CVE-2022-20649 : A vulnerability in Cisco RCM for Cisco StarOS Software could allow an

A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user. The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

Published 2024-11-15 15:59:07

Updated 2024-11-18 17:11:57

Source Cisco Systems, Inc.

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2022-20649

Please log in to view affected product information.

Exploit prediction scoring system (EPSS) score for CVE-2022-20649

EPSS FAQ

0.40%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 60 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-20649

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
8.1	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	2.2	5.9	Cisco Systems, Inc.	2024-11-15
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-20649

CWE-489 Active Debug Code

The product is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.
Assigned by:
- d1c1063e-7a18-46af-9102-31f8928bc633 (Primary)
- ykramarz@cisco.com (Primary)

References for CVE-2022-20649

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe

Cisco Webex Meetings Cross-Site Scripting Vulnerability

CVEs referencing this url
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO

Cisco Tetration Command Injection Vulnerability

CVEs referencing this url
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq

Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-20649

Products affected by CVE-2022-20649

Exploit prediction scoring system (EPSS) score for CVE-2022-20649

CVSS scores for CVE-2022-20649

CWE ids for CVE-2022-20649

References for CVE-2022-20649