CVE-2018-0453 — OS Command Injection in Cisco Firesight System Software

CWE-264 CWE-78 — OS Command Injection4 documents4 sources

Severity

8.2HIGHNVD

EPSS

0.1%

top 67.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firesight System Software Cisco Firepower Threat Defense

Timeline

PublishedOct 5

Latest updateMay 13

Description

A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) sensors could allow an authenticated, local attacker to execute specific CLI commands with root privileges on the Cisco Firepower Management Center (FMC), or through Cisco FMC on other Firepower sensors and devices that are controlled by the same Cisco FMC. To send the commands, the attacker must have root privileges for at least one affected sensor…

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 1.5 | Impact: 6.0

Affected Packages2 packages

▶NVDcisco/firepower_threat_defense7 versions+6

▶CVEListV5cisco/cisco_firesight_system_softwaren/a

🔴Vulnerability Details

GHSA

GHSA-8584-j2xq-qr4w: A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) s↗2022-05-13

▶

CVEList

Cisco Firepower Management Center and Firepower System Software Sourcefire Tunnel Control Channel Command Execution Vulnerability↗2018-10-05

▶

📋Vendor Advisories

Cisco

Cisco Firepower Management Center and Firepower System Software Sourcefire Tunnel Control Channel Command Execution Vulnerability↗2018-10-03

▶