Vulnerability-Lookup

CVE-2024-20472 (GCVE-0-2024-20472)

Vulnerability from cvelistv5 – Published: 2024-10-23 17:50 – Updated: 2024-10-23 21:00

Summary

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges.

Severity ?

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CWE

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Assigner

cisco

References

URL

Tags

https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Firepower Management Center	Affected: 7.3.0 Affected: 7.3.1 Affected: 7.3.1.1 Affected: 7.3.1.2 Affected: 7.4.0 Affected: 7.4.1 Affected: 7.4.1.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "firepower_management_center",
            "vendor": "cisco",
            "versions": [
              {
                "status": "affected",
                "version": "7.3.0"
              },
              {
                "status": "affected",
                "version": "7.3.1"
              },
              {
                "status": "affected",
                "version": "7.3.1.1"
              },
              {
                "status": "affected",
                "version": "7.3.1.2"
              },
              {
                "status": "affected",
                "version": "7.4.0"
              },
              {
                "status": "affected",
                "version": "7.4.1"
              },
              {
                "status": "affected",
                "version": "7.4.1.1"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-20472",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-23T20:59:33.004098Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-23T21:00:40.915Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Firepower Management Center",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "7.3.0"
            },
            {
              "status": "affected",
              "version": "7.3.1"
            },
            {
              "status": "affected",
              "version": "7.3.1.1"
            },
            {
              "status": "affected",
              "version": "7.3.1.2"
            },
            {
              "status": "affected",
              "version": "7.4.0"
            },
            {
              "status": "affected",
              "version": "7.4.1"
            },
            {
              "status": "affected",
              "version": "7.4.1.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.\r\n\r\nThis vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-89",
              "description": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-10-23T17:50:13.687Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-fmc-sql-inj-LOYAFcfq",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq"
        }
      ],
      "source": {
        "advisory": "cisco-sa-fmc-sql-inj-LOYAFcfq",
        "defects": [
          "CSCwi78598"
        ],
        "discovery": "EXTERNAL"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2024-20472",
    "datePublished": "2024-10-23T17:50:13.687Z",
    "dateReserved": "2023-11-08T15:08:07.681Z",
    "dateUpdated": "2024-10-23T21:00:40.915Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-20472\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-23T20:59:33.004098Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*\"], \"vendor\": \"cisco\", \"product\": \"firepower_management_center\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.3.0\"}, {\"status\": \"affected\", \"version\": \"7.3.1\"}, {\"status\": \"affected\", \"version\": \"7.3.1.1\"}, {\"status\": \"affected\", \"version\": \"7.3.1.2\"}, {\"status\": \"affected\", \"version\": \"7.4.0\"}, {\"status\": \"affected\", \"version\": \"7.4.1\"}, {\"status\": \"affected\", \"version\": \"7.4.1.1\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-23T21:00:36.373Z\"}}], \"cna\": {\"source\": {\"defects\": [\"CSCwi78598\"], \"advisory\": \"cisco-sa-fmc-sql-inj-LOYAFcfq\", \"discovery\": \"EXTERNAL\"}, \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Firepower Management Center\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.3.0\"}, {\"status\": \"affected\", \"version\": \"7.3.1\"}, {\"status\": \"affected\", \"version\": \"7.3.1.1\"}, {\"status\": \"affected\", \"version\": \"7.3.1.2\"}, {\"status\": \"affected\", \"version\": \"7.4.0\"}, {\"status\": \"affected\", \"version\": \"7.4.1\"}, {\"status\": \"affected\", \"version\": \"7.4.1.1\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.\"}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq\", \"name\": \"cisco-sa-fmc-sql-inj-LOYAFcfq\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.\\r\\n\\r\\nThis vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"cwe\", \"cweId\": \"CWE-89\", \"description\": \"Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2024-10-23T17:50:13.687Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-20472\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-23T21:00:40.915Z\", \"dateReserved\": \"2023-11-08T15:08:07.681Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2024-10-23T17:50:13.687Z\", \"assignerShortName\": \"cisco\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CNVD-2024-44495

Vulnerability from cnvd - Published: 2024-11-06

Title

Cisco Secure Firewall Management Center SQL注入漏洞

Description

Cisco Secure Firewall Management Center（FMC）是一个全面、集中化的管理平台，用于Cisco的网络安全解决方案。它提供了对防火墙、应用控制、入侵防御、URL过滤和高级恶意软件防护的统一管理。 Cisco Secure Firewall Management Center存在SQL注入漏洞。该漏洞是由于基于Web的管理界面未充分验证用户输入。攻击者可以利用该漏洞通过以管理员身份向应用程序进行身份验证并向受影响的系统发送精心编制的SQL查询来获取未经授权的数据并更改系统。

Severity

高

Patch Name

Cisco Secure Firewall Management Center SQL注入漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq

Reference

https://nvd.nist.gov/vuln/detail/CVE-2024-20472

Impacted products

Name
Cisco Cisco Secure Firewall Management Center

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-20472",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-20472"
    }
  },
  "description": "Cisco Secure Firewall Management Center\uff08FMC\uff09\u662f\u4e00\u4e2a\u5168\u9762\u3001\u96c6\u4e2d\u5316\u7684\u7ba1\u7406\u5e73\u53f0\uff0c\u7528\u4e8eCisco\u7684\u7f51\u7edc\u5b89\u5168\u89e3\u51b3\u65b9\u6848\u3002\u5b83\u63d0\u4f9b\u4e86\u5bf9\u9632\u706b\u5899\u3001\u5e94\u7528\u63a7\u5236\u3001\u5165\u4fb5\u9632\u5fa1\u3001URL\u8fc7\u6ee4\u548c\u9ad8\u7ea7\u6076\u610f\u8f6f\u4ef6\u9632\u62a4\u7684\u7edf\u4e00\u7ba1\u7406\u3002\n\nCisco Secure Firewall Management Center\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u57fa\u4e8eWeb\u7684\u7ba1\u7406\u754c\u9762\u672a\u5145\u5206\u9a8c\u8bc1\u7528\u6237\u8f93\u5165\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u4ee5\u7ba1\u7406\u5458\u8eab\u4efd\u5411\u5e94\u7528\u7a0b\u5e8f\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u5e76\u5411\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u53d1\u9001\u7cbe\u5fc3\u7f16\u5236\u7684SQL\u67e5\u8be2\u6765\u83b7\u53d6\u672a\u7ecf\u6388\u6743\u7684\u6570\u636e\u5e76\u66f4\u6539\u7cfb\u7edf\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0:\r\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-44495",
  "openTime": "2024-11-06",
  "patchDescription": "Cisco Secure Firewall Management Center\uff08FMC\uff09\u662f\u4e00\u4e2a\u5168\u9762\u3001\u96c6\u4e2d\u5316\u7684\u7ba1\u7406\u5e73\u53f0\uff0c\u7528\u4e8eCisco\u7684\u7f51\u7edc\u5b89\u5168\u89e3\u51b3\u65b9\u6848\u3002\u5b83\u63d0\u4f9b\u4e86\u5bf9\u9632\u706b\u5899\u3001\u5e94\u7528\u63a7\u5236\u3001\u5165\u4fb5\u9632\u5fa1\u3001URL\u8fc7\u6ee4\u548c\u9ad8\u7ea7\u6076\u610f\u8f6f\u4ef6\u9632\u62a4\u7684\u7edf\u4e00\u7ba1\u7406\u3002\r\n\r\nCisco Secure Firewall Management Center\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u57fa\u4e8eWeb\u7684\u7ba1\u7406\u754c\u9762\u672a\u5145\u5206\u9a8c\u8bc1\u7528\u6237\u8f93\u5165\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u4ee5\u7ba1\u7406\u5458\u8eab\u4efd\u5411\u5e94\u7528\u7a0b\u5e8f\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u5e76\u5411\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u53d1\u9001\u7cbe\u5fc3\u7f16\u5236\u7684SQL\u67e5\u8be2\u6765\u83b7\u53d6\u672a\u7ecf\u6388\u6743\u7684\u6570\u636e\u5e76\u66f4\u6539\u7cfb\u7edf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Secure Firewall Management Center SQL\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Cisco Secure Firewall Management Center"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2024-20472",
  "serverity": "\u9ad8",
  "submitTime": "2024-10-25",
  "title": "Cisco Secure Firewall Management Center SQL\u6ce8\u5165\u6f0f\u6d1e"
}

FKIE_CVE-2024-20472

Vulnerability from fkie_nvd - Published: 2024-10-23 18:15 - Updated: 2024-11-01 18:22

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Summary

References

	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	secure_firewall_management_center	7.3.0
cisco	secure_firewall_management_center	7.3.1
cisco	secure_firewall_management_center	7.3.1.1
cisco	secure_firewall_management_center	7.3.1.2
cisco	secure_firewall_management_center	7.4.0
cisco	secure_firewall_management_center	7.4.1
cisco	secure_firewall_management_center	7.4.1.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D401072-6709-4921-8918-720F28D61E24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0EA3467-4205-4C41-AF24-689330F7396B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BE94E38-5F29-4AE1-8129-7F7582C2CC75",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "FEF603AD-D69B-4DD8-A7F4-6BEFD355EF29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6BD1665-7824-4D98-A930-432CBDA4EAD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8056E69-22FA-4935-A576-916805D90C62",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A80BBBE-DB5E-460A-8621-6E28D2BD6E44",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.\r\n\r\nThis vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en la interfaz de administraci\u00f3n basada en web del software Cisco Secure Firewall Management Center (FMC) podr\u00eda permitir que un atacante remoto autenticado realice ataques de inyecci\u00f3n SQL en un sistema afectado. Esta vulnerabilidad existe porque la interfaz de administraci\u00f3n basada en web no valida adecuadamente la entrada del usuario. Un atacante podr\u00eda aprovechar esta vulnerabilidad autentic\u00e1ndose en la aplicaci\u00f3n como administrador y enviando consultas SQL manipuladas a un sistema afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante obtener datos no autorizados de la base de datos y realizar cambios en el sistema. Para aprovechar esta vulnerabilidad, un atacante necesitar\u00eda privilegios de nivel de administrador."
    }
  ],
  "id": "CVE-2024-20472",
  "lastModified": "2024-11-01T18:22:41.030",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.2,
        "source": "psirt@cisco.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.2,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-10-23T18:15:11.007",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-89"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-89"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2024-20472

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2024-20472

Aliases

CVE-2024-20472

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2024-20472",
    "id": "GSD-2024-20472"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-20472"
      ],
      "id": "GSD-2024-20472",
      "modified": "2023-12-13T01:21:42.893088Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2024-20472",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

CVE-2024-20472

Vulnerability from fstec - Published: 23.10.2024

Title

Уязвимость веб-интерфейса управления программного обеспечения администрирования сети Cisco Secure Firewall Management Center (ранее Cisco Firepower Management Center), связанная с непринятием мер по защите структуры SQL-запроса, позволяющая нарушителю выполнить произвольный код

Description

Уязвимость веб-интерфейса управления программного обеспечения администрирования сети Cisco Secure Firewall Management Center (ранее Cisco Firepower Management Center) связана с непринятием мер по защите структуры SQL-запроса. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код

Severity ?


                    
                      AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Vendor

Cisco Systems Inc.

Software Name

Cisco Secure Firewall Management Center

Software Version

06.02.2003 (Cisco Secure Firewall Management Center), 6.2.3.1 (Cisco Secure Firewall Management Center), 6.2.3.2 (Cisco Secure Firewall Management Center), 6.2.3.3 (Cisco Secure Firewall Management Center), 6.2.3.4 (Cisco Secure Firewall Management Center), 6.2.3.5 (Cisco Secure Firewall Management Center), 6.2.3.6 (Cisco Secure Firewall Management Center), 6.2.3.7 (Cisco Secure Firewall Management Center), 6.2.3.9 (Cisco Secure Firewall Management Center), 6.2.3.10 (Cisco Secure Firewall Management Center), 6.2.3.11 (Cisco Secure Firewall Management Center), 6.2.3.12 (Cisco Secure Firewall Management Center), 6.2.3.13 (Cisco Secure Firewall Management Center), 6.2.3.14 (Cisco Secure Firewall Management Center), 6.2.3.15 (Cisco Secure Firewall Management Center), 6.2.3.8 (Cisco Secure Firewall Management Center), 6.2.3.16 (Cisco Secure Firewall Management Center), 6.2.3.17 (Cisco Secure Firewall Management Center), 6.2.3.18 (Cisco Secure Firewall Management Center), 06.04.2000 (Cisco Secure Firewall Management Center), 6.4.0.1 (Cisco Secure Firewall Management Center), 6.4.0.3 (Cisco Secure Firewall Management Center), 6.4.0.2 (Cisco Secure Firewall Management Center), 6.4.0.4 (Cisco Secure Firewall Management Center), 6.4.0.5 (Cisco Secure Firewall Management Center), 6.4.0.6 (Cisco Secure Firewall Management Center), 6.4.0.7 (Cisco Secure Firewall Management Center), 6.4.0.8 (Cisco Secure Firewall Management Center), 6.4.0.9 (Cisco Secure Firewall Management Center), 6.4.0.10 (Cisco Secure Firewall Management Center), 6.4.0.11 (Cisco Secure Firewall Management Center), 6.4.0.12 (Cisco Secure Firewall Management Center), 6.4.0.13 (Cisco Secure Firewall Management Center), 6.4.0.14 (Cisco Secure Firewall Management Center), 6.4.0.15 (Cisco Secure Firewall Management Center), 6.4.0.16 (Cisco Secure Firewall Management Center), 6.4.0.17 (Cisco Secure Firewall Management Center), 6.4.0.18 (Cisco Secure Firewall Management Center), 06.06.2000 (Cisco Secure Firewall Management Center), 6.6.0.1 (Cisco Secure Firewall Management Center), 06.06.2001 (Cisco Secure Firewall Management Center), 06.06.2003 (Cisco Secure Firewall Management Center), 06.06.2004 (Cisco Secure Firewall Management Center), 06.06.2005 (Cisco Secure Firewall Management Center), 6.6.5.1 (Cisco Secure Firewall Management Center), 6.6.5.2 (Cisco Secure Firewall Management Center), 06.06.2007 (Cisco Secure Firewall Management Center), 6.6.7.1 (Cisco Secure Firewall Management Center), 6.6.7.2 (Cisco Secure Firewall Management Center), 06.07.2000 (Cisco Secure Firewall Management Center), 6.7.0.1 (Cisco Secure Firewall Management Center), 6.7.0.2 (Cisco Secure Firewall Management Center), 6.7.0.3 (Cisco Secure Firewall Management Center), 7.0.0 (Cisco Secure Firewall Management Center), 7.0.0.1 (Cisco Secure Firewall Management Center), 7.0.1 (Cisco Secure Firewall Management Center), 7.0.1.1 (Cisco Secure Firewall Management Center), 7.0.2 (Cisco Secure Firewall Management Center), 7.0.2.1 (Cisco Secure Firewall Management Center), 7.0.3 (Cisco Secure Firewall Management Center), 7.0.4 (Cisco Secure Firewall Management Center), 7.0.5 (Cisco Secure Firewall Management Center), 7.0.6 (Cisco Secure Firewall Management Center), 7.0.6.1 (Cisco Secure Firewall Management Center), 7.0.6.2 (Cisco Secure Firewall Management Center), 07.01.2000 (Cisco Secure Firewall Management Center), 7.1.0.1 (Cisco Secure Firewall Management Center), 7.1.0.2 (Cisco Secure Firewall Management Center), 7.1.0.3 (Cisco Secure Firewall Management Center), 07.02.2000 (Cisco Secure Firewall Management Center), 07.02.2001 (Cisco Secure Firewall Management Center), 07.02.2002 (Cisco Secure Firewall Management Center), 7.2.0.1 (Cisco Secure Firewall Management Center), 07.02.2003 (Cisco Secure Firewall Management Center), 7.2.3.1 (Cisco Secure Firewall Management Center), 07.02.2004 (Cisco Secure Firewall Management Center), 7.2.4.1 (Cisco Secure Firewall Management Center), 07.02.2005 (Cisco Secure Firewall Management Center), 7.2.5.1 (Cisco Secure Firewall Management Center), 07.02.2006 (Cisco Secure Firewall Management Center), 07.02.2007 (Cisco Secure Firewall Management Center), 7.2.5.2 (Cisco Secure Firewall Management Center), 07.02.2008 (Cisco Secure Firewall Management Center), 7.2.8.1 (Cisco Secure Firewall Management Center), 07.03.2000 (Cisco Secure Firewall Management Center), 07.03.2001 (Cisco Secure Firewall Management Center), 7.3.1.1 (Cisco Secure Firewall Management Center), 7.3.1.2 (Cisco Secure Firewall Management Center), 07.04.2000 (Cisco Secure Firewall Management Center), 07.04.2001 (Cisco Secure Firewall Management Center), 7.4.1.1 (Cisco Secure Firewall Management Center)

Possible Mitigations

Использование рекомендаций производителя: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq

Reference

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq

CWE

CWE-89

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:S/C:C/I:C/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "06.02.2003 (Cisco Secure Firewall Management Center), 6.2.3.1 (Cisco Secure Firewall Management Center), 6.2.3.2 (Cisco Secure Firewall Management Center), 6.2.3.3 (Cisco Secure Firewall Management Center), 6.2.3.4 (Cisco Secure Firewall Management Center), 6.2.3.5 (Cisco Secure Firewall Management Center), 6.2.3.6 (Cisco Secure Firewall Management Center), 6.2.3.7 (Cisco Secure Firewall Management Center), 6.2.3.9 (Cisco Secure Firewall Management Center), 6.2.3.10 (Cisco Secure Firewall Management Center), 6.2.3.11 (Cisco Secure Firewall Management Center), 6.2.3.12 (Cisco Secure Firewall Management Center), 6.2.3.13 (Cisco Secure Firewall Management Center), 6.2.3.14 (Cisco Secure Firewall Management Center), 6.2.3.15 (Cisco Secure Firewall Management Center), 6.2.3.8 (Cisco Secure Firewall Management Center), 6.2.3.16 (Cisco Secure Firewall Management Center), 6.2.3.17 (Cisco Secure Firewall Management Center), 6.2.3.18 (Cisco Secure Firewall Management Center), 06.04.2000 (Cisco Secure Firewall Management Center), 6.4.0.1 (Cisco Secure Firewall Management Center), 6.4.0.3 (Cisco Secure Firewall Management Center), 6.4.0.2 (Cisco Secure Firewall Management Center), 6.4.0.4 (Cisco Secure Firewall Management Center), 6.4.0.5 (Cisco Secure Firewall Management Center), 6.4.0.6 (Cisco Secure Firewall Management Center), 6.4.0.7 (Cisco Secure Firewall Management Center), 6.4.0.8 (Cisco Secure Firewall Management Center), 6.4.0.9 (Cisco Secure Firewall Management Center), 6.4.0.10 (Cisco Secure Firewall Management Center), 6.4.0.11 (Cisco Secure Firewall Management Center), 6.4.0.12 (Cisco Secure Firewall Management Center), 6.4.0.13 (Cisco Secure Firewall Management Center), 6.4.0.14 (Cisco Secure Firewall Management Center), 6.4.0.15 (Cisco Secure Firewall Management Center), 6.4.0.16 (Cisco Secure Firewall Management Center), 6.4.0.17 (Cisco Secure Firewall Management Center), 6.4.0.18 (Cisco Secure Firewall Management Center), 06.06.2000 (Cisco Secure Firewall Management Center), 6.6.0.1 (Cisco Secure Firewall Management Center), 06.06.2001 (Cisco Secure Firewall Management Center), 06.06.2003 (Cisco Secure Firewall Management Center), 06.06.2004 (Cisco Secure Firewall Management Center), 06.06.2005 (Cisco Secure Firewall Management Center), 6.6.5.1 (Cisco Secure Firewall Management Center), 6.6.5.2 (Cisco Secure Firewall Management Center), 06.06.2007 (Cisco Secure Firewall Management Center), 6.6.7.1 (Cisco Secure Firewall Management Center), 6.6.7.2 (Cisco Secure Firewall Management Center), 06.07.2000 (Cisco Secure Firewall Management Center), 6.7.0.1 (Cisco Secure Firewall Management Center), 6.7.0.2 (Cisco Secure Firewall Management Center), 6.7.0.3 (Cisco Secure Firewall Management Center), 7.0.0 (Cisco Secure Firewall Management Center), 7.0.0.1 (Cisco Secure Firewall Management Center), 7.0.1 (Cisco Secure Firewall Management Center), 7.0.1.1 (Cisco Secure Firewall Management Center), 7.0.2 (Cisco Secure Firewall Management Center), 7.0.2.1 (Cisco Secure Firewall Management Center), 7.0.3 (Cisco Secure Firewall Management Center), 7.0.4 (Cisco Secure Firewall Management Center), 7.0.5 (Cisco Secure Firewall Management Center), 7.0.6 (Cisco Secure Firewall Management Center), 7.0.6.1 (Cisco Secure Firewall Management Center), 7.0.6.2 (Cisco Secure Firewall Management Center), 07.01.2000 (Cisco Secure Firewall Management Center), 7.1.0.1 (Cisco Secure Firewall Management Center), 7.1.0.2 (Cisco Secure Firewall Management Center), 7.1.0.3 (Cisco Secure Firewall Management Center), 07.02.2000 (Cisco Secure Firewall Management Center), 07.02.2001 (Cisco Secure Firewall Management Center), 07.02.2002 (Cisco Secure Firewall Management Center), 7.2.0.1 (Cisco Secure Firewall Management Center), 07.02.2003 (Cisco Secure Firewall Management Center), 7.2.3.1 (Cisco Secure Firewall Management Center), 07.02.2004 (Cisco Secure Firewall Management Center), 7.2.4.1 (Cisco Secure Firewall Management Center), 07.02.2005 (Cisco Secure Firewall Management Center), 7.2.5.1 (Cisco Secure Firewall Management Center), 07.02.2006 (Cisco Secure Firewall Management Center), 07.02.2007 (Cisco Secure Firewall Management Center), 7.2.5.2 (Cisco Secure Firewall Management Center), 07.02.2008 (Cisco Secure Firewall Management Center), 7.2.8.1 (Cisco Secure Firewall Management Center), 07.03.2000 (Cisco Secure Firewall Management Center), 07.03.2001 (Cisco Secure Firewall Management Center), 7.3.1.1 (Cisco Secure Firewall Management Center), 7.3.1.2 (Cisco Secure Firewall Management Center), 07.04.2000 (Cisco Secure Firewall Management Center), 07.04.2001 (Cisco Secure Firewall Management Center), 7.4.1.1 (Cisco Secure Firewall Management Center)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "23.10.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "31.10.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "31.10.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-08854",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-20472",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Cisco Secure Firewall Management Center",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0435\u0442\u0438 Cisco Secure Firewall Management Center (\u0440\u0430\u043d\u0435\u0435 Cisco Firepower Management Center), \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435\u043c \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b SQL-\u0437\u0430\u043f\u0440\u043e\u0441\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435 \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0437\u0430\u043f\u0440\u043e\u0441\u0430 SQL (\u0430\u0442\u0430\u043a\u0438 \u0442\u0438\u043f\u0430 \\\"\u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435  SQL\\\") (CWE-89)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0435\u0442\u0438 Cisco Secure Firewall Management Center (\u0440\u0430\u043d\u0435\u0435 Cisco Firepower Management Center) \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435\u043c \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b SQL-\u0437\u0430\u043f\u0440\u043e\u0441\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u044b\u0445 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u0437\u0430\u0449\u0438\u0442\u044b",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-89",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}

GHSA-253G-RPHR-6H5J

Vulnerability from github – Published: 2024-10-23 18:33 – Updated: 2024-10-23 18:33

Details

This vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges.

Severity ?

6.5 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-20472"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-89"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-10-23T18:15:11Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.\n\nThis vulnerability exists because the web-based management interface does not validate user input adequately. An attacker could exploit this vulnerability by authenticating to the application as an Administrator and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to obtain unauthorized data from the database and make changes to the system. To exploit this vulnerability, an attacker would need Administrator-level privileges.",
  "id": "GHSA-253g-rphr-6h5j",
  "modified": "2024-10-23T18:33:09Z",
  "published": "2024-10-23T18:33:09Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-20472"
    },
    {
      "type": "WEB",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-inj-LOYAFcfq"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-20472 (GCVE-0-2024-20472)

CNVD-2024-44495

FKIE_CVE-2024-20472

GSD-2024-20472

CVE-2024-20472

GHSA-253G-RPHR-6H5J

Tags

Sightings

Nomenclature