Vulnerability Details : CVE-2022-20965
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to take privileges actions within the web-based management interface.
This vulnerability is due to improper access control on a feature within the web-based management interface of the affected system. An attacker could exploit this vulnerability by accessing features through direct requests, bypassing checks within the application. A successful exploit could allow the attacker to take privileged actions within the web-based management interface that should be otherwise restricted.
{{value}} ["%7b%7bvalue%7d%7d"])}]]
Products affected by CVE-2022-20965
- cpe:2.3:a:cisco:identity_services_engine:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:-:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch7:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch8:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:-:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:-:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch9:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch10:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.1:-:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.1:patch1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch7:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.1:patch3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.2:-:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch11:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:3.1:patch4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch12:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-20965
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 32 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-20965
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.4
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
2.8
|
2.5
|
NIST | |
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
2.8
|
1.4
|
Cisco Systems, Inc. |
CWE ids for CVE-2022-20965
-
The product does not conform to the API requirements for a function call that requires extra privileges. This could allow attackers to gain privileges by causing the function to be called incorrectly.Assigned by: ykramarz@cisco.com (Secondary)
References for CVE-2022-20965
-
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-7Q4TNYUx
Cisco Identity Services Engine VulnerabilitiesVendor Advisory
-
https://yoroi.company/en/research/cve-advisory-full-disclosure-cisco-ise-multiple-vulnerabilities-rce-with-1-click/
CVE Advisory - Full Disclosure Cisco ISE Multiple Vulnerabilities - RCE with 1-Click - Yoroi
Jump to