "2.6.1.192",
"product": {
"name": "2.6.1.192",
"product_id": "CSAFPID-279102"
}
},
{
"category": "service_pack",
"name": "2.6.1.204",
"product": {
"name": "2.6.1.204",
"product_id": "CSAFPID-279103"
}
},
{
"category": "service_pack",
"name": "2.6.1.214",
"product": {
"name": "2.6.1.214",
"product_id": "CSAFPID-279754"
}
},
{
"category": "service_pack",
"name": "2.6.1.224",
"product": {
"name": "2.6.1.224",
"product_id": "CSAFPID-282101"
}
},
{
"category": "service_pack",
"name": "2.6.1.229",
"product": {
"name": "2.6.1.229",
"product_id": "CSAFPID-283757"
}
},
{
"category": "service_pack",
"name": "2.6.1.230",
"product": {
"name": "2.6.1.230",
"product_id": "CSAFPID-283807"
}
},
{
"category": "service_pack",
"name": "2.6.1.238",
"product": {
"name": "2.6.1.238",
"product_id": "CSAFPID-284685"
}
},
{
"category": "service_pack",
"name": "2.6.1.239",
"product": {
"name": "2.6.1.239",
"product_id": "CSAFPID-284888"
}
},
{
"category": "service_pack",
"name": "2.6.1.254",
"product": {
"name": "2.6.1.254",
"product_id": "CSAFPID-286878"
}
},
{
"category": "service_pack",
"name": "2.6.1.259",
"product": {
"name": "2.6.1.259",
"product_id": "CSAFPID-289300"
}
}
],
"category": "product_version",
"name": "2.6"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.8.1.105",
"product": {
"name": "2.8.1.105",
"product_id": "CSAFPID-279105"
}
},
{
"category": "service_pack",
"name": "2.8.1.125",
"product": {
"name": "2.8.1.125",
"product_id": "CSAFPID-279376"
}
},
{
"category": "service_pack",
"name": "2.8.1.139",
"product": {
"name": "2.8.1.139",
"product_id": "CSAFPID-280936"
}
},
{
"category": "service_pack",
"name": "2.8.1.143",
"product": {
"name": "2.8.1.143",
"product_id": "CSAFPID-282102"
}
},
{
"category": "service_pack",
"name": "2.8.1.152",
"product": {
"name": "2.8.1.152",
"product_id": "CSAFPID-283759"
}
},
{
"category": "service_pack",
"name": "2.8.1.162",
"product": {
"name": "2.8.1.162",
"product_id": "CSAFPID-283836"
}
},
{
"category": "service_pack",
"name": "2.8.1.164",
"product": {
"name": "2.8.1.164",
"product_id": "CSAFPID-284225"
}
},
{
"category": "service_pack",
"name": "2.8.1.172",
"product": {
"name": "2.8.1.172",
"product_id": "CSAFPID-286229"
}
},
{
"category": "service_pack",
"name": "2.8.1.186",
"product": {
"name": "2.8.1.186",
"product_id": "CSAFPID-287114"
}
},
{
"category": "service_pack",
"name": "2.8.1.190",
"product": {
"name": "2.8.1.190",
"product_id": "CSAFPID-288263"
}
}
],
"category": "product_version",
"name": "2.8"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.9.1.131",
"product": {
"name": "2.9.1.131",
"product_id": "CSAFPID-280935"
}
},
{
"category": "service_pack",
"name": "2.9.1.135",
"product": {
"name": "2.9.1.135",
"product_id": "CSAFPID-282054"
}
},
{
"category": "service_pack",
"name": "2.9.1.143",
"product": {
"name": "2.9.1.143",
"product_id": "CSAFPID-283750"
}
},
{
"category": "service_pack",
"name": "2.9.1.150",
"product": {
"name": "2.9.1.150",
"product_id": "CSAFPID-284290"
}
},
{
"category": "service_pack",
"name": "2.9.1.158",
"product": {
"name": "2.9.1.158",
"product_id": "CSAFPID-286079"
}
}
],
"category": "product_version",
"name": "2.9"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.10.1.159",
"product": {
"name": "2.10.1.159",
"product_id": "CSAFPID-283756"
}
},
{
"category": "service_pack",
"name": "2.10.1.166",
"product": {
"name": "2.10.1.166",
"product_id": "CSAFPID-284684"
}
},
{
"category": "service_pack",
"name": "2.10.1.179",
"product": {
"name": "2.10.1.179",
"product_id": "CSAFPID-286294"
}
},
{
"category": "service_pack",
"name": "2.10.1.207",
"product": {
"name": "2.10.1.207",
"product_id": "CSAFPID-288265"
}
},
{
"category": "service_pack",
"name": "2.10.1.234",
"product": {
"name": "2.10.1.234",
"product_id": "CSAFPID-290664"
}
}
],
"category": "product_version",
"name": "2.10"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.11.1.154",
"product": {
"name": "2.11.1.154",
"product_id": "CSAFPID-286228"
}
},
{
"category": "service_pack",
"name": "2.11.1.182",
"product": {
"name": "2.11.1.182",
"product_id": "CSAFPID-289325"
}
}
],
"category": "product_version",
"name": "2.11"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.12.0.31",
"product": {
"name": "2.12.0.31",
"product_id": "CSAFPID-287117"
}
},
{
"category": "service_pack",
"name": "2.12.0.432",
"product": {
"name": "2.12.0.432",
"product_id": "CSAFPID-288264"
}
},
{
"category": "service_pack",
"name": "2.12.0.450",
"product": {
"name": "2.12.0.450",
"product_id": "CSAFPID-290586"
}
}
],
"category": "product_version",
"name": "2.12"
},
{
"branches": [
{
"category": "service_pack",
"name": "2.13.0.198",
"product": {
"name": "2.13.0.198",
"product_id": "CSAFPID-292365"
}
}
],
"category": "product_version",
"name": "2.13"
}
],
"category": "product_family",
"name": "Cisco Firepower Extensible Operating System (FXOS)"
},
{
"category": "product_family",
"name": "Cisco Firepower Extensible Operating System (FXOS)",
"product": {
"name": "Cisco Firepower Extensible Operating System (FXOS) ",
"product_id": "CSAFPID-225888"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 9000 Series",
"product": {
"name": "Cisco Firepower 9000 Series",
"product_id": "CSAFPID-277440"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 4100 Series",
"product": {
"name": "Cisco Firepower 4100 Series",
"product_id": "CSAFPID-277441"
}
}
],
"category": "vendor",
"name": "Cisco"
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.63 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253492:277440"
},
"product_reference": "CSAFPID-253492",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.63 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253492:277441"
},
"product_reference": "CSAFPID-253492",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.66 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253493:277440"
},
"product_reference": "CSAFPID-253493",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.66 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253493:277441"
},
"product_reference": "CSAFPID-253493",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.70 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253494:277440"
},
"product_reference": "CSAFPID-253494",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.1.70 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253494:277441"
},
"product_reference": "CSAFPID-253494",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.17 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253495:277440"
},
"product_reference": "CSAFPID-253495",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.17 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253495:277441"
},
"product_reference": "CSAFPID-253495",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.19 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253496:277440"
},
"product_reference": "CSAFPID-253496",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.19 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253496:277441"
},
"product_reference": "CSAFPID-253496",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.24 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253497:277440"
},
"product_reference": "CSAFPID-253497",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.24 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253497:277441"
},
"product_reference": "CSAFPID-253497",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.26 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253498:277440"
},
"product_reference": "CSAFPID-253498",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.26 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253498:277441"
},
"product_reference": "CSAFPID-253498",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.28 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253499:277440"
},
"product_reference": "CSAFPID-253499",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.28 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253499:277441"
},
"product_reference": "CSAFPID-253499",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.54 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253500:277440"
},
"product_reference": "CSAFPID-253500",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.54 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253500:277441"
},
"product_reference": "CSAFPID-253500",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.60 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253501:277440"
},
"product_reference": "CSAFPID-253501",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.60 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253501:277441"
},
"product_reference": "CSAFPID-253501",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.71 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253502:277440"
},
"product_reference": "CSAFPID-253502",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.71 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253502:277441"
},
"product_reference": "CSAFPID-253502",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.83 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253503:277440"
},
"product_reference": "CSAFPID-253503",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.83 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253503:277441"
},
"product_reference": "CSAFPID-253503",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.86 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-253504:277440"
},
"product_reference": "CSAFPID-253504",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.86 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-253504:277441"
},
"product_reference": "CSAFPID-253504",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.91 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-273567:277440"
},
"product_reference": "CSAFPID-273567",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.91 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-273567:277441"
},
"product_reference": "CSAFPID-273567",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.97 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-273568:277440"
},
"product_reference": "CSAFPID-273568",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.97 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-273568:277441"
},
"product_reference": "CSAFPID-273568",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.101 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-273569:277440"
},
"product_reference": "CSAFPID-273569",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.101 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-273569:277441"
},
"product_reference": "CSAFPID-273569",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.137 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280408:277440"
},
"product_reference": "CSAFPID-280408",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.137 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280408:277441"
},
"product_reference": "CSAFPID-280408",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.148 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283753:277440"
},
"product_reference": "CSAFPID-283753",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.148 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283753:277441"
},
"product_reference": "CSAFPID-283753",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.149 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283805:277440"
},
"product_reference": "CSAFPID-283805",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.2.2.149 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283805:277441"
},
"product_reference": "CSAFPID-283805",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.99 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256167:277440"
},
"product_reference": "CSAFPID-256167",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.99 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256167:277441"
},
"product_reference": "CSAFPID-256167",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.93 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256168:277440"
},
"product_reference": "CSAFPID-256168",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.93 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256168:277441"
},
"product_reference": "CSAFPID-256168",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.91 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256169:277440"
},
"product_reference": "CSAFPID-256169",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.91 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256169:277441"
},
"product_reference": "CSAFPID-256169",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.88 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256170:277440"
},
"product_reference": "CSAFPID-256170",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.88 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256170:277441"
},
"product_reference": "CSAFPID-256170",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.75 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256171:277440"
},
"product_reference": "CSAFPID-256171",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.75 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256171:277441"
},
"product_reference": "CSAFPID-256171",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.73 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256172:277440"
},
"product_reference": "CSAFPID-256172",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.73 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256172:277441"
},
"product_reference": "CSAFPID-256172",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.66 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256173:277440"
},
"product_reference": "CSAFPID-256173",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.66 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256173:277441"
},
"product_reference": "CSAFPID-256173",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.58 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256174:277440"
},
"product_reference": "CSAFPID-256174",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.58 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256174:277441"
},
"product_reference": "CSAFPID-256174",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.130 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256175:277440"
},
"product_reference": "CSAFPID-256175",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.130 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256175:277441"
},
"product_reference": "CSAFPID-256175",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.111 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256176:277440"
},
"product_reference": "CSAFPID-256176",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.111 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256176:277441"
},
"product_reference": "CSAFPID-256176",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.110 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-256177:277440"
},
"product_reference": "CSAFPID-256177",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.110 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-256177:277441"
},
"product_reference": "CSAFPID-256177",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.144 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271836:277440"
},
"product_reference": "CSAFPID-271836",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.144 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271836:277441"
},
"product_reference": "CSAFPID-271836",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.145 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271837:277440"
},
"product_reference": "CSAFPID-271837",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.145 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271837:277441"
},
"product_reference": "CSAFPID-271837",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.155 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271838:277440"
},
"product_reference": "CSAFPID-271838",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.155 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271838:277441"
},
"product_reference": "CSAFPID-271838",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.166 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271839:277440"
},
"product_reference": "CSAFPID-271839",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.166 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271839:277441"
},
"product_reference": "CSAFPID-271839",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.173 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276492:277440"
},
"product_reference": "CSAFPID-276492",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.173 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276492:277441"
},
"product_reference": "CSAFPID-276492",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.179 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279079:277440"
},
"product_reference": "CSAFPID-279079",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.179 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279079:277441"
},
"product_reference": "CSAFPID-279079",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.180 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279082:277440"
},
"product_reference": "CSAFPID-279082",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.180 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279082:277441"
},
"product_reference": "CSAFPID-279082",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.56 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279083:277440"
},
"product_reference": "CSAFPID-279083",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.56 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279083:277441"
},
"product_reference": "CSAFPID-279083",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.190 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280933:277440"
},
"product_reference": "CSAFPID-280933",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.190 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280933:277441"
},
"product_reference": "CSAFPID-280933",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.215 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283751:277440"
},
"product_reference": "CSAFPID-283751",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.215 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283751:277441"
},
"product_reference": "CSAFPID-283751",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.216 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283806:277440"
},
"product_reference": "CSAFPID-283806",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.216 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283806:277441"
},
"product_reference": "CSAFPID-283806",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.219 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286446:277440"
},
"product_reference": "CSAFPID-286446",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.219 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286446:277441"
},
"product_reference": "CSAFPID-286446",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.230 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-289299:277440"
},
"product_reference": "CSAFPID-289299",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.3.1.230 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-289299:277441"
},
"product_reference": "CSAFPID-289299",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.131 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271847:277440"
},
"product_reference": "CSAFPID-271847",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.131 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271847:277441"
},
"product_reference": "CSAFPID-271847",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.157 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271848:277440"
},
"product_reference": "CSAFPID-271848",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.157 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271848:277441"
},
"product_reference": "CSAFPID-271848",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.166 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271849:277440"
},
"product_reference": "CSAFPID-271849",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.166 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271849:277441"
},
"product_reference": "CSAFPID-271849",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.169 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271850:277440"
},
"product_reference": "CSAFPID-271850",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.169 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271850:277441"
},
"product_reference": "CSAFPID-271850",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.174 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-271851:277440"
},
"product_reference": "CSAFPID-271851",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.174 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-271851:277441"
},
"product_reference": "CSAFPID-271851",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.187 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276494:277440"
},
"product_reference": "CSAFPID-276494",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.187 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276494:277441"
},
"product_reference": "CSAFPID-276494",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.192 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279102:277440"
},
"product_reference": "CSAFPID-279102",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.192 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279102:277441"
},
"product_reference": "CSAFPID-279102",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.204 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279103:277440"
},
"product_reference": "CSAFPID-279103",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.204 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279103:277441"
},
"product_reference": "CSAFPID-279103",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.214 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279754:277440"
},
"product_reference": "CSAFPID-279754",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.214 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279754:277441"
},
"product_reference": "CSAFPID-279754",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.224 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-282101:277440"
},
"product_reference": "CSAFPID-282101",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.224 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-282101:277441"
},
"product_reference": "CSAFPID-282101",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.229 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283757:277440"
},
"product_reference": "CSAFPID-283757",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.229 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283757:277441"
},
"product_reference": "CSAFPID-283757",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.230 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283807:277440"
},
"product_reference": "CSAFPID-283807",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.230 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283807:277441"
},
"product_reference": "CSAFPID-283807",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.238 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284685:277440"
},
"product_reference": "CSAFPID-284685",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.238 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284685:277441"
},
"product_reference": "CSAFPID-284685",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.239 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284888:277440"
},
"product_reference": "CSAFPID-284888",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.239 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284888:277441"
},
"product_reference": "CSAFPID-284888",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.254 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286878:277440"
},
"product_reference": "CSAFPID-286878",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.254 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286878:277441"
},
"product_reference": "CSAFPID-286878",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.259 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-289300:277440"
},
"product_reference": "CSAFPID-289300",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.6.1.259 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-289300:277441"
},
"product_reference": "CSAFPID-289300",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.105 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279105:277440"
},
"product_reference": "CSAFPID-279105",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.105 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279105:277441"
},
"product_reference": "CSAFPID-279105",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.125 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-279376:277440"
},
"product_reference": "CSAFPID-279376",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.125 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-279376:277441"
},
"product_reference": "CSAFPID-279376",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.139 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280936:277440"
},
"product_reference": "CSAFPID-280936",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.139 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280936:277441"
},
"product_reference": "CSAFPID-280936",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.143 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-282102:277440"
},
"product_reference": "CSAFPID-282102",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.143 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-282102:277441"
},
"product_reference": "CSAFPID-282102",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.152 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283759:277440"
},
"product_reference": "CSAFPID-283759",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.152 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283759:277441"
},
"product_reference": "CSAFPID-283759",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.162 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283836:277440"
},
"product_reference": "CSAFPID-283836",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.162 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283836:277441"
},
"product_reference": "CSAFPID-283836",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.164 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284225:277440"
},
"product_reference": "CSAFPID-284225",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.164 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284225:277441"
},
"product_reference": "CSAFPID-284225",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.172 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286229:277440"
},
"product_reference": "CSAFPID-286229",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.172 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286229:277441"
},
"product_reference": "CSAFPID-286229",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.186 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-287114:277440"
},
"product_reference": "CSAFPID-287114",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.186 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-287114:277441"
},
"product_reference": "CSAFPID-287114",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.190 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-288263:277440"
},
"product_reference": "CSAFPID-288263",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.8.1.190 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-288263:277441"
},
"product_reference": "CSAFPID-288263",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.131 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280935:277440"
},
"product_reference": "CSAFPID-280935",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.131 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280935:277441"
},
"product_reference": "CSAFPID-280935",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.135 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-282054:277440"
},
"product_reference": "CSAFPID-282054",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.135 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-282054:277441"
},
"product_reference": "CSAFPID-282054",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.143 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283750:277440"
},
"product_reference": "CSAFPID-283750",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.143 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283750:277441"
},
"product_reference": "CSAFPID-283750",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.150 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284290:277440"
},
"product_reference": "CSAFPID-284290",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.150 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284290:277441"
},
"product_reference": "CSAFPID-284290",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.158 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286079:277440"
},
"product_reference": "CSAFPID-286079",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.9.1.158 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286079:277441"
},
"product_reference": "CSAFPID-286079",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.159 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-283756:277440"
},
"product_reference": "CSAFPID-283756",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.159 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-283756:277441"
},
"product_reference": "CSAFPID-283756",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.166 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284684:277440"
},
"product_reference": "CSAFPID-284684",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.166 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284684:277441"
},
"product_reference": "CSAFPID-284684",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.179 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286294:277440"
},
"product_reference": "CSAFPID-286294",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.179 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286294:277441"
},
"product_reference": "CSAFPID-286294",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.207 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-288265:277440"
},
"product_reference": "CSAFPID-288265",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.207 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-288265:277441"
},
"product_reference": "CSAFPID-288265",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.234 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-290664:277440"
},
"product_reference": "CSAFPID-290664",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.10.1.234 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-290664:277441"
},
"product_reference": "CSAFPID-290664",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.11.1.154 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-286228:277440"
},
"product_reference": "CSAFPID-286228",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.11.1.154 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-286228:277441"
},
"product_reference": "CSAFPID-286228",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.11.1.182 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-289325:277440"
},
"product_reference": "CSAFPID-289325",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.11.1.182 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-289325:277441"
},
"product_reference": "CSAFPID-289325",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.31 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-287117:277440"
},
"product_reference": "CSAFPID-287117",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.31 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-287117:277441"
},
"product_reference": "CSAFPID-287117",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.432 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-288264:277440"
},
"product_reference": "CSAFPID-288264",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.432 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-288264:277441"
},
"product_reference": "CSAFPID-288264",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.450 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-290586:277440"
},
"product_reference": "CSAFPID-290586",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.12.0.450 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-290586:277441"
},
"product_reference": "CSAFPID-290586",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.13.0.198 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-292365:277440"
},
"product_reference": "CSAFPID-292365",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Extensible Operating System (FXOS) 2.13.0.198 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-292365:277441"
},
"product_reference": "CSAFPID-292365",
"relates_to_product_reference": "CSAFPID-277441"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-20015",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCwd11206"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCwc52151"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCwd11228"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-112776",
"CSAFPID-225888",
"CSAFPID-253492:277440",
"CSAFPID-253492:277441",
"CSAFPID-253493:277440",
"CSAFPID-253493:277441",
"CSAFPID-253494:277440",
"CSAFPID-253494:277441",
"CSAFPID-253495:277440",
"CSAFPID-253495:277441",
"CSAFPID-253496:277440",
"CSAFPID-253496:277441",
"CSAFPID-253497:277440",
"CSAFPID-253497:277441",
"CSAFPID-253498:277440",
"CSAFPID-253498:277441",
"CSAFPID-253499:277440",
"CSAFPID-253499:277441",
"CSAFPID-253500:277440",
"CSAFPID-253500:277441",
"CSAFPID-253501:277440",
"CSAFPID-253501:277441",
"CSAFPID-253502:277440",
"CSAFPID-253502:277441",
"CSAFPID-253503:277440",
"CSAFPID-253503:277441",
"CSAFPID-253504:277440",
"CSAFPID-253504:277441",
"CSAFPID-256167:277440",
"CSAFPID-256167:277441",
"CSAFPID-256168:277440",
"CSAFPID-256168:277441",
"CSAFPID-256169:277440",
"CSAFPID-256169:277441",
"CSAFPID-256170:277440",
"CSAFPID-256170:277441",
"CSAFPID-256171:277440",
"CSAFPID-256171:277441",
"CSAFPID-256172:277440",
"CSAFPID-256172:277441",
"CSAFPID-256173:277440",
"CSAFPID-256173:277441",
"CSAFPID-256174:277440",
"CSAFPID-256174:277441",
"CSAFPID-256175:277440",
"CSAFPID-256175:277441",
"CSAFPID-256176:277440",
"CSAFPID-256176:277441",
"CSAFPID-256177:277440",
"CSAFPID-256177:277441",
"CSAFPID-271836:277440",
"CSAFPID-271836:277441",
"CSAFPID-271837:277440",
"CSAFPID-271837:277441",
"CSAFPID-271838:277440",
"CSAFPID-271838:277441",
"CSAFPID-271839:277440",
"CSAFPID-271839:277441",
"CSAFPID-271847:277440",
"CSAFPID-271847:277441",
"CSAFPID-271848:277440",
"CSAFPID-271848:277441",
"CSAFPID-271849:277440",
"CSAFPID-271849:277441",
"CSAFPID-271850:277440",
"CSAFPID-271850:277441",
"CSAFPID-271851:277440",
"CSAFPID-271851:277441",
"CSAFPID-273567:277440",
"CSAFPID-273567:277441",
"CSAFPID-273568:277440",
"CSAFPID-273568:277441",
"CSAFPID-273569:277440",
"CSAFPID-273569:277441",
"CSAFPID-276492:277440",
"CSAFPID-276492:277441",
"CSAFPID-276494:277440",
"CSAFPID-276494:277441",
"CSAFPID-279079:277440",
"CSAFPID-279079:277441",
"CSAFPID-279082:277440",
"CSAFPID-279082:277441",
"CSAFPID-279083:277440",
"CSAFPID-279083:277441",
"CSAFPID-279102:277440",
"CSAFPID-279102:277441",
"CSAFPID-279103:277440",
"CSAFPID-279103:277441",
"CSAFPID-279105:277440",
"CSAFPID-279105:277441",
"CSAFPID-279376:277440",
"CSAFPID-279376:277441",
"CSAFPID-279754:277440",
"CSAFPID-279754:277441",
"CSAFPID-280408:277440",
"CSAFPID-280408:277441",
"CSAFPID-280933:277440",
"CSAFPID-280933:277441",
"CSAFPID-280935:277440",
"CSAFPID-280935:277441",
"CSAFPID-280936:277440",
"CSAFPID-280936:277441",
"CSAFPID-282054:277440",
"CSAFPID-282054:277441",
"CSAFPID-282101:277440",
"CSAFPID-282101:277441",
"CSAFPID-282102:277440",
"CSAFPID-282102:277441",
"CSAFPID-283750:277440",
"CSAFPID-283750:277441",
"CSAFPID-283751:277440",
"CSAFPID-283751:277441",
"CSAFPID-283753:277440",
"CSAFPID-283753:277441",
"CSAFPID-283756:277440",
"CSAFPID-283756:277441",
"CSAFPID-283757:277440",
"CSAFPID-283757:277441",
"CSAFPID-283759:277440",
"CSAFPID-283759:277441",
"CSAFPID-283805:277440",
"CSAFPID-283805:277441",
"CSAFPID-283806:277440",
"CSAFPID-283806:277441",
"CSAFPID-283807:277440",
"CSAFPID-283807:277441",
"CSAFPID-283836:277440",
"CSAFPID-283836:277441",
"CSAFPID-284225:277440",
"CSAFPID-284225:277441",
"CSAFPID-284290:277440",
"CSAFPID-284290:277441",
"CSAFPID-284684:277440",
"CSAFPID-284684:277441",
"CSAFPID-284685:277440",
"CSAFPID-284685:277441",
"CSAFPID-284888:277440",
"CSAFPID-284888:277441",
"CSAFPID-286079:277440",
"CSAFPID-286079:277441",
"CSAFPID-286228:277440",
"CSAFPID-286228:277441",
"CSAFPID-286229:277440",
"CSAFPID-286229:277441",
"CSAFPID-286294:277440",
"CSAFPID-286294:277441",
"CSAFPID-286446:277440",
"CSAFPID-286446:277441",
"CSAFPID-286878:277440",
"CSAFPID-286878:277441",
"CSAFPID-287114:277440",
"CSAFPID-287114:277441",
"CSAFPID-287117:277440",
"CSAFPID-287117:277441",
"CSAFPID-288263:277440",
"CSAFPID-288263:277441",
"CSAFPID-288264:277440",
"CSAFPID-288264:277441",
"CSAFPID-288265:277440",
"CSAFPID-288265:277441",
"CSAFPID-289299:277440",
"CSAFPID-289299:277441",
"CSAFPID-289300:277440",
"CSAFPID-289300:277441",
"CSAFPID-289325:277440",
"CSAFPID-289325:277441",
"CSAFPID-290586:277440",
"CSAFPID-290586:277441",
"CSAFPID-290664:277440",
"CSAFPID-290664:277441",
"CSAFPID-292365:277440",
"CSAFPID-292365:277441"
]
},
"release_date": "2023-02-22T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-112776",
"CSAFPID-225888",
"CSAFPID-253492:277440",
"CSAFPID-253492:277441",
"CSAFPID-253493:277440",
"CSAFPID-253493:277441",
"CSAFPID-253494:277440",
"CSAFPID-253494:277441",
"CSAFPID-253495:277440",
"CSAFPID-253495:277441",
"CSAFPID-253496:277440",
"CSAFPID-253496:277441",
"CSAFPID-253497:277440",
"CSAFPID-253497:277441",
"CSAFPID-253498:277440",
"CSAFPID-253498:277441",
"CSAFPID-253499:277440",
"CSAFPID-253499:277441",
"CSAFPID-253500:277440",
"CSAFPID-253500:277441",
"CSAFPID-253501:277440",
"CSAFPID-253501:277441",
"CSAFPID-253502:277440",
"CSAFPID-253502:277441",
"CSAFPID-253503:277440",
"CSAFPID-253503:277441",
"CSAFPID-253504:277440",
"CSAFPID-253504:277441",
"CSAFPID-256167:277440",
"CSAFPID-256167:277441",
"CSAFPID-256168:277440",
"CSAFPID-256168:277441",
"CSAFPID-256169:277440",
"CSAFPID-256169:277441",
"CSAFPID-256170:277440",
"CSAFPID-256170:277441",
"CSAFPID-256171:277440",
"CSAFPID-256171:277441",
"CSAFPID-256172:277440",
"CSAFPID-256172:277441",
"CSAFPID-256173:277440",
"CSAFPID-256173:277441",
"CSAFPID-256174:277440",
"CSAFPID-256174:277441",
"CSAFPID-256175:277440",
"CSAFPID-256175:277441",
"CSAFPID-256176:277440",
"CSAFPID-256176:277441",
"CSAFPID-256177:277440",
"CSAFPID-256177:277441",
"CSAFPID-271836:277440",
"CSAFPID-271836:277441",
"CSAFPID-271837:277440",
"CSAFPID-271837:277441",
"CSAFPID-271838:277440",
"CSAFPID-271838:277441",
"CSAFPID-271839:277440",
"CSAFPID-271839:277441",
"CSAFPID-271847:277440",
"CSAFPID-271847:277441",
"CSAFPID-271848:277440",
"CSAFPID-271848:277441",
"CSAFPID-271849:277440",
"CSAFPID-271849:277441",
"CSAFPID-271850:277440",
"CSAFPID-271850:277441",
"CSAFPID-271851:277440",
"CSAFPID-271851:277441",
"CSAFPID-273567:277440",
"CSAFPID-273567:277441",
"CSAFPID-273568:277440",
"CSAFPID-273568:277441",
"CSAFPID-273569:277440",
"CSAFPID-273569:277441",
"CSAFPID-276492:277440",
"CSAFPID-276492:277441",
"CSAFPID-276494:277440",
"CSAFPID-276494:277441",
"CSAFPID-279079:277440",
"CSAFPID-279079:277441",
"CSAFPID-279082:277440",
"CSAFPID-279082:277441",
"CSAFPID-279083:277440",
"CSAFPID-279083:277441",
"CSAFPID-279102:277440",
"CSAFPID-279102:277441",
"CSAFPID-279103:277440",
"CSAFPID-279103:277441",
"CSAFPID-279105:277440",
"CSAFPID-279105:277441",
"CSAFPID-279376:277440",
"CSAFPID-279376:277441",
"CSAFPID-279754:277440",
"CSAFPID-279754:277441",
"CSAFPID-280408:277440",
"CSAFPID-280408:277441",
"CSAFPID-280933:277440",
"CSAFPID-280933:277441",
"CSAFPID-280935:277440",
"CSAFPID-280935:277441",
"CSAFPID-280936:277440",
"CSAFPID-280936:277441",
"CSAFPID-282054:277440",
"CSAFPID-282054:277441",
"CSAFPID-282101:277440",
"CSAFPID-282101:277441",
"CSAFPID-282102:277440",
"CSAFPID-282102:277441",
"CSAFPID-283750:277440",
"CSAFPID-283750:277441",
"CSAFPID-283751:277440",
"CSAFPID-283751:277441",
"CSAFPID-283753:277440",
"CSAFPID-283753:277441",
"CSAFPID-283756:277440",
"CSAFPID-283756:277441",
"CSAFPID-283757:277440",
"CSAFPID-283757:277441",
"CSAFPID-283759:277440",
"CSAFPID-283759:277441",
"CSAFPID-283805:277440",
"CSAFPID-283805:277441",
"CSAFPID-283806:277440",
"CSAFPID-283806:277441",
"CSAFPID-283807:277440",
"CSAFPID-283807:277441",
"CSAFPID-283836:277440",
"CSAFPID-283836:277441",
"CSAFPID-284225:277440",
"CSAFPID-284225:277441",
"CSAFPID-284290:277440",
"CSAFPID-284290:277441",
"CSAFPID-284684:277440",
"CSAFPID-284684:277441",
"CSAFPID-284685:277440",
"CSAFPID-284685:277441",
"CSAFPID-284888:277440",
"CSAFPID-284888:277441",
"CSAFPID-286079:277440",
"CSAFPID-286079:277441",
"CSAFPID-286228:277440",
"CSAFPID-286228:277441",
"CSAFPID-286229:277440",
"CSAFPID-286229:277441",
"CSAFPID-286294:277440",
"CSAFPID-286294:277441",
"CSAFPID-286446:277440",
"CSAFPID-286446:277441",
"CSAFPID-286878:277440",
"CSAFPID-286878:277441",
"CSAFPID-287114:277440",
"CSAFPID-287114:277441",
"CSAFPID-287117:277440",
"CSAFPID-287117:277441",
"CSAFPID-288263:277440",
"CSAFPID-288263:277441",
"CSAFPID-288264:277440",
"CSAFPID-288264:277441",
"CSAFPID-288265:277440",
"CSAFPID-288265:277441",
"CSAFPID-289299:277440",
"CSAFPID-289299:277441",
"CSAFPID-289300:277440",
"CSAFPID-289300:277441",
"CSAFPID-289325:277440",
"CSAFPID-289325:277441",
"CSAFPID-290586:277440",
"CSAFPID-290586:277441",
"CSAFPID-290664:277440",
"CSAFPID-290664:277441",
"CSAFPID-292365:277440",
"CSAFPID-292365:277441"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-112776",
"CSAFPID-225888",
"CSAFPID-253492:277440",
"CSAFPID-253492:277441",
"CSAFPID-253493:277440",
"CSAFPID-253493:277441",
"CSAFPID-253494:277440",
"CSAFPID-253494:277441",
"CSAFPID-253495:277440",
"CSAFPID-253495:277441",
"CSAFPID-253496:277440",
"CSAFPID-253496:277441",
"CSAFPID-253497:277440",
"CSAFPID-253497:277441",
"CSAFPID-253498:277440",
"CSAFPID-253498:277441",
"CSAFPID-253499:277440",
"CSAFPID-253499:277441",
"CSAFPID-253500:277440",
"CSAFPID-253500:277441",
"CSAFPID-253501:277440",
"CSAFPID-253501:277441",
"CSAFPID-253502:277440",
"CSAFPID-253502:277441",
"CSAFPID-253503:277440",
"CSAFPID-253503:277441",
"CSAFPID-253504:277440",
"CSAFPID-253504:277441",
"CSAFPID-256167:277440",
"CSAFPID-256167:277441",
"CSAFPID-256168:277440",
"CSAFPID-256168:277441",
"CSAFPID-256169:277440",
"CSAFPID-256169:277441",
"CSAFPID-256170:277440",
"CSAFPID-256170:277441",
"CSAFPID-256171:277440",
"CSAFPID-256171:277441",
"CSAFPID-256172:277440",
"CSAFPID-256172:277441",
"CSAFPID-256173:277440",
"CSAFPID-256173:277441",
"CSAFPID-256174:277440",
"CSAFPID-256174:277441",
"CSAFPID-256175:277440",
"CSAFPID-256175:277441",
"CSAFPID-256176:277440",
"CSAFPID-256176:277441",
"CSAFPID-256177:277440",
"CSAFPID-256177:277441",
"CSAFPID-271836:277440",
"CSAFPID-271836:277441",
"CSAFPID-271837:277440",
"CSAFPID-271837:277441",
"CSAFPID-271838:277440",
"CSAFPID-271838:277441",
"CSAFPID-271839:277440",
"CSAFPID-271839:277441",
"CSAFPID-271847:277440",
"CSAFPID-271847:277441",
"CSAFPID-271848:277440",
"CSAFPID-271848:277441",
"CSAFPID-271849:277440",
"CSAFPID-271849:277441",
"CSAFPID-271850:277440",
"CSAFPID-271850:277441",
"CSAFPID-271851:277440",
"CSAFPID-271851:277441",
"CSAFPID-273567:277440",
"CSAFPID-273567:277441",
"CSAFPID-273568:277440",
"CSAFPID-273568:277441",
"CSAFPID-273569:277440",
"CSAFPID-273569:277441",
"CSAFPID-276492:277440",
"CSAFPID-276492:277441",
"CSAFPID-276494:277440",
"CSAFPID-276494:277441",
"CSAFPID-279079:277440",
"CSAFPID-279079:277441",
"CSAFPID-279082:277440",
"CSAFPID-279082:277441",
"CSAFPID-279083:277440",
"CSAFPID-279083:277441",
"CSAFPID-279102:277440",
"CSAFPID-279102:277441",
"CSAFPID-279103:277440",
"CSAFPID-279103:277441",
"CSAFPID-279105:277440",
"CSAFPID-279105:277441",
"CSAFPID-279376:277440",
"CSAFPID-279376:277441",
"CSAFPID-279754:277440",
"CSAFPID-279754:277441",
"CSAFPID-280408:277440",
"CSAFPID-280408:277441",
"CSAFPID-280933:277440",
"CSAFPID-280933:277441",
"CSAFPID-280935:277440",
"CSAFPID-280935:277441",
"CSAFPID-280936:277440",
"CSAFPID-280936:277441",
"CSAFPID-282054:277440",
"CSAFPID-282054:277441",
"CSAFPID-282101:277440",
"CSAFPID-282101:277441",
"CSAFPID-282102:277440",
"CSAFPID-282102:277441",
"CSAFPID-283750:277440",
"CSAFPID-283750:277441",
"CSAFPID-283751:277440",
"CSAFPID-283751:277441",
"CSAFPID-283753:277440",
"CSAFPID-283753:277441",
"CSAFPID-283756:277440",
"CSAFPID-283756:277441",
"CSAFPID-283757:277440",
"CSAFPID-283757:277441",
"CSAFPID-283759:277440",
"CSAFPID-283759:277441",
"CSAFPID-283805:277440",
"CSAFPID-283805:277441",
"CSAFPID-283806:277440",
"CSAFPID-283806:277441",
"CSAFPID-283807:277440",
"CSAFPID-283807:277441",
"CSAFPID-283836:277440",
"CSAFPID-283836:277441",
"CSAFPID-284225:277440",
"CSAFPID-284225:277441",
"CSAFPID-284290:277440",
"CSAFPID-284290:277441",
"CSAFPID-284684:277440",
"CSAFPID-284684:277441",
"CSAFPID-284685:277440",
"CSAFPID-284685:277441",
"CSAFPID-284888:277440",
"CSAFPID-284888:277441",
"CSAFPID-286079:277440",
"CSAFPID-286079:277441",
"CSAFPID-286228:277440",
"CSAFPID-286228:277441",
"CSAFPID-286229:277440",
"CSAFPID-286229:277441",
"CSAFPID-286294:277440",
"CSAFPID-286294:277441",
"CSAFPID-286446:277440",
"CSAFPID-286446:277441",
"CSAFPID-286878:277440",
"CSAFPID-286878:277441",
"CSAFPID-287114:277440",
"CSAFPID-287114:277441",
"CSAFPID-287117:277440",
"CSAFPID-287117:277441",
"CSAFPID-288263:277440",
"CSAFPID-288263:277441",
"CSAFPID-288264:277440",
"CSAFPID-288264:277441",
"CSAFPID-288265:277440",
"CSAFPID-288265:277441",
"CSAFPID-289299:277440",
"CSAFPID-289299:277441",
"CSAFPID-289300:277440",
"CSAFPID-289300:277441",
"CSAFPID-289325:277440",
"CSAFPID-289325:277441",
"CSAFPID-290586:277440",
"CSAFPID-290586:277441",
"CSAFPID-290664:277440",
"CSAFPID-290664:277441",
"CSAFPID-292365:277440",
"CSAFPID-292365:277441"
]
}
],
"title": "Cisco UCS Fabric Interconnects and Firepower 4100/9300 Security Appliances Command Injection Vulnerability"
}
]
}
wid-sec-w-2023-0467
Vulnerability from csaf_certbund
Published
2023-02-22 23:00
Modified
2023-02-22 23:00
Summary
Cisco Produkte: Schwachstelle ermöglicht Codeausführung
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Firepower ist eine Firewall-Plattform von Cisco
FXOS (FirePOWER eXtensible Operating System) ist ein Betriebssystem für Cisco Firepower Appliances
Cisco NX-OS ist ein Data Center Netzwerk-Betriebssystem für virtualisierte Rechenzentren. NX-OS wurde für Ethernet Switches der Nexus Serie und Fibre Channel Storage Area Network Swiches der MDS Serie entwickelt.
Das Cisco Unified Communications System integriert Sprach-, Video- und andere kollaborative Anwendungen in intelligente netzwerkbasierte Kommunikationslösungen.
Angriff
Ein lokaler Angreifer kann eine Schwachstelle in Cisco Firepower, Cisco FXOS, Cisco NX-OS und Cisco Unified Communications System ausnutzen, um beliebigen Programmcode auszuführen.
Betroffene Betriebssysteme
- CISCO Appliance
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Firepower ist eine Firewall-Plattform von Cisco\r\nFXOS (FirePOWER eXtensible Operating System) ist ein Betriebssystem f\u00fcr Cisco Firepower Appliances\r\nCisco NX-OS ist ein Data Center Netzwerk-Betriebssystem f\u00fcr virtualisierte Rechenzentren. NX-OS wurde f\u00fcr Ethernet Switches der Nexus Serie und Fibre Channel Storage Area Network Swiches der MDS Serie entwickelt.\r\nDas Cisco Unified Communications System integriert Sprach-, Video- und andere kollaborative Anwendungen in intelligente netzwerkbasierte Kommunikationsl\u00f6sungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann eine Schwachstelle in Cisco Firepower, Cisco FXOS, Cisco NX-OS und Cisco Unified Communications System ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- CISCO Appliance",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-0467 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0467.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-0467 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0467"
},
{
"category": "external",
"summary": "Cisco Security Advisory vom 2023-02-22",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
],
"source_lang": "en-US",
"title": "Cisco Produkte: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
"tracking": {
"current_release_date": "2023-02-22T23:00:00.000+00:00",
"generator": {
"date": "2024-02-15T17:16:01.069+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.0"
}
},
"id": "WID-SEC-W-2023-0467",
"initial_release_date": "2023-02-22T23:00:00.000+00:00",
"revision_history": [
{
"date": "2023-02-22T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cisco FXOS",
"product": {
"name": "Cisco FXOS",
"product_id": "660564",
"product_identification_helper": {
"cpe": "cpe:/o:cisco:fxos:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Firepower 4100",
"product": {
"name": "Cisco Firepower 4100",
"product_id": "T013710",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:firepower:4100"
}
}
},
{
"category": "product_name",
"name": "Cisco Firepower 9300",
"product": {
"name": "Cisco Firepower 9300",
"product_id": "T013711",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:firepower:9300"
}
}
}
],
"category": "product_name",
"name": "Firepower"
},
{
"category": "product_name",
"name": "Cisco NX-OS",
"product": {
"name": "Cisco NX-OS",
"product_id": "T000310",
"product_identification_helper": {
"cpe": "cpe:/o:cisco:nx-os:-"
}
}
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Unified Communications System 6200",
"product": {
"name": "Cisco Unified Communications System 6200",
"product_id": "T026481",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_system:6200"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Communications System 6300",
"product": {
"name": "Cisco Unified Communications System 6300",
"product_id": "T026482",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_system:6300"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Communications System 6400",
"product": {
"name": "Cisco Unified Communications System 6400",
"product_id": "T026483",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_system:6400"
}
}
},
{
"category": "product_name",
"name": "Cisco Unified Communications System 6500",
"product": {
"name": "Cisco Unified Communications System 6500",
"product_id": "T026484",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:unified_communications_system:6500"
}
}
}
],
"category": "product_name",
"name": "Unified Communications System"
}
],
"category": "vendor",
"name": "Cisco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-20015",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Cisco Firepower, Cisco FXOS, Cisco NX-OS und Cisco Unified Communications System. Der Fehler besteht aufgrund einer unzureichenden Eingabevalidierung der vom Benutzer bereitgestellten Befehle. Ein lokaler Angreifer k\u00f6nnte diese Schwachstelle ausnutzen, indem er sich bei einem Ger\u00e4t authentisiert und speziell gestaltete Eingaben an den betroffenen Befehl sendet, um beliebigen Code auszuf\u00fchren. Im schlimmsten Fall k\u00f6nnten die Befehle als Root-Benutzer ausgef\u00fchrt werden."
}
],
"product_status": {
"known_affected": [
"T026481",
"T026483",
"T026482",
"T013710",
"660564",
"T013711",
"T000310",
"T026484"
]
},
"release_date": "2023-02-22T23:00:00Z",
"title": "CVE-2023-20015"
}
]
}
gsd-2023-20015
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-20015",
"id": "GSD-2023-20015"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-20015"
],
"details": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.",
"id": "GSD-2023-20015",
"modified": "2023-12-13T01:20:28.048332Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2023-02-23T00:00:00",
"ID": "CVE-2023-20015",
"STATE": "PUBLIC",
"TITLE": "Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco Unified Computing System (Managed) ",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges."
}
]
},
"exploit": [
{
"lang": "eng",
"value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "
}
],
"impact": {
"cvss": {
"baseScore": "6.0",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N ",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20230223 Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"refsource": "CISCO",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
]
},
"source": {
"advisory": "cisco-sa-nxfp-cmdinj-XXBZjtR",
"defect": [
[
"CSCwc52151",
"CSCwd11206",
"CSCwd11228"
]
],
"discovery": "INTERNAL"
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6536_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6536:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_64108_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_64108:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6454_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6454:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6200_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6200:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6248up_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6248up:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6296up_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6296up:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6300_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6300:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6324_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6324:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6332_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6332:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.0\\(4o\\)",
"versionStartIncluding": "4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1\\(3k\\)",
"versionStartIncluding": "4.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:ucs_central_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.2\\(2d\\)",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ucs_6332-16up_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ucs_6332-16up:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:firepower_extensible_operating_system:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4100:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4110:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4112:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4115:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4120:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4125:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4140:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4145:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_4150:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-36:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-40:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-44:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-44_x_3:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-48:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-56:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:cisco:firepower_9300_sm-56_x_3:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"ID": "CVE-2023-20015"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local attacker to inject unauthorized commands. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20230223 Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability",
"refsource": "CISCO",
"tags": [
"Vendor Advisory"
],
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-04-20T15:12Z",
"publishedDate": "2023-02-23T20:15Z"
}
}
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.