CVE-2021-34762 | ByteOS Network

Vulnerability Details :

CVE-2021-34762

Assigner-cisco

Assigner Org ID-d1c1063e-7a18-46af-9102-31f8928bc633

Published At-27 Oct, 2021 | 18:55

Updated At-07 Nov, 2024 | 21:44

Cisco Firepower Management Center Software Authenticated Directory Traversal Vulnerability

A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to perform a directory traversal attack on an affected device. The attacker would require valid device credentials. The vulnerability is due to insufficient input validation of the HTTPS URL by the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTPS request that contains directory traversal character sequences to an affected device. A successful exploit could allow the attacker to read or write arbitrary files on the device.

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:cisco

Assigner Org ID:d1c1063e-7a18-46af-9102-31f8928bc633

Published At:27 Oct, 2021 | 18:55

Updated At:07 Nov, 2024 | 21:44

▼CVE Numbering Authority (CNA)

Cisco Firepower Management Center Software Authenticated Directory Traversal Vulnerability

A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to perform a directory traversal attack on an affected device. The attacker would require valid device credentials. The vulnerability is due to insufficient input validation of the HTTPS URL by the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTPS request that contains directory traversal character sequences to an affected device. A successful exploit could allow the attacker to read or write arbitrary files on the device.

Affected Products

Vendor

Cisco Systems, Inc.

Product

Cisco Firepower Management Center

Versions

Affected

n/a

Problem Types

Type	CWE ID	Description
CWE	CWE-26	CWE-26

Type: CWE

CWE ID: CWE-26

Description: CWE-26

Metrics

Version	Base score	Base severity	Vector
3.1	8.1	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Version: 3.1

Base score: 8.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Exploits

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

References

Hyperlink	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk	vendor-advisory x_refsource_CISCO

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk

Resource:

vendor-advisory

x_refsource_CISCO

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk	vendor-advisory x_refsource_CISCO x_transferred

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk

Resource:

vendor-advisory

x_refsource_CISCO

x_transferred

2. CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

Source:ykramarz@cisco.com

Published At:27 Oct, 2021 | 19:15

Updated At:07 Nov, 2023 | 03:36

A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to perform a directory traversal attack on an affected device. The attacker would require valid device credentials. The vulnerability is due to insufficient input validation of the HTTPS URL by the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTPS request that contains directory traversal character sequences to an affected device. A successful exploit could allow the attacker to read or write arbitrary files on the device.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	8.1	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Secondary	3.1	8.1	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Primary	2.0	5.5	MEDIUM	AV:N/AC:L/Au:S/C:P/I:P/A:N

Type: Primary

Version: 3.1

Base score: 8.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Type: Secondary

Version: 3.1

Base score: 8.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Type: Primary

Version: 2.0

Base score: 5.5

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:P/I:P/A:N

CPE Matches

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.2.3

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.2.3:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.4.0

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.4.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.5.0

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.5.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.6.1

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.1:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.6.2

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.2:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.6.3

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.3:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.6.4

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.4:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>6.7.0

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.7.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>7.0.0

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:7.0.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_management_center_virtual_appliance>>7.1.0

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:7.1.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_threat_defense>>Versions before 6.4.0.13(exclusive)

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_threat_defense>>Versions from 6.5.0(inclusive) to 6.6.5(exclusive)

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_threat_defense>>Versions from 6.7.0(inclusive) to 6.7.0.3(exclusive)

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>firepower_threat_defense>>Versions from 7.0.0(inclusive) to 7.0.1(exclusive)

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.2.3

cpe:2.3:a:cisco:sourcefire_defense_center:6.2.3:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.4.0

cpe:2.3:a:cisco:sourcefire_defense_center:6.4.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.5.0

cpe:2.3:a:cisco:sourcefire_defense_center:6.5.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.6.1

cpe:2.3:a:cisco:sourcefire_defense_center:6.6.1:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.6.2

cpe:2.3:a:cisco:sourcefire_defense_center:6.6.2:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.6.3

cpe:2.3:a:cisco:sourcefire_defense_center:6.6.3:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>6.6.4

cpe:2.3:a:cisco:sourcefire_defense_center:6.6.4:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>sourcefire_defense_center>>7.0.0

cpe:2.3:a:cisco:sourcefire_defense_center:7.0.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-22	Primary	nvd@nist.gov
CWE-26	Secondary	ykramarz@cisco.com

CWE ID: CWE-22

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-26

Type: Secondary

Source: ykramarz@cisco.com

References

Hyperlink	Source	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk	ykramarz@cisco.com	Vendor Advisory

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-dir-traversal-95UyW5tk

Source: ykramarz@cisco.com

Resource:

Vendor Advisory