CVE-2022-20829

Cisco Adaptive Security Device Manager and Adaptive Security Appliance Software Client-side Arbitrary Code Execution Vulnerability

Severity Score

7.2

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the validation of those images by Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker with administrative privileges to upload an ASDM image that contains malicious code to a device that is running Cisco ASA Software. This vulnerability is due to insufficient validation of the authenticity of an ASDM image during its installation on a device that is running Cisco ASA Software. An attacker could exploit this vulnerability by installing a crafted ASDM image on the device that is running Cisco ASA Software and then waiting for a targeted user to access that device using ASDM. A successful exploit could allow the attacker to execute arbitrary code on the machine of the targeted user with the privileges of that user on that machine. Notes: To successfully exploit this vulnerability, the attacker must have administrative privileges on the device that is running Cisco ASA Software. Potential targets are limited to users who manage the same device that is running Cisco ASA Software using ASDM. Cisco has released and will release software updates that address this vulnerability.

Una vulnerabilidad en el empaquetado de las imágenes de Cisco Adaptive Security Device Manager (ASDM) y en la comprobación de dichas imágenes por parte del software Cisco Adaptive Security Appliance (ASA) podría permitir a un atacante remoto autenticado con privilegios administrativos cargar una imagen ASDM que contenga código malicioso en un dispositivo que esté ejecutando el software Cisco ASA. Esta vulnerabilidad es debido a que noes comprobada suficientemente la autenticidad de una imagen ASDM durante su instalación en un dispositivo que ejecuta el software Cisco ASA. Un atacante podría explotar esta vulnerabilidad al instalar una imagen ASDM diseñada en el dispositivo que está ejecutando el software Cisco ASA y luego esperar a que un usuario objetivo acceda a ese dispositivo utilizando ASDM. Una explotación con éxito podría permitir al atacante ejecutar código arbitrario en la máquina del usuario objetivo con los privilegios de ese usuario en esa máquina. Notas: Para explotar con éxito esta vulnerabilidad, el atacante debe tener privilegios administrativos en el dispositivo que está ejecutando el software Cisco ASA. Los objetivos potenciales son limitados a usuarios que administran el mismo dispositivo que ejecuta el software Cisco ASA mediante ASDM. Cisco ha publicado y publicará actualizaciones de software que abordan esta vulnerabilidad

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2021-11-02 CVE Reserved
2022-06-24 CVE Published
2024-09-13 EPSS Updated
2024-11-01 CVE Updated
2024-11-01 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-345: Insufficient Verification of Data Authenticity

CAPEC

References (3)

URL	Tag	Source

URL	Date	SRC
https://github.com/jbaines-r7/theway	2024-11-01
https://www.rapid7.com/blog/post/2022/08/11/rapid7-discovered-vulnerabilities-in-cisco-asa-asdm-and-firepower-services-software	2024-11-01

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-asdm-sig-NPKvwDjm	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"	Isa 3000 Firmware Search vendor "Cisco" for product "Isa 3000 Firmware"	< 9.18.2 Search vendor "Cisco" for product "Isa 3000 Firmware" and version " < 9.18.2"	-	Affected	in	Cisco Search vendor "Cisco"	Isa 3000 Search vendor "Cisco" for product "Isa 3000"	-	-	Safe
Cisco Search vendor "Cisco"	Asa 5585-x Firmware Search vendor "Cisco" for product "Asa 5585-x Firmware"	< 9.18.2 Search vendor "Cisco" for product "Asa 5585-x Firmware" and version " < 9.18.2"	-	Affected	in	Cisco Search vendor "Cisco"	Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x"	-	-	Safe
Cisco Search vendor "Cisco"	Asa 5512-x Firmware Search vendor "Cisco" for product "Asa 5512-x Firmware"	< 9.18.2 Search vendor "Cisco" for product "Asa 5512-x Firmware" and version " < 9.18.2"	-	Affected	in	Cisco Search vendor "Cisco"	Asa 5512-x Search vendor "Cisco" for product "Asa 5512-x"	-	-	Safe
Cisco Search vendor "Cisco"	Asa 5515-x Firmware Search vendor "Cisco" for product "Asa 5515-x Firmware"	< 9.18.2 Search vendor "Cisco" for product "Asa 5515-x Firmware" and version " < 9.18.2"	-	Affected	in	Cisco Search vendor "Cisco"	Asa 5515-x Search vendor "Cisco" for product "Asa 5515-x"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 1010 Search vendor "Cisco" for product "Firepower 1010"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 1120 Search vendor "Cisco" for product "Firepower 1120"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 1140 Search vendor "Cisco" for product "Firepower 1140"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 1150 Search vendor "Cisco" for product "Firepower 1150"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 2110 Search vendor "Cisco" for product "Firepower 2110"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 2120 Search vendor "Cisco" for product "Firepower 2120"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 2130 Search vendor "Cisco" for product "Firepower 2130"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 2140 Search vendor "Cisco" for product "Firepower 2140"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4110 Search vendor "Cisco" for product "Firepower 4110"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4112 Search vendor "Cisco" for product "Firepower 4112"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4115 Search vendor "Cisco" for product "Firepower 4115"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4120 Search vendor "Cisco" for product "Firepower 4120"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4125 Search vendor "Cisco" for product "Firepower 4125"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4140 Search vendor "Cisco" for product "Firepower 4140"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4145 Search vendor "Cisco" for product "Firepower 4145"	-	-	Safe
Cisco Search vendor "Cisco"	Adaptive Security Device Manager Search vendor "Cisco" for product "Adaptive Security Device Manager"	< 7.18.1.150 Search vendor "Cisco" for product "Adaptive Security Device Manager" and version " < 7.18.1.150"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 9300 Search vendor "Cisco" for product "Firepower 9300"	-	-	Safe