Action not permitted
Modal body text goes here.
ghsa-3rrh-hp3f-9r6p
Vulnerability from github
Published
2024-11-15 18:30
Modified
2024-11-15 18:30
Severity ?
Details
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.
This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user. The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
{
"affected": [],
"aliases": [
"CVE-2022-20649"
],
"database_specific": {
"cwe_ids": [
"CWE-489"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-11-15T16:15:20Z",
"severity": "HIGH"
},
"details": "A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\n\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.",
"id": "GHSA-3rrh-hp3f-9r6p",
"modified": "2024-11-15T18:30:49Z",
"published": "2024-11-15T18:30:49Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-20649"
},
{
"type": "WEB",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"type": "WEB",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO"
},
{
"type": "WEB",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
cve-2022-20649
Vulnerability from cvelistv5
Published
2024-11-15 15:59
Modified
2024-11-15 19:41
Severity ?
EPSS score ?
Summary
Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability
References
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Cisco | Cisco Redundancy Configuration Manager |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "redundancy_configuration_manager",
"vendor": "cisco",
"versions": [
{
"lessThan": "21.25.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-20649",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-15T19:40:41.090546Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T19:41:58.793Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Cisco Redundancy Configuration Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "2021.02.0"
},
{
"status": "affected",
"version": "2021.01.0"
},
{
"status": "affected",
"version": "21.19.n13"
},
{
"status": "affected",
"version": "21.17.19"
},
{
"status": "affected",
"version": "21.18.24"
},
{
"status": "affected",
"version": "21.25.0"
},
{
"status": "affected",
"version": "21.15.60"
},
{
"status": "affected",
"version": "21.22.11"
},
{
"status": "affected",
"version": "21.20.25"
},
{
"status": "affected",
"version": "21.20.21"
},
{
"status": "affected",
"version": "21.24.2"
},
{
"status": "affected",
"version": "21.23.10"
},
{
"status": "affected",
"version": "21.22.n5"
},
{
"status": "affected",
"version": "21.15.57"
},
{
"status": "affected",
"version": "21.25.1"
},
{
"status": "affected",
"version": "21.18.21"
},
{
"status": "affected",
"version": "21.23.1"
},
{
"status": "affected",
"version": "21.19.11"
},
{
"status": "affected",
"version": "21.16.c16"
},
{
"status": "affected",
"version": "21.23.5"
},
{
"status": "affected",
"version": "21.22.4"
},
{
"status": "affected",
"version": "21.22.ua2"
},
{
"status": "affected",
"version": "21.23.n6"
},
{
"status": "affected",
"version": "21.17.18"
},
{
"status": "affected",
"version": "21.17.17"
},
{
"status": "affected",
"version": "21.21.KS2"
},
{
"status": "affected",
"version": "21.20.23"
},
{
"status": "affected",
"version": "21.20.15"
},
{
"status": "affected",
"version": "21.20.p9"
},
{
"status": "affected",
"version": "21.20.17"
},
{
"status": "affected",
"version": "21.20.14"
},
{
"status": "affected",
"version": "21.21.3"
},
{
"status": "affected",
"version": "21.19.n9"
},
{
"status": "affected",
"version": "21.23.0"
},
{
"status": "affected",
"version": "21.5.30"
},
{
"status": "affected",
"version": "21.22.n4"
},
{
"status": "affected",
"version": "21.20.12"
},
{
"status": "affected",
"version": "21.23.b2"
},
{
"status": "affected",
"version": "21.20.13"
},
{
"status": "affected",
"version": "21.18.22"
},
{
"status": "affected",
"version": "21.18.23"
},
{
"status": "affected",
"version": "21.20.24"
},
{
"status": "affected",
"version": "21.23.6"
},
{
"status": "affected",
"version": "21.21.1"
},
{
"status": "affected",
"version": "21.23.8"
},
{
"status": "affected",
"version": "21.11.20"
},
{
"status": "affected",
"version": "21.15.58"
},
{
"status": "affected",
"version": "21.24.0"
},
{
"status": "affected",
"version": "21.18.18"
},
{
"status": "affected",
"version": "21.20.u8"
},
{
"status": "affected",
"version": "21.18.19"
},
{
"status": "affected",
"version": "21.21.2"
},
{
"status": "affected",
"version": "21.22.2"
},
{
"status": "affected",
"version": "21.22.8"
},
{
"status": "affected",
"version": "21.22.uj3"
},
{
"status": "affected",
"version": "21.22.5"
},
{
"status": "affected",
"version": "21.22.3"
},
{
"status": "affected",
"version": "21.22.10"
},
{
"status": "affected",
"version": "21.18.20"
},
{
"status": "affected",
"version": "21.15.55"
},
{
"status": "affected",
"version": "21.12.22"
},
{
"status": "affected",
"version": "21.23.4"
},
{
"status": "affected",
"version": "21.15.59"
},
{
"status": "affected",
"version": "21.22.ua0"
},
{
"status": "affected",
"version": "21.20.16"
},
{
"status": "affected",
"version": "21.20.18"
},
{
"status": "affected",
"version": "21.20.19"
},
{
"status": "affected",
"version": "21.19.n7"
},
{
"status": "affected",
"version": "21.20.20"
},
{
"status": "affected",
"version": "21.19.n10"
},
{
"status": "affected",
"version": "21.19.n11"
},
{
"status": "affected",
"version": "21.22.7"
},
{
"status": "affected",
"version": "21.22.ua3"
},
{
"status": "affected",
"version": "21.19.n12"
},
{
"status": "affected",
"version": "21.23.9"
},
{
"status": "affected",
"version": "21.18.16"
},
{
"status": "affected",
"version": "21.16.10"
},
{
"status": "affected",
"version": "21.22.6"
},
{
"status": "affected",
"version": "21.18.17"
},
{
"status": "affected",
"version": "21.24.1"
},
{
"status": "affected",
"version": "21.11.21"
},
{
"status": "affected",
"version": "21.23.3"
},
{
"status": "affected",
"version": "21.9.13"
},
{
"status": "affected",
"version": "21.20.k8"
},
{
"status": "affected",
"version": "21.19.n8"
},
{
"status": "affected",
"version": "21.22.9"
},
{
"status": "affected",
"version": "21.16.c17"
},
{
"status": "affected",
"version": "21.16.9"
},
{
"status": "affected",
"version": "21.23.2"
},
{
"status": "affected",
"version": "21.20.22"
},
{
"status": "affected",
"version": "21.18.7"
},
{
"status": "affected",
"version": "21.19.6"
},
{
"status": "affected",
"version": "21.23.7"
},
{
"status": "affected",
"version": "21.11.16"
},
{
"status": "affected",
"version": "21.18.13"
},
{
"status": "affected",
"version": "21.15.47"
},
{
"status": "affected",
"version": "21.19.n6"
},
{
"status": "affected",
"version": "6.9.8"
},
{
"status": "affected",
"version": "21.20.k6"
},
{
"status": "affected",
"version": "21.20.6"
},
{
"status": "affected",
"version": "21.19.10"
},
{
"status": "affected",
"version": "21.19.n4"
},
{
"status": "affected",
"version": "21.15.46"
},
{
"status": "affected",
"version": "21.17.14"
},
{
"status": "affected",
"version": "21.15.52"
},
{
"status": "affected",
"version": "21.16.6"
},
{
"status": "affected",
"version": "21.22.n3"
},
{
"status": "affected",
"version": "21.15.54"
},
{
"status": "affected",
"version": "21.18.15"
},
{
"status": "affected",
"version": "21.18.11"
},
{
"status": "affected",
"version": "21.18.8"
},
{
"status": "affected",
"version": "21.12.20"
},
{
"status": "affected",
"version": "21.5.28"
},
{
"status": "affected",
"version": "21.20.11"
},
{
"status": "affected",
"version": "21.8.12"
},
{
"status": "affected",
"version": "21.19.7"
},
{
"status": "affected",
"version": "21.19.5"
},
{
"status": "affected",
"version": "21.11.19"
},
{
"status": "affected",
"version": "21.16.c15"
},
{
"status": "affected",
"version": "21.18.12"
},
{
"status": "affected",
"version": "21.15.51"
},
{
"status": "affected",
"version": "21.18.14"
},
{
"status": "affected",
"version": "21.11.15"
},
{
"status": "affected",
"version": "21.16.c14"
},
{
"status": "affected",
"version": "21.20.4"
},
{
"status": "affected",
"version": "21.20.7"
},
{
"status": "affected",
"version": "21.14.b22"
},
{
"status": "affected",
"version": "21.17.10"
},
{
"status": "affected",
"version": "21.12.21"
},
{
"status": "affected",
"version": "21.19.9"
},
{
"status": "affected",
"version": "21.13.21"
},
{
"status": "affected",
"version": "21.14.23"
},
{
"status": "affected",
"version": "21.20.UV0"
},
{
"status": "affected",
"version": "21.10.6"
},
{
"status": "affected",
"version": "21.15.45"
},
{
"status": "affected",
"version": "21.15.53"
},
{
"status": "affected",
"version": "21.17.15"
},
{
"status": "affected",
"version": "21.17.16"
},
{
"status": "affected",
"version": "6.14.2"
},
{
"status": "affected",
"version": "21.19.n3"
},
{
"status": "affected",
"version": "21.17.11"
},
{
"status": "affected",
"version": "21.21.0"
},
{
"status": "affected",
"version": "21.20.10"
},
{
"status": "affected",
"version": "21.20.3"
},
{
"status": "affected",
"version": "21.20.5"
},
{
"status": "affected",
"version": "21.16.7"
},
{
"status": "affected",
"version": "21.22.1"
},
{
"status": "affected",
"version": "21.17.9"
},
{
"status": "affected",
"version": "21.17.13"
},
{
"status": "affected",
"version": "21.20.2"
},
{
"status": "affected",
"version": "21.20.9"
},
{
"status": "affected",
"version": "21.5.27"
},
{
"status": "affected",
"version": "21.14.22"
},
{
"status": "affected",
"version": "21.19.8"
},
{
"status": "affected",
"version": "21.22.n2"
},
{
"status": "affected",
"version": "21.16.8"
},
{
"status": "affected",
"version": "21.11.17"
},
{
"status": "affected",
"version": "21.20.8"
},
{
"status": "affected",
"version": "21.20.k7"
},
{
"status": "affected",
"version": "21.18.9"
},
{
"status": "affected",
"version": "21.19.n5"
},
{
"status": "affected",
"version": "21.11.18"
},
{
"status": "affected",
"version": "21.5.29"
},
{
"status": "affected",
"version": "21.15.48"
},
{
"status": "affected",
"version": "21.22.0"
},
{
"status": "affected",
"version": "21.14.b19"
},
{
"status": "affected",
"version": "21.15.17"
},
{
"status": "affected",
"version": "21.16.c4"
},
{
"status": "affected",
"version": "21.19.2"
},
{
"status": "affected",
"version": "6.2.b17"
},
{
"status": "affected",
"version": "6.9.7"
},
{
"status": "affected",
"version": "21.16.c6"
},
{
"status": "affected",
"version": "21.17.8"
},
{
"status": "affected",
"version": "21.11.13"
},
{
"status": "affected",
"version": "21.12.19"
},
{
"status": "affected",
"version": "21.12.18"
},
{
"status": "affected",
"version": "21.6.15"
},
{
"status": "affected",
"version": "21.20.0"
},
{
"status": "affected",
"version": "6.13.EY2"
},
{
"status": "affected",
"version": "21.15.36"
},
{
"status": "affected",
"version": "21.15.21"
},
{
"status": "affected",
"version": "21.15.43"
},
{
"status": "affected",
"version": "6.14.0"
},
{
"status": "affected",
"version": "21.14.b15"
},
{
"status": "affected",
"version": "21.15.14"
},
{
"status": "affected",
"version": "21.15.15"
},
{
"status": "affected",
"version": "21.16.c7"
},
{
"status": "affected",
"version": "21.16.c3"
},
{
"status": "affected",
"version": "6.13.EY1"
},
{
"status": "affected",
"version": "21.15.13"
},
{
"status": "affected",
"version": "21.12.15"
},
{
"status": "affected",
"version": "21.5.25"
},
{
"status": "affected",
"version": "21.14.b12"
},
{
"status": "affected",
"version": "21.18.6"
},
{
"status": "affected",
"version": "21.19.4"
},
{
"status": "affected",
"version": "21.17.3"
},
{
"status": "affected",
"version": "21.16.c5"
},
{
"status": "affected",
"version": "21.14.b21"
},
{
"status": "affected",
"version": "21.18.1"
},
{
"status": "affected",
"version": "6.11.0"
},
{
"status": "affected",
"version": "21.14.17"
},
{
"status": "affected",
"version": "21.5.26"
},
{
"status": "affected",
"version": "21.14.b13"
},
{
"status": "affected",
"version": "21.14.b16"
},
{
"status": "affected",
"version": "21.15.22"
},
{
"status": "affected",
"version": "21.15.23"
},
{
"status": "affected",
"version": "21.16.3"
},
{
"status": "affected",
"version": "21.16.c10"
},
{
"status": "affected",
"version": "21.16.d1"
},
{
"status": "affected",
"version": "21.15.28"
},
{
"status": "affected",
"version": "21.11.11"
},
{
"status": "affected",
"version": "21.15.30"
},
{
"status": "affected",
"version": "21.15.29"
},
{
"status": "affected",
"version": "21.13.18"
},
{
"status": "affected",
"version": "21.12.16"
},
{
"status": "affected",
"version": "21.17.5"
},
{
"status": "affected",
"version": "21.14.b18"
},
{
"status": "affected",
"version": "21.14.RH0"
},
{
"status": "affected",
"version": "21.14.b14"
},
{
"status": "affected",
"version": "6.6.7"
},
{
"status": "affected",
"version": "21.15.20"
},
{
"status": "affected",
"version": "21.15.32"
},
{
"status": "affected",
"version": "21.14.18"
},
{
"status": "affected",
"version": "21.6.b25"
},
{
"status": "affected",
"version": "21.17.2"
},
{
"status": "affected",
"version": "6.2.b15"
},
{
"status": "affected",
"version": "21.15.33"
},
{
"status": "affected",
"version": "21.13.19"
},
{
"status": "affected",
"version": "6.2.b14"
},
{
"status": "affected",
"version": "21.19.n1"
},
{
"status": "affected",
"version": "21.19.1"
},
{
"status": "affected",
"version": "21.19.0"
},
{
"status": "affected",
"version": "21.6.b26"
},
{
"status": "affected",
"version": "6.2.b16"
},
{
"status": "affected",
"version": "21.11.12"
},
{
"status": "affected",
"version": "21.18.3"
},
{
"status": "affected",
"version": "21.17.7"
},
{
"status": "affected",
"version": "21.14.12"
},
{
"status": "affected",
"version": "21.19.n2"
},
{
"status": "affected",
"version": "21.16.c11"
},
{
"status": "affected",
"version": "21.16.c12"
},
{
"status": "affected",
"version": "6.10.0"
},
{
"status": "affected",
"version": "21.16.4"
},
{
"status": "affected",
"version": "6.13.0"
},
{
"status": "affected",
"version": "21.13.16"
},
{
"status": "affected",
"version": "21.16.c13"
},
{
"status": "affected",
"version": "21.17.1"
},
{
"status": "affected",
"version": "21.17.6"
},
{
"status": "affected",
"version": "21.12.17"
},
{
"status": "affected",
"version": "21.11.10"
},
{
"status": "affected",
"version": "21.20.SV1"
},
{
"status": "affected",
"version": "21.11.14"
},
{
"status": "affected",
"version": "6.11.1"
},
{
"status": "affected",
"version": "21.17.0"
},
{
"status": "affected",
"version": "21.9.12"
},
{
"status": "affected",
"version": "21.20.1"
},
{
"status": "affected",
"version": "21.14.19"
},
{
"status": "affected",
"version": "21.14.c3"
},
{
"status": "affected",
"version": "21.15.18"
},
{
"status": "affected",
"version": "21.15.19"
},
{
"status": "affected",
"version": "21.15.16"
},
{
"status": "affected",
"version": "21.15.39"
},
{
"status": "affected",
"version": "6.6.6"
},
{
"status": "affected",
"version": "21.14.11"
},
{
"status": "affected",
"version": "21.14.b17"
},
{
"status": "affected",
"version": "21.14.16"
},
{
"status": "affected",
"version": "21.15.24"
},
{
"status": "affected",
"version": "21.6.b24"
},
{
"status": "affected",
"version": "21.16.c9"
},
{
"status": "affected",
"version": "21.16.c8"
},
{
"status": "affected",
"version": "6.8.1"
},
{
"status": "affected",
"version": "21.15.27"
},
{
"status": "affected",
"version": "21.15.26"
},
{
"status": "affected",
"version": "21.15.25"
},
{
"status": "affected",
"version": "21.17.4"
},
{
"status": "affected",
"version": "21.13.17"
},
{
"status": "affected",
"version": "6.9.5"
},
{
"status": "affected",
"version": "21.18.5"
},
{
"status": "affected",
"version": "21.15.40"
},
{
"status": "affected",
"version": "6.12.0"
},
{
"status": "affected",
"version": "21.18.2"
},
{
"status": "affected",
"version": "21.12.14"
},
{
"status": "affected",
"version": "21.16.d0"
},
{
"status": "affected",
"version": "21.14.20"
},
{
"status": "affected",
"version": "21.18.0"
},
{
"status": "affected",
"version": "21.15.37"
},
{
"status": "affected",
"version": "21.15.41"
},
{
"status": "affected",
"version": "21.18.4"
},
{
"status": "affected",
"version": "21.20.SV2"
},
{
"status": "affected",
"version": "21.20.SV3"
},
{
"status": "affected",
"version": "21.16.5"
},
{
"status": "affected",
"version": "21.20.SV5"
},
{
"status": "affected",
"version": "5.1.15"
},
{
"status": "affected",
"version": "21.19.3"
},
{
"status": "affected",
"version": "21.13.20"
},
{
"status": "affected",
"version": "21.14.b20"
},
{
"status": "affected",
"version": "21.15.7"
},
{
"status": "affected",
"version": "21.13.15"
},
{
"status": "affected",
"version": "21.15.11"
},
{
"status": "affected",
"version": "21.15.9"
},
{
"status": "affected",
"version": "21.15.0"
},
{
"status": "affected",
"version": "21.10.4"
},
{
"status": "affected",
"version": "21.12.12"
},
{
"status": "affected",
"version": "21.12.4"
},
{
"status": "affected",
"version": "21.12.8"
},
{
"status": "affected",
"version": "21.15.5"
},
{
"status": "affected",
"version": "21.13.8"
},
{
"status": "affected",
"version": "21.8.10"
},
{
"status": "affected",
"version": "21.14.6"
},
{
"status": "affected",
"version": "21.15.1"
},
{
"status": "affected",
"version": "21.8.11"
},
{
"status": "affected",
"version": "21.4.16"
},
{
"status": "affected",
"version": "21.9.11"
},
{
"status": "affected",
"version": "21.16.c0"
},
{
"status": "affected",
"version": "21.13.14"
},
{
"status": "affected",
"version": "21.13.4"
},
{
"status": "affected",
"version": "21.14.7"
},
{
"status": "affected",
"version": "21.14.8"
},
{
"status": "affected",
"version": "21.9.8"
},
{
"status": "affected",
"version": "21.16.c2"
},
{
"status": "affected",
"version": "21.15.10"
},
{
"status": "affected",
"version": "21.15.2"
},
{
"status": "affected",
"version": "21.15.6"
},
{
"status": "affected",
"version": "6.7.0"
},
{
"status": "affected",
"version": "21.13.6"
},
{
"status": "affected",
"version": "21.9.10"
},
{
"status": "affected",
"version": "21.14.1"
},
{
"status": "affected",
"version": "21.7.13"
},
{
"status": "affected",
"version": "21.11.8"
},
{
"status": "affected",
"version": "21.14.2"
},
{
"status": "affected",
"version": "21.14.0"
},
{
"status": "affected",
"version": "21.12.10"
},
{
"status": "affected",
"version": "21.9.9"
},
{
"status": "affected",
"version": "21.13.5"
},
{
"status": "affected",
"version": "21.13.2"
},
{
"status": "affected",
"version": "21.13.9"
},
{
"status": "affected",
"version": "21.13.10"
},
{
"status": "affected",
"version": "21.12.5"
},
{
"status": "affected",
"version": "21.12.9"
},
{
"status": "affected",
"version": "21.5.23"
},
{
"status": "affected",
"version": "21.14.10"
},
{
"status": "affected",
"version": "21.14.c2"
},
{
"status": "affected",
"version": "21.14.9"
},
{
"status": "affected",
"version": "21.11.6"
},
{
"status": "affected",
"version": "21.5.20"
},
{
"status": "affected",
"version": "21.13.12"
},
{
"status": "affected",
"version": "21.15.12"
},
{
"status": "affected",
"version": "6.9.2"
},
{
"status": "affected",
"version": "21.15.4"
},
{
"status": "affected",
"version": "21.13.11"
},
{
"status": "affected",
"version": "21.13.7"
},
{
"status": "affected",
"version": "21.10.5"
},
{
"status": "affected",
"version": "21.6.b19"
},
{
"status": "affected",
"version": "21.6.b23"
},
{
"status": "affected",
"version": "21.13.0"
},
{
"status": "affected",
"version": "21.6.14"
},
{
"status": "affected",
"version": "21.13.13"
},
{
"status": "affected",
"version": "21.4.17"
},
{
"status": "affected",
"version": "21.11.9"
},
{
"status": "affected",
"version": "21.11.2"
},
{
"status": "affected",
"version": "21.15.8"
},
{
"status": "affected",
"version": "21.16.2"
},
{
"status": "affected",
"version": "21.16.1"
},
{
"status": "affected",
"version": "21.16.c1"
},
{
"status": "affected",
"version": "21.5.21"
},
{
"status": "affected",
"version": "21.11.4"
},
{
"status": "affected",
"version": "21.6.b21"
},
{
"status": "affected",
"version": "21.14.a5"
},
{
"status": "affected",
"version": "21.10.3"
},
{
"status": "affected",
"version": "21.11.5"
},
{
"status": "affected",
"version": "21.13.3"
},
{
"status": "affected",
"version": "21.5.22"
},
{
"status": "affected",
"version": "21.12.7"
},
{
"status": "affected",
"version": "21.12.13"
},
{
"status": "affected",
"version": "21.12.6"
},
{
"status": "affected",
"version": "21.5.19"
},
{
"status": "affected",
"version": "21.6.b22"
},
{
"status": "affected",
"version": "21.11.7"
},
{
"status": "affected",
"version": "21.13.1"
},
{
"status": "affected",
"version": "21.14.a0"
},
{
"status": "affected",
"version": "21.14.4"
},
{
"status": "affected",
"version": "21.14.5"
},
{
"status": "affected",
"version": "21.5.24"
},
{
"status": "affected",
"version": "21.14.3"
},
{
"status": "affected",
"version": "21.16.0"
},
{
"status": "affected",
"version": "21.6.b20"
},
{
"status": "affected",
"version": "21.7.5"
},
{
"status": "affected",
"version": "21.15.3"
},
{
"status": "affected",
"version": "21.6.12"
},
{
"status": "affected",
"version": "21.8.5"
},
{
"status": "affected",
"version": "21.9.7"
},
{
"status": "affected",
"version": "21.12.11"
},
{
"status": "affected",
"version": "21.12.2"
},
{
"status": "affected",
"version": "6.2.b6"
},
{
"status": "affected",
"version": "21.8.4"
},
{
"status": "affected",
"version": "6.2.b5"
},
{
"status": "affected",
"version": "21.5.15"
},
{
"status": "affected",
"version": "21.8.1"
},
{
"status": "affected",
"version": "21.4.13"
},
{
"status": "affected",
"version": "21.10.0"
},
{
"status": "affected",
"version": "21.5.13"
},
{
"status": "affected",
"version": "21.9.0"
},
{
"status": "affected",
"version": "21.9.4"
},
{
"status": "affected",
"version": "21.4.9"
},
{
"status": "affected",
"version": "21.4.12"
},
{
"status": "affected",
"version": "21.11.3"
},
{
"status": "affected",
"version": "21.5.16"
},
{
"status": "affected",
"version": "21.7.9"
},
{
"status": "affected",
"version": "6.5.0"
},
{
"status": "affected",
"version": "21.4.8"
},
{
"status": "affected",
"version": "21.6.8"
},
{
"status": "affected",
"version": "21.6.5"
},
{
"status": "affected",
"version": "21.8.3"
},
{
"status": "affected",
"version": "21.6.10"
},
{
"status": "affected",
"version": "21.6.4"
},
{
"status": "affected",
"version": "21.7.8"
},
{
"status": "affected",
"version": "21.4.15"
},
{
"status": "affected",
"version": "21.4.11"
},
{
"status": "affected",
"version": "21.8.6"
},
{
"status": "affected",
"version": "21.8.ca1"
},
{
"status": "affected",
"version": "21.9.6"
},
{
"status": "affected",
"version": "21.4.7"
},
{
"status": "affected",
"version": "21.11.0"
},
{
"status": "affected",
"version": "21.11.1"
},
{
"status": "affected",
"version": "21.5.7"
},
{
"status": "affected",
"version": "6.2.b4"
},
{
"status": "affected",
"version": "21.7.7"
},
{
"status": "affected",
"version": "21.6.b14"
},
{
"status": "affected",
"version": "21.6.b13"
},
{
"status": "affected",
"version": "21.6.b15"
},
{
"status": "affected",
"version": "21.7.6"
},
{
"status": "affected",
"version": "21.6.6"
},
{
"status": "affected",
"version": "21.9.5"
},
{
"status": "affected",
"version": "21.5.9"
},
{
"status": "affected",
"version": "21.5.14"
},
{
"status": "affected",
"version": "21.8.8"
},
{
"status": "affected",
"version": "21.5.12"
},
{
"status": "affected",
"version": "21.8.0"
},
{
"status": "affected",
"version": "21.5.8"
},
{
"status": "affected",
"version": "21.7.10"
},
{
"status": "affected",
"version": "6.2.5"
},
{
"status": "affected",
"version": "21.8.9"
},
{
"status": "affected",
"version": "6.4.0"
},
{
"status": "affected",
"version": "21.6.b17"
},
{
"status": "affected",
"version": "21.6.b16"
},
{
"status": "affected",
"version": "21.6.11"
},
{
"status": "affected",
"version": "21.10.1"
},
{
"status": "affected",
"version": "21.4.10"
},
{
"status": "affected",
"version": "21.4.14"
},
{
"status": "affected",
"version": "21.6.9"
},
{
"status": "affected",
"version": "21.6.7"
},
{
"status": "affected",
"version": "21.12.3"
},
{
"status": "affected",
"version": "21.9.1"
},
{
"status": "affected",
"version": "21.9.2"
},
{
"status": "affected",
"version": "21.12.0"
},
{
"status": "affected",
"version": "21.7.12"
},
{
"status": "affected",
"version": "21.10.2"
},
{
"status": "affected",
"version": "21.8.7"
},
{
"status": "affected",
"version": "21.8.2"
},
{
"status": "affected",
"version": "21.5.6"
},
{
"status": "affected",
"version": "21.5.10"
},
{
"status": "affected",
"version": "21.6.13"
},
{
"status": "affected",
"version": "21.6.b18"
},
{
"status": "affected",
"version": "21.7.11"
},
{
"status": "affected",
"version": "21.7.1"
},
{
"status": "affected",
"version": "21.9.3"
},
{
"status": "affected",
"version": "21.7.0"
},
{
"status": "affected",
"version": "21.5.11"
},
{
"status": "affected",
"version": "21.5.17"
},
{
"status": "affected",
"version": "21.5.4"
},
{
"status": "affected",
"version": "21.7.3"
},
{
"status": "affected",
"version": "21.4.1"
},
{
"status": "affected",
"version": "21.4.3"
},
{
"status": "affected",
"version": "21.7.2"
},
{
"status": "affected",
"version": "21.4.5"
},
{
"status": "affected",
"version": "21.5.2"
},
{
"status": "affected",
"version": "21.6.3"
},
{
"status": "affected",
"version": "21.6.0"
},
{
"status": "affected",
"version": "21.6.2"
},
{
"status": "affected",
"version": "21.5.5"
},
{
"status": "affected",
"version": "21.4.6"
},
{
"status": "affected",
"version": "21.4.0"
},
{
"status": "affected",
"version": "21.4.2"
},
{
"status": "affected",
"version": "21.4.4"
},
{
"status": "affected",
"version": "21.7.4"
},
{
"status": "affected",
"version": "21.5.0"
},
{
"status": "affected",
"version": "21.5.1"
},
{
"status": "affected",
"version": "21.6.1"
},
{
"status": "affected",
"version": "21.5.3"
},
{
"status": "affected",
"version": "21.19.n14"
},
{
"status": "affected",
"version": "21.25.3"
},
{
"status": "affected",
"version": "21.23.11"
},
{
"status": "affected",
"version": "21.23.b3"
},
{
"status": "affected",
"version": "21.20.c22"
},
{
"status": "affected",
"version": "21.20.27"
},
{
"status": "affected",
"version": "21.23.n7"
},
{
"status": "affected",
"version": "21.20.26"
},
{
"status": "affected",
"version": "21.23.12"
},
{
"status": "affected",
"version": "21.20.28"
},
{
"status": "affected",
"version": "21.22.ua5"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\r\n\r\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\r\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\r\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-489",
"description": "Active Debug Code",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T15:59:07.107Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-rcm-vuls-7cS3Nuq",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO"
}
],
"source": {
"advisory": "cisco-sa-rcm-vuls-7cS3Nuq",
"defects": [
"CSCvy80878"
],
"discovery": "INTERNAL"
},
"title": "Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2022-20649",
"datePublished": "2024-11-15T15:59:07.107Z",
"dateReserved": "2021-11-02T13:28:29.035Z",
"dateUpdated": "2024-11-15T19:41:58.793Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.