CVE-2021-1256 — Files or Directories Accessible to External Parties in Cisco Firepower Threat Defense

CWE-552 — Files or Directories Accessible to External Parties CWE-22 — Path Traversal4 documents4 sources

Severity

6.0MEDIUMNVD

EPSS

0.0%

top 92.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense Cisco Firepower Threat Defense Software

Timeline

PublishedApr 29

Latest updateMay 24

Description

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause system instability if important system files are overwritten. This vulnerability is due to insufficient validation of user input for the file path in a specific CLI command. An attacker could exploit this vulnerability by logging in to a targete…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:HExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_softwaren/a

▶NVDcisco/firepower_threat_defense6.6.0 — 6.6.4+1

🔴Vulnerability Details

GHSA

GHSA-x8wc-vwc8-w26v: A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the fil↗2022-05-24

▶

CVEList

Cisco Firepower Threat Defense Software Command File Overwrite Vulnerability↗2021-04-29

▶

📋Vendor Advisories

Cisco

Cisco Firepower Threat Defense Software Command File Overwrite Vulnerability↗2021-04-28

▶