CVE-2020-3253 — Improper Access Control in Cisco Firepower Threat Defense

CWE-284 — Improper Access Control5 documents5 sources

Severity

6.7MEDIUMNVD

EPSS

0.0%

top 89.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense Cisco Firepower Threat Defense Software

Timeline

PublishedMay 6

Latest updateMay 24

Description

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by enabling the support tunnel, setting a key, and deriving the tunnel password. A successful exploit could allow the attacker to run any system command w…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_softwaren/a

▶NVDcisco/firepower_threat_defense< 6.5.0

🔴Vulnerability Details

GHSA

GHSA-v33g-rjxr-6hm4: A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to access↗2022-05-24

▶

CVEList

Cisco Firepower Threat Defense Software Shell Access Vulnerability↗2020-05-06

▶

📋Vendor Advisories

Cisco

Cisco Firepower Threat Defense Software Shell Access Vulnerability↗2020-05-06

▶

Oracle

Oracle Oracle Communications Applications Risk Matrix: Admin Console (Groovy) — CVE-2015-3253↗2020-04-15

▶