CVE-2017-6748Injection in Cisco WEB Security Appliance

CWE-74InjectionCWE-2644 documents4 sources
Severity
6.7MEDIUMNVD
EPSS
0.3%
top 45.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cisco WEB Security ApplianceCisco WEB Security ApplianceCisco WEB Security Virtual Appliance
Timeline
PublishedJul 25
Latest updateMay 13

Description

A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to perform command injection and elevate privileges to root. The attacker must authenticate with valid operator-level or administrator-level credentials. Affected Products: virtual and hardware versions of Cisco Web Security Appliance (WSA). More Information: CSCvd88855. Known Affected Releases: 10.1.0-204. Known Fixed Releases: 10.5.1-270 10.1.1-234.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages3 packages

NVDcisco/web_security_appliance10 versions+9
CVEListV5cisco/cisco_web_security_applianceCisco Web Security Appliance

🔴Vulnerability Details

2
GHSA
GHSA-r5r7-8mwx-vxq9: A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to perform command injection2022-05-13
CVEList
CVE-2017-6748: A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to perform command injection2017-07-25

📋Vendor Advisories

1
Cisco
Cisco Web Security Appliance Authenticated Command Injection and Privilege Escalation Vulnerability2017-07-19
CVE-2017-6748 — Injection in Cisco | cvebase