Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cisco-sa-rcm-vuls-7cS3Nuq
Vulnerability from csaf_cisco
Published
2022-01-19 16:00
Modified
2022-01-19 16:00
Summary
Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities
Notes
Summary
Multiple vulnerabilities in Cisco Redundancy Configuration Manager (RCM) for Cisco StarOS Software could allow a unauthenticated, remote attacker to disclose sensitive information or execute arbitrary commands as the root user in the context of the configured container.
For more information about these vulnerabilities, see the Details ["#details"] section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
Vulnerable Products
These vulnerabilities affect Cisco RCM for Cisco StarOS Software.
For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.
For additional information about this product, see Redundancy Configuration Manager - Configuration and Administration Guide, Release 2021.01 ["https://www.cisco.com/c/dam/en/us/td/docs/wireless/ucc/upf/2021-01/RCM/ucc-5g-rcm-config-and-admin-guide_2021-01.pdf"].
Products Confirmed Not Vulnerable
Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities.
Details
The vulnerabilities are not dependent on one another. Exploitation of one of the vulnerabilities is not required to exploit the other vulnerability. In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerability.
Details about the vulnerabilities are as follows:
CVE-2022-20649: Cisco RCM Debug Remote Code Execution Vulnerability
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.
This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Bug ID(s): CSCvy80878 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80878"]
CVE IDs: CVE-2022-20649
Security Impact Rating (SIR): Critical
CVSS Base Score: 9.0
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
CVE-2022-20648: Cisco RCM Debug Information Disclosure Vulnerability
A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted.
This vulnerability exists because of a debug service that incorrectly listens to and accepts incoming connections. An attacker could exploit this vulnerability by connecting to the debug port and executing debug commands. A successful exploit could allow the attacker to view sensitive debugging information.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Bug ID(s): CSCvy80857 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80857"]
CVE IDs: CVE-2022-20648
Security Impact Rating (SIR): Medium
CVSS Base Score: 5.3
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Workarounds
There are no workarounds that address these vulnerabilities.
Fixed Software
Cisco has released free software updates ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#ssu"] that address the vulnerabilities described in this advisory. Customers with service contracts that entitle them to regular software updates should obtain security fixes through their usual update channels.
Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:
https://www.cisco.com/c/en/us/products/end-user-license-agreement.html ["https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"]
Additionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.
The Cisco Support and Downloads page ["https://www.cisco.com/c/en/us/support/index.html"] on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool.
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Customers Without Service Contracts
Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]
Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.
Fixed Releases
In the following table(s), the left column lists Cisco software releases. The right column indicates whether a release is affected by the vulnerabilities described in this advisory and the first release that includes the fix for these vulnerabilities. Customers are advised to upgrade to an appropriate fixed software release ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"] as indicated in this section.
Cisco RCM for StarOS Release First Fixed Release Earlier than 21.25 Migrate to a fixed release. 21.25 21.25.4
To download the software from the Software Center ["https://software.cisco.com/download/home"] on Cisco.com, do the following:
Click Browse all.
Choose Wireless > Mobile Internet > Platforms > Ultra Packet Core > Ultra Software.
Choose a release from the left pane.
The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
Source
These vulnerabilities were found by Tim Wadhwa-Brown and Mark Lowe of Cisco during internal security testing.
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "These vulnerabilities were found by Tim Wadhwa-Brown and Mark Lowe of Cisco during internal security testing."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities in Cisco Redundancy Configuration Manager (RCM) for Cisco StarOS Software could allow a unauthenticated, remote attacker to disclose sensitive information or execute arbitrary commands as the root user in the context of the configured container.\r\n\r\nFor more information about these vulnerabilities, see the Details [\"#details\"] section of this advisory.\r\n\r\nCisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.\r\n\r\n",
"title": "Summary"
},
{
"category": "general",
"text": "These vulnerabilities affect Cisco RCM for Cisco StarOS Software.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n\r\nFor additional information about this product, see Redundancy Configuration Manager - Configuration and Administration Guide, Release 2021.01 [\"https://www.cisco.com/c/dam/en/us/td/docs/wireless/ucc/upf/2021-01/RCM/ucc-5g-rcm-config-and-admin-guide_2021-01.pdf\"].",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by these vulnerabilities.",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "The vulnerabilities are not dependent on one another. Exploitation of one of the vulnerabilities is not required to exploit the other vulnerability. In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerability.\r\n\r\nDetails about the vulnerabilities are as follows:\r\n\r\nCVE-2022-20649: Cisco RCM Debug Remote Code Execution Vulnerability\r\n\r\nA vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.\r\n\r\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\r\n\r\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\nBug ID(s): CSCvy80878 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80878\"]\r\nCVE IDs: CVE-2022-20649\r\nSecurity Impact Rating (SIR): Critical\r\nCVSS Base Score: 9.0\r\nCVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H\r\n\r\nCVE-2022-20648: Cisco RCM Debug Information Disclosure Vulnerability\r\n\r\nA vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted.\r\n\r\nThis vulnerability exists because of a debug service that incorrectly listens to and accepts incoming connections. An attacker could exploit this vulnerability by connecting to the debug port and executing debug commands. A successful exploit could allow the attacker to view sensitive debugging information.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\nBug ID(s): CSCvy80857 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80857\"]\r\nCVE IDs: CVE-2022-20648\r\nSecurity Impact Rating (SIR): Medium\r\nCVSS Base Score: 5.3\r\nCVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"title": "Details"
},
{
"category": "general",
"text": "There are no workarounds that address these vulnerabilities.",
"title": "Workarounds"
},
{
"category": "general",
"text": "Cisco has released free software updates [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#ssu\"] that address the vulnerabilities described in this advisory. Customers with service contracts that entitle them to regular software updates should obtain security fixes through their usual update channels.\r\n\r\nCustomers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:\r\nhttps://www.cisco.com/c/en/us/products/end-user-license-agreement.html [\"https://www.cisco.com/c/en/us/products/end-user-license-agreement.html\"]\r\n\r\nAdditionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.\r\n\r\nThe Cisco Support and Downloads page [\"https://www.cisco.com/c/en/us/support/index.html\"] on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Customers Without Service Contracts\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]\r\n\r\nCustomers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n Fixed Releases\r\nIn the following table(s), the left column lists Cisco software releases. The right column indicates whether a release is affected by the vulnerabilities described in this advisory and the first release that includes the fix for these vulnerabilities. Customers are advised to upgrade to an appropriate fixed software release [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"] as indicated in this section.\r\n Cisco RCM for StarOS Release First Fixed Release Earlier than 21.25 Migrate to a fixed release. 21.25 21.25.4\r\nTo download the software from the Software Center [\"https://software.cisco.com/download/home\"] on Cisco.com, do the following:\r\n\r\nClick Browse all.\r\nChoose Wireless \u003e Mobile Internet \u003e Platforms \u003e Ultra Packet Core \u003e Ultra Software.\r\nChoose a release from the left pane.\r\n\r\nThe Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "These vulnerabilities were found by Tim Wadhwa-Brown and Mark Lowe of Cisco during internal security testing.",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@cisco.com",
"issuing_authority": "Cisco PSIRT",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "Redundancy Configuration Manager - Configuration and Administration Guide, Release 2021.01",
"url": "https://www.cisco.com/c/dam/en/us/td/docs/wireless/ucc/upf/2021-01/RCM/ucc-5g-rcm-config-and-admin-guide_2021-01.pdf"
},
{
"category": "external",
"summary": "CSCvy80878",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80878"
},
{
"category": "external",
"summary": "CSCvy80857",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvy80857"
},
{
"category": "external",
"summary": "free software updates",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#ssu"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html",
"url": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Support and Downloads page",
"url": "https://www.cisco.com/c/en/us/support/index.html"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html",
"url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
},
{
"category": "external",
"summary": "Software Center",
"url": "https://software.cisco.com/download/home"
}
],
"title": "Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities",
"tracking": {
"current_release_date": "2022-01-19T16:00:00+00:00",
"generator": {
"date": "2024-05-10T23:12:38+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-rcm-vuls-7cS3Nuq",
"initial_release_date": "2022-01-19T16:00:00+00:00",
"revision_history": [
{
"date": "2022-01-19T15:52:19+00:00",
"number": "1.0.0",
"summary": "Initial public release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_family",
"name": "Cisco Redundancy Configuration Manager",
"product": {
"name": "Cisco Redundancy Configuration Manager ",
"product_id": "CSAFPID-284723"
}
}
],
"category": "vendor",
"name": "Cisco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-20648",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvy80857"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-284723"
]
},
"release_date": "2022-01-19T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-284723"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-284723"
]
}
],
"title": "Cisco Redundancy Configuration Manager Debug Information Disclosure Vulnerability"
},
{
"cve": "CVE-2022-20649",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvy80878"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-284723"
]
},
"release_date": "2022-01-19T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-284723"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-284723"
]
}
],
"title": "Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability"
}
]
}
CVE-2022-20648 (GCVE-0-2022-20648)
Vulnerability from cvelistv5
Published
2024-11-15 15:59
Modified
2024-11-15 18:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
Summary
A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted.
This vulnerability exists because of a debug service that incorrectly listens to and accepts incoming connections. An attacker could exploit this vulnerability by connecting to the debug port and executing debug commands. A successful exploit could allow the attacker to view sensitive debugging information.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Redundancy Configuration Manager |
Version: 2021.02.0 Version: 2021.01.0 Version: 21.19.n13 Version: 21.17.19 Version: 21.18.24 Version: 21.25.0 Version: 21.15.60 Version: 21.22.11 Version: 21.20.25 Version: 21.20.21 Version: 21.24.2 Version: 21.23.10 Version: 21.22.n5 Version: 21.15.57 Version: 21.25.1 Version: 21.18.21 Version: 21.23.1 Version: 21.19.11 Version: 21.16.c16 Version: 21.23.5 Version: 21.22.4 Version: 21.22.ua2 Version: 21.23.n6 Version: 21.17.18 Version: 21.17.17 Version: 21.21.KS2 Version: 21.20.23 Version: 21.20.15 Version: 21.20.p9 Version: 21.20.17 Version: 21.20.14 Version: 21.21.3 Version: 21.19.n9 Version: 21.23.0 Version: 21.5.30 Version: 21.22.n4 Version: 21.20.12 Version: 21.23.b2 Version: 21.20.13 Version: 21.18.22 Version: 21.18.23 Version: 21.20.24 Version: 21.23.6 Version: 21.21.1 Version: 21.23.8 Version: 21.11.20 Version: 21.15.58 Version: 21.24.0 Version: 21.18.18 Version: 21.20.u8 Version: 21.18.19 Version: 21.21.2 Version: 21.22.2 Version: 21.22.8 Version: 21.22.uj3 Version: 21.22.5 Version: 21.22.3 Version: 21.22.10 Version: 21.18.20 Version: 21.15.55 Version: 21.12.22 Version: 21.23.4 Version: 21.15.59 Version: 21.22.ua0 Version: 21.20.16 Version: 21.20.18 Version: 21.20.19 Version: 21.19.n7 Version: 21.20.20 Version: 21.19.n10 Version: 21.19.n11 Version: 21.22.7 Version: 21.22.ua3 Version: 21.19.n12 Version: 21.23.9 Version: 21.18.16 Version: 21.16.10 Version: 21.22.6 Version: 21.18.17 Version: 21.24.1 Version: 21.11.21 Version: 21.23.3 Version: 21.9.13 Version: 21.20.k8 Version: 21.19.n8 Version: 21.22.9 Version: 21.16.c17 Version: 21.16.9 Version: 21.23.2 Version: 21.20.22 Version: 21.18.7 Version: 21.19.6 Version: 21.23.7 Version: 21.11.16 Version: 21.18.13 Version: 21.15.47 Version: 21.19.n6 Version: 6.9.8 Version: 21.20.k6 Version: 21.20.6 Version: 21.19.10 Version: 21.19.n4 Version: 21.15.46 Version: 21.17.14 Version: 21.15.52 Version: 21.16.6 Version: 21.22.n3 Version: 21.15.54 Version: 21.18.15 Version: 21.18.11 Version: 21.18.8 Version: 21.12.20 Version: 21.5.28 Version: 21.20.11 Version: 21.8.12 Version: 21.19.7 Version: 21.19.5 Version: 21.11.19 Version: 21.16.c15 Version: 21.18.12 Version: 21.15.51 Version: 21.18.14 Version: 21.11.15 Version: 21.16.c14 Version: 21.20.4 Version: 21.20.7 Version: 21.14.b22 Version: 21.17.10 Version: 21.12.21 Version: 21.19.9 Version: 21.13.21 Version: 21.14.23 Version: 21.20.UV0 Version: 21.10.6 Version: 21.15.45 Version: 21.15.53 Version: 21.17.15 Version: 21.17.16 Version: 6.14.2 Version: 21.19.n3 Version: 21.17.11 Version: 21.21.0 Version: 21.20.10 Version: 21.20.3 Version: 21.20.5 Version: 21.16.7 Version: 21.22.1 Version: 21.17.9 Version: 21.17.13 Version: 21.20.2 Version: 21.20.9 Version: 21.5.27 Version: 21.14.22 Version: 21.19.8 Version: 21.22.n2 Version: 21.16.8 Version: 21.11.17 Version: 21.20.8 Version: 21.20.k7 Version: 21.18.9 Version: 21.19.n5 Version: 21.11.18 Version: 21.5.29 Version: 21.15.48 Version: 21.22.0 Version: 21.14.b19 Version: 21.15.17 Version: 21.16.c4 Version: 21.19.2 Version: 6.2.b17 Version: 6.9.7 Version: 21.16.c6 Version: 21.17.8 Version: 21.11.13 Version: 21.12.19 Version: 21.12.18 Version: 21.6.15 Version: 21.20.0 Version: 6.13.EY2 Version: 21.15.36 Version: 21.15.21 Version: 21.15.43 Version: 6.14.0 Version: 21.14.b15 Version: 21.15.14 Version: 21.15.15 Version: 21.16.c7 Version: 21.16.c3 Version: 6.13.EY1 Version: 21.15.13 Version: 21.12.15 Version: 21.5.25 Version: 21.14.b12 Version: 21.18.6 Version: 21.19.4 Version: 21.17.3 Version: 21.16.c5 Version: 21.14.b21 Version: 21.18.1 Version: 6.11.0 Version: 21.14.17 Version: 21.5.26 Version: 21.14.b13 Version: 21.14.b16 Version: 21.15.22 Version: 21.15.23 Version: 21.16.3 Version: 21.16.c10 Version: 21.16.d1 Version: 21.15.28 Version: 21.11.11 Version: 21.15.30 Version: 21.15.29 Version: 21.13.18 Version: 21.12.16 Version: 21.17.5 Version: 21.14.b18 Version: 21.14.RH0 Version: 21.14.b14 Version: 6.6.7 Version: 21.15.20 Version: 21.15.32 Version: 21.14.18 Version: 21.6.b25 Version: 21.17.2 Version: 6.2.b15 Version: 21.15.33 Version: 21.13.19 Version: 6.2.b14 Version: 21.19.n1 Version: 21.19.1 Version: 21.19.0 Version: 21.6.b26 Version: 6.2.b16 Version: 21.11.12 Version: 21.18.3 Version: 21.17.7 Version: 21.14.12 Version: 21.19.n2 Version: 21.16.c11 Version: 21.16.c12 Version: 6.10.0 Version: 21.16.4 Version: 6.13.0 Version: 21.13.16 Version: 21.16.c13 Version: 21.17.1 Version: 21.17.6 Version: 21.12.17 Version: 21.11.10 Version: 21.20.SV1 Version: 21.11.14 Version: 6.11.1 Version: 21.17.0 Version: 21.9.12 Version: 21.20.1 Version: 21.14.19 Version: 21.14.c3 Version: 21.15.18 Version: 21.15.19 Version: 21.15.16 Version: 21.15.39 Version: 6.6.6 Version: 21.14.11 Version: 21.14.b17 Version: 21.14.16 Version: 21.15.24 Version: 21.6.b24 Version: 21.16.c9 Version: 21.16.c8 Version: 6.8.1 Version: 21.15.27 Version: 21.15.26 Version: 21.15.25 Version: 21.17.4 Version: 21.13.17 Version: 6.9.5 Version: 21.18.5 Version: 21.15.40 Version: 6.12.0 Version: 21.18.2 Version: 21.12.14 Version: 21.16.d0 Version: 21.14.20 Version: 21.18.0 Version: 21.15.37 Version: 21.15.41 Version: 21.18.4 Version: 21.20.SV2 Version: 21.20.SV3 Version: 21.16.5 Version: 21.20.SV5 Version: 5.1.15 Version: 21.19.3 Version: 21.13.20 Version: 21.14.b20 Version: 21.15.7 Version: 21.13.15 Version: 21.15.11 Version: 21.15.9 Version: 21.15.0 Version: 21.10.4 Version: 21.12.12 Version: 21.12.4 Version: 21.12.8 Version: 21.15.5 Version: 21.13.8 Version: 21.8.10 Version: 21.14.6 Version: 21.15.1 Version: 21.8.11 Version: 21.4.16 Version: 21.9.11 Version: 21.16.c0 Version: 21.13.14 Version: 21.13.4 Version: 21.14.7 Version: 21.14.8 Version: 21.9.8 Version: 21.16.c2 Version: 21.15.10 Version: 21.15.2 Version: 21.15.6 Version: 6.7.0 Version: 21.13.6 Version: 21.9.10 Version: 21.14.1 Version: 21.7.13 Version: 21.11.8 Version: 21.14.2 Version: 21.14.0 Version: 21.12.10 Version: 21.9.9 Version: 21.13.5 Version: 21.13.2 Version: 21.13.9 Version: 21.13.10 Version: 21.12.5 Version: 21.12.9 Version: 21.5.23 Version: 21.14.10 Version: 21.14.c2 Version: 21.14.9 Version: 21.11.6 Version: 21.5.20 Version: 21.13.12 Version: 21.15.12 Version: 6.9.2 Version: 21.15.4 Version: 21.13.11 Version: 21.13.7 Version: 21.10.5 Version: 21.6.b19 Version: 21.6.b23 Version: 21.13.0 Version: 21.6.14 Version: 21.13.13 Version: 21.4.17 Version: 21.11.9 Version: 21.11.2 Version: 21.15.8 Version: 21.16.2 Version: 21.16.1 Version: 21.16.c1 Version: 21.5.21 Version: 21.11.4 Version: 21.6.b21 Version: 21.14.a5 Version: 21.10.3 Version: 21.11.5 Version: 21.13.3 Version: 21.5.22 Version: 21.12.7 Version: 21.12.13 Version: 21.12.6 Version: 21.5.19 Version: 21.6.b22 Version: 21.11.7 Version: 21.13.1 Version: 21.14.a0 Version: 21.14.4 Version: 21.14.5 Version: 21.5.24 Version: 21.14.3 Version: 21.16.0 Version: 21.6.b20 Version: 21.7.5 Version: 21.15.3 Version: 21.6.12 Version: 21.8.5 Version: 21.9.7 Version: 21.12.11 Version: 21.12.2 Version: 6.2.b6 Version: 21.8.4 Version: 6.2.b5 Version: 21.5.15 Version: 21.8.1 Version: 21.4.13 Version: 21.10.0 Version: 21.5.13 Version: 21.9.0 Version: 21.9.4 Version: 21.4.9 Version: 21.4.12 Version: 21.11.3 Version: 21.5.16 Version: 21.7.9 Version: 6.5.0 Version: 21.4.8 Version: 21.6.8 Version: 21.6.5 Version: 21.8.3 Version: 21.6.10 Version: 21.6.4 Version: 21.7.8 Version: 21.4.15 Version: 21.4.11 Version: 21.8.6 Version: 21.8.ca1 Version: 21.9.6 Version: 21.4.7 Version: 21.11.0 Version: 21.11.1 Version: 21.5.7 Version: 6.2.b4 Version: 21.7.7 Version: 21.6.b14 Version: 21.6.b13 Version: 21.6.b15 Version: 21.7.6 Version: 21.6.6 Version: 21.9.5 Version: 21.5.9 Version: 21.5.14 Version: 21.8.8 Version: 21.5.12 Version: 21.8.0 Version: 21.5.8 Version: 21.7.10 Version: 6.2.5 Version: 21.8.9 Version: 6.4.0 Version: 21.6.b17 Version: 21.6.b16 Version: 21.6.11 Version: 21.10.1 Version: 21.4.10 Version: 21.4.14 Version: 21.6.9 Version: 21.6.7 Version: 21.12.3 Version: 21.9.1 Version: 21.9.2 Version: 21.12.0 Version: 21.7.12 Version: 21.10.2 Version: 21.8.7 Version: 21.8.2 Version: 21.5.6 Version: 21.5.10 Version: 21.6.13 Version: 21.6.b18 Version: 21.7.11 Version: 21.7.1 Version: 21.9.3 Version: 21.7.0 Version: 21.5.11 Version: 21.5.17 Version: 21.5.4 Version: 21.7.3 Version: 21.4.1 Version: 21.4.3 Version: 21.7.2 Version: 21.4.5 Version: 21.5.2 Version: 21.6.3 Version: 21.6.0 Version: 21.6.2 Version: 21.5.5 Version: 21.4.6 Version: 21.4.0 Version: 21.4.2 Version: 21.4.4 Version: 21.7.4 Version: 21.5.0 Version: 21.5.1 Version: 21.6.1 Version: 21.5.3 Version: 21.19.n14 Version: 21.25.3 Version: 21.23.11 Version: 21.23.b3 Version: 21.20.c22 Version: 21.20.27 Version: 21.23.n7 Version: 21.20.26 Version: 21.23.12 Version: 21.20.28 Version: 21.22.ua5 |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "redundancy_configuration_manager",
"vendor": "cisco",
"versions": [
{
"lessThan": "21.25.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-20648",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-15T18:12:38.402406Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T18:14:54.282Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Cisco Redundancy Configuration Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "2021.02.0"
},
{
"status": "affected",
"version": "2021.01.0"
},
{
"status": "affected",
"version": "21.19.n13"
},
{
"status": "affected",
"version": "21.17.19"
},
{
"status": "affected",
"version": "21.18.24"
},
{
"status": "affected",
"version": "21.25.0"
},
{
"status": "affected",
"version": "21.15.60"
},
{
"status": "affected",
"version": "21.22.11"
},
{
"status": "affected",
"version": "21.20.25"
},
{
"status": "affected",
"version": "21.20.21"
},
{
"status": "affected",
"version": "21.24.2"
},
{
"status": "affected",
"version": "21.23.10"
},
{
"status": "affected",
"version": "21.22.n5"
},
{
"status": "affected",
"version": "21.15.57"
},
{
"status": "affected",
"version": "21.25.1"
},
{
"status": "affected",
"version": "21.18.21"
},
{
"status": "affected",
"version": "21.23.1"
},
{
"status": "affected",
"version": "21.19.11"
},
{
"status": "affected",
"version": "21.16.c16"
},
{
"status": "affected",
"version": "21.23.5"
},
{
"status": "affected",
"version": "21.22.4"
},
{
"status": "affected",
"version": "21.22.ua2"
},
{
"status": "affected",
"version": "21.23.n6"
},
{
"status": "affected",
"version": "21.17.18"
},
{
"status": "affected",
"version": "21.17.17"
},
{
"status": "affected",
"version": "21.21.KS2"
},
{
"status": "affected",
"version": "21.20.23"
},
{
"status": "affected",
"version": "21.20.15"
},
{
"status": "affected",
"version": "21.20.p9"
},
{
"status": "affected",
"version": "21.20.17"
},
{
"status": "affected",
"version": "21.20.14"
},
{
"status": "affected",
"version": "21.21.3"
},
{
"status": "affected",
"version": "21.19.n9"
},
{
"status": "affected",
"version": "21.23.0"
},
{
"status": "affected",
"version": "21.5.30"
},
{
"status": "affected",
"version": "21.22.n4"
},
{
"status": "affected",
"version": "21.20.12"
},
{
"status": "affected",
"version": "21.23.b2"
},
{
"status": "affected",
"version": "21.20.13"
},
{
"status": "affected",
"version": "21.18.22"
},
{
"status": "affected",
"version": "21.18.23"
},
{
"status": "affected",
"version": "21.20.24"
},
{
"status": "affected",
"version": "21.23.6"
},
{
"status": "affected",
"version": "21.21.1"
},
{
"status": "affected",
"version": "21.23.8"
},
{
"status": "affected",
"version": "21.11.20"
},
{
"status": "affected",
"version": "21.15.58"
},
{
"status": "affected",
"version": "21.24.0"
},
{
"status": "affected",
"version": "21.18.18"
},
{
"status": "affected",
"version": "21.20.u8"
},
{
"status": "affected",
"version": "21.18.19"
},
{
"status": "affected",
"version": "21.21.2"
},
{
"status": "affected",
"version": "21.22.2"
},
{
"status": "affected",
"version": "21.22.8"
},
{
"status": "affected",
"version": "21.22.uj3"
},
{
"status": "affected",
"version": "21.22.5"
},
{
"status": "affected",
"version": "21.22.3"
},
{
"status": "affected",
"version": "21.22.10"
},
{
"status": "affected",
"version": "21.18.20"
},
{
"status": "affected",
"version": "21.15.55"
},
{
"status": "affected",
"version": "21.12.22"
},
{
"status": "affected",
"version": "21.23.4"
},
{
"status": "affected",
"version": "21.15.59"
},
{
"status": "affected",
"version": "21.22.ua0"
},
{
"status": "affected",
"version": "21.20.16"
},
{
"status": "affected",
"version": "21.20.18"
},
{
"status": "affected",
"version": "21.20.19"
},
{
"status": "affected",
"version": "21.19.n7"
},
{
"status": "affected",
"version": "21.20.20"
},
{
"status": "affected",
"version": "21.19.n10"
},
{
"status": "affected",
"version": "21.19.n11"
},
{
"status": "affected",
"version": "21.22.7"
},
{
"status": "affected",
"version": "21.22.ua3"
},
{
"status": "affected",
"version": "21.19.n12"
},
{
"status": "affected",
"version": "21.23.9"
},
{
"status": "affected",
"version": "21.18.16"
},
{
"status": "affected",
"version": "21.16.10"
},
{
"status": "affected",
"version": "21.22.6"
},
{
"status": "affected",
"version": "21.18.17"
},
{
"status": "affected",
"version": "21.24.1"
},
{
"status": "affected",
"version": "21.11.21"
},
{
"status": "affected",
"version": "21.23.3"
},
{
"status": "affected",
"version": "21.9.13"
},
{
"status": "affected",
"version": "21.20.k8"
},
{
"status": "affected",
"version": "21.19.n8"
},
{
"status": "affected",
"version": "21.22.9"
},
{
"status": "affected",
"version": "21.16.c17"
},
{
"status": "affected",
"version": "21.16.9"
},
{
"status": "affected",
"version": "21.23.2"
},
{
"status": "affected",
"version": "21.20.22"
},
{
"status": "affected",
"version": "21.18.7"
},
{
"status": "affected",
"version": "21.19.6"
},
{
"status": "affected",
"version": "21.23.7"
},
{
"status": "affected",
"version": "21.11.16"
},
{
"status": "affected",
"version": "21.18.13"
},
{
"status": "affected",
"version": "21.15.47"
},
{
"status": "affected",
"version": "21.19.n6"
},
{
"status": "affected",
"version": "6.9.8"
},
{
"status": "affected",
"version": "21.20.k6"
},
{
"status": "affected",
"version": "21.20.6"
},
{
"status": "affected",
"version": "21.19.10"
},
{
"status": "affected",
"version": "21.19.n4"
},
{
"status": "affected",
"version": "21.15.46"
},
{
"status": "affected",
"version": "21.17.14"
},
{
"status": "affected",
"version": "21.15.52"
},
{
"status": "affected",
"version": "21.16.6"
},
{
"status": "affected",
"version": "21.22.n3"
},
{
"status": "affected",
"version": "21.15.54"
},
{
"status": "affected",
"version": "21.18.15"
},
{
"status": "affected",
"version": "21.18.11"
},
{
"status": "affected",
"version": "21.18.8"
},
{
"status": "affected",
"version": "21.12.20"
},
{
"status": "affected",
"version": "21.5.28"
},
{
"status": "affected",
"version": "21.20.11"
},
{
"status": "affected",
"version": "21.8.12"
},
{
"status": "affected",
"version": "21.19.7"
},
{
"status": "affected",
"version": "21.19.5"
},
{
"status": "affected",
"version": "21.11.19"
},
{
"status": "affected",
"version": "21.16.c15"
},
{
"status": "affected",
"version": "21.18.12"
},
{
"status": "affected",
"version": "21.15.51"
},
{
"status": "affected",
"version": "21.18.14"
},
{
"status": "affected",
"version": "21.11.15"
},
{
"status": "affected",
"version": "21.16.c14"
},
{
"status": "affected",
"version": "21.20.4"
},
{
"status": "affected",
"version": "21.20.7"
},
{
"status": "affected",
"version": "21.14.b22"
},
{
"status": "affected",
"version": "21.17.10"
},
{
"status": "affected",
"version": "21.12.21"
},
{
"status": "affected",
"version": "21.19.9"
},
{
"status": "affected",
"version": "21.13.21"
},
{
"status": "affected",
"version": "21.14.23"
},
{
"status": "affected",
"version": "21.20.UV0"
},
{
"status": "affected",
"version": "21.10.6"
},
{
"status": "affected",
"version": "21.15.45"
},
{
"status": "affected",
"version": "21.15.53"
},
{
"status": "affected",
"version": "21.17.15"
},
{
"status": "affected",
"version": "21.17.16"
},
{
"status": "affected",
"version": "6.14.2"
},
{
"status": "affected",
"version": "21.19.n3"
},
{
"status": "affected",
"version": "21.17.11"
},
{
"status": "affected",
"version": "21.21.0"
},
{
"status": "affected",
"version": "21.20.10"
},
{
"status": "affected",
"version": "21.20.3"
},
{
"status": "affected",
"version": "21.20.5"
},
{
"status": "affected",
"version": "21.16.7"
},
{
"status": "affected",
"version": "21.22.1"
},
{
"status": "affected",
"version": "21.17.9"
},
{
"status": "affected",
"version": "21.17.13"
},
{
"status": "affected",
"version": "21.20.2"
},
{
"status": "affected",
"version": "21.20.9"
},
{
"status": "affected",
"version": "21.5.27"
},
{
"status": "affected",
"version": "21.14.22"
},
{
"status": "affected",
"version": "21.19.8"
},
{
"status": "affected",
"version": "21.22.n2"
},
{
"status": "affected",
"version": "21.16.8"
},
{
"status": "affected",
"version": "21.11.17"
},
{
"status": "affected",
"version": "21.20.8"
},
{
"status": "affected",
"version": "21.20.k7"
},
{
"status": "affected",
"version": "21.18.9"
},
{
"status": "affected",
"version": "21.19.n5"
},
{
"status": "affected",
"version": "21.11.18"
},
{
"status": "affected",
"version": "21.5.29"
},
{
"status": "affected",
"version": "21.15.48"
},
{
"status": "affected",
"version": "21.22.0"
},
{
"status": "affected",
"version": "21.14.b19"
},
{
"status": "affected",
"version": "21.15.17"
},
{
"status": "affected",
"version": "21.16.c4"
},
{
"status": "affected",
"version": "21.19.2"
},
{
"status": "affected",
"version": "6.2.b17"
},
{
"status": "affected",
"version": "6.9.7"
},
{
"status": "affected",
"version": "21.16.c6"
},
{
"status": "affected",
"version": "21.17.8"
},
{
"status": "affected",
"version": "21.11.13"
},
{
"status": "affected",
"version": "21.12.19"
},
{
"status": "affected",
"version": "21.12.18"
},
{
"status": "affected",
"version": "21.6.15"
},
{
"status": "affected",
"version": "21.20.0"
},
{
"status": "affected",
"version": "6.13.EY2"
},
{
"status": "affected",
"version": "21.15.36"
},
{
"status": "affected",
"version": "21.15.21"
},
{
"status": "affected",
"version": "21.15.43"
},
{
"status": "affected",
"version": "6.14.0"
},
{
"status": "affected",
"version": "21.14.b15"
},
{
"status": "affected",
"version": "21.15.14"
},
{
"status": "affected",
"version": "21.15.15"
},
{
"status": "affected",
"version": "21.16.c7"
},
{
"status": "affected",
"version": "21.16.c3"
},
{
"status": "affected",
"version": "6.13.EY1"
},
{
"status": "affected",
"version": "21.15.13"
},
{
"status": "affected",
"version": "21.12.15"
},
{
"status": "affected",
"version": "21.5.25"
},
{
"status": "affected",
"version": "21.14.b12"
},
{
"status": "affected",
"version": "21.18.6"
},
{
"status": "affected",
"version": "21.19.4"
},
{
"status": "affected",
"version": "21.17.3"
},
{
"status": "affected",
"version": "21.16.c5"
},
{
"status": "affected",
"version": "21.14.b21"
},
{
"status": "affected",
"version": "21.18.1"
},
{
"status": "affected",
"version": "6.11.0"
},
{
"status": "affected",
"version": "21.14.17"
},
{
"status": "affected",
"version": "21.5.26"
},
{
"status": "affected",
"version": "21.14.b13"
},
{
"status": "affected",
"version": "21.14.b16"
},
{
"status": "affected",
"version": "21.15.22"
},
{
"status": "affected",
"version": "21.15.23"
},
{
"status": "affected",
"version": "21.16.3"
},
{
"status": "affected",
"version": "21.16.c10"
},
{
"status": "affected",
"version": "21.16.d1"
},
{
"status": "affected",
"version": "21.15.28"
},
{
"status": "affected",
"version": "21.11.11"
},
{
"status": "affected",
"version": "21.15.30"
},
{
"status": "affected",
"version": "21.15.29"
},
{
"status": "affected",
"version": "21.13.18"
},
{
"status": "affected",
"version": "21.12.16"
},
{
"status": "affected",
"version": "21.17.5"
},
{
"status": "affected",
"version": "21.14.b18"
},
{
"status": "affected",
"version": "21.14.RH0"
},
{
"status": "affected",
"version": "21.14.b14"
},
{
"status": "affected",
"version": "6.6.7"
},
{
"status": "affected",
"version": "21.15.20"
},
{
"status": "affected",
"version": "21.15.32"
},
{
"status": "affected",
"version": "21.14.18"
},
{
"status": "affected",
"version": "21.6.b25"
},
{
"status": "affected",
"version": "21.17.2"
},
{
"status": "affected",
"version": "6.2.b15"
},
{
"status": "affected",
"version": "21.15.33"
},
{
"status": "affected",
"version": "21.13.19"
},
{
"status": "affected",
"version": "6.2.b14"
},
{
"status": "affected",
"version": "21.19.n1"
},
{
"status": "affected",
"version": "21.19.1"
},
{
"status": "affected",
"version": "21.19.0"
},
{
"status": "affected",
"version": "21.6.b26"
},
{
"status": "affected",
"version": "6.2.b16"
},
{
"status": "affected",
"version": "21.11.12"
},
{
"status": "affected",
"version": "21.18.3"
},
{
"status": "affected",
"version": "21.17.7"
},
{
"status": "affected",
"version": "21.14.12"
},
{
"status": "affected",
"version": "21.19.n2"
},
{
"status": "affected",
"version": "21.16.c11"
},
{
"status": "affected",
"version": "21.16.c12"
},
{
"status": "affected",
"version": "6.10.0"
},
{
"status": "affected",
"version": "21.16.4"
},
{
"status": "affected",
"version": "6.13.0"
},
{
"status": "affected",
"version": "21.13.16"
},
{
"status": "affected",
"version": "21.16.c13"
},
{
"status": "affected",
"version": "21.17.1"
},
{
"status": "affected",
"version": "21.17.6"
},
{
"status": "affected",
"version": "21.12.17"
},
{
"status": "affected",
"version": "21.11.10"
},
{
"status": "affected",
"version": "21.20.SV1"
},
{
"status": "affected",
"version": "21.11.14"
},
{
"status": "affected",
"version": "6.11.1"
},
{
"status": "affected",
"version": "21.17.0"
},
{
"status": "affected",
"version": "21.9.12"
},
{
"status": "affected",
"version": "21.20.1"
},
{
"status": "affected",
"version": "21.14.19"
},
{
"status": "affected",
"version": "21.14.c3"
},
{
"status": "affected",
"version": "21.15.18"
},
{
"status": "affected",
"version": "21.15.19"
},
{
"status": "affected",
"version": "21.15.16"
},
{
"status": "affected",
"version": "21.15.39"
},
{
"status": "affected",
"version": "6.6.6"
},
{
"status": "affected",
"version": "21.14.11"
},
{
"status": "affected",
"version": "21.14.b17"
},
{
"status": "affected",
"version": "21.14.16"
},
{
"status": "affected",
"version": "21.15.24"
},
{
"status": "affected",
"version": "21.6.b24"
},
{
"status": "affected",
"version": "21.16.c9"
},
{
"status": "affected",
"version": "21.16.c8"
},
{
"status": "affected",
"version": "6.8.1"
},
{
"status": "affected",
"version": "21.15.27"
},
{
"status": "affected",
"version": "21.15.26"
},
{
"status": "affected",
"version": "21.15.25"
},
{
"status": "affected",
"version": "21.17.4"
},
{
"status": "affected",
"version": "21.13.17"
},
{
"status": "affected",
"version": "6.9.5"
},
{
"status": "affected",
"version": "21.18.5"
},
{
"status": "affected",
"version": "21.15.40"
},
{
"status": "affected",
"version": "6.12.0"
},
{
"status": "affected",
"version": "21.18.2"
},
{
"status": "affected",
"version": "21.12.14"
},
{
"status": "affected",
"version": "21.16.d0"
},
{
"status": "affected",
"version": "21.14.20"
},
{
"status": "affected",
"version": "21.18.0"
},
{
"status": "affected",
"version": "21.15.37"
},
{
"status": "affected",
"version": "21.15.41"
},
{
"status": "affected",
"version": "21.18.4"
},
{
"status": "affected",
"version": "21.20.SV2"
},
{
"status": "affected",
"version": "21.20.SV3"
},
{
"status": "affected",
"version": "21.16.5"
},
{
"status": "affected",
"version": "21.20.SV5"
},
{
"status": "affected",
"version": "5.1.15"
},
{
"status": "affected",
"version": "21.19.3"
},
{
"status": "affected",
"version": "21.13.20"
},
{
"status": "affected",
"version": "21.14.b20"
},
{
"status": "affected",
"version": "21.15.7"
},
{
"status": "affected",
"version": "21.13.15"
},
{
"status": "affected",
"version": "21.15.11"
},
{
"status": "affected",
"version": "21.15.9"
},
{
"status": "affected",
"version": "21.15.0"
},
{
"status": "affected",
"version": "21.10.4"
},
{
"status": "affected",
"version": "21.12.12"
},
{
"status": "affected",
"version": "21.12.4"
},
{
"status": "affected",
"version": "21.12.8"
},
{
"status": "affected",
"version": "21.15.5"
},
{
"status": "affected",
"version": "21.13.8"
},
{
"status": "affected",
"version": "21.8.10"
},
{
"status": "affected",
"version": "21.14.6"
},
{
"status": "affected",
"version": "21.15.1"
},
{
"status": "affected",
"version": "21.8.11"
},
{
"status": "affected",
"version": "21.4.16"
},
{
"status": "affected",
"version": "21.9.11"
},
{
"status": "affected",
"version": "21.16.c0"
},
{
"status": "affected",
"version": "21.13.14"
},
{
"status": "affected",
"version": "21.13.4"
},
{
"status": "affected",
"version": "21.14.7"
},
{
"status": "affected",
"version": "21.14.8"
},
{
"status": "affected",
"version": "21.9.8"
},
{
"status": "affected",
"version": "21.16.c2"
},
{
"status": "affected",
"version": "21.15.10"
},
{
"status": "affected",
"version": "21.15.2"
},
{
"status": "affected",
"version": "21.15.6"
},
{
"status": "affected",
"version": "6.7.0"
},
{
"status": "affected",
"version": "21.13.6"
},
{
"status": "affected",
"version": "21.9.10"
},
{
"status": "affected",
"version": "21.14.1"
},
{
"status": "affected",
"version": "21.7.13"
},
{
"status": "affected",
"version": "21.11.8"
},
{
"status": "affected",
"version": "21.14.2"
},
{
"status": "affected",
"version": "21.14.0"
},
{
"status": "affected",
"version": "21.12.10"
},
{
"status": "affected",
"version": "21.9.9"
},
{
"status": "affected",
"version": "21.13.5"
},
{
"status": "affected",
"version": "21.13.2"
},
{
"status": "affected",
"version": "21.13.9"
},
{
"status": "affected",
"version": "21.13.10"
},
{
"status": "affected",
"version": "21.12.5"
},
{
"status": "affected",
"version": "21.12.9"
},
{
"status": "affected",
"version": "21.5.23"
},
{
"status": "affected",
"version": "21.14.10"
},
{
"status": "affected",
"version": "21.14.c2"
},
{
"status": "affected",
"version": "21.14.9"
},
{
"status": "affected",
"version": "21.11.6"
},
{
"status": "affected",
"version": "21.5.20"
},
{
"status": "affected",
"version": "21.13.12"
},
{
"status": "affected",
"version": "21.15.12"
},
{
"status": "affected",
"version": "6.9.2"
},
{
"status": "affected",
"version": "21.15.4"
},
{
"status": "affected",
"version": "21.13.11"
},
{
"status": "affected",
"version": "21.13.7"
},
{
"status": "affected",
"version": "21.10.5"
},
{
"status": "affected",
"version": "21.6.b19"
},
{
"status": "affected",
"version": "21.6.b23"
},
{
"status": "affected",
"version": "21.13.0"
},
{
"status": "affected",
"version": "21.6.14"
},
{
"status": "affected",
"version": "21.13.13"
},
{
"status": "affected",
"version": "21.4.17"
},
{
"status": "affected",
"version": "21.11.9"
},
{
"status": "affected",
"version": "21.11.2"
},
{
"status": "affected",
"version": "21.15.8"
},
{
"status": "affected",
"version": "21.16.2"
},
{
"status": "affected",
"version": "21.16.1"
},
{
"status": "affected",
"version": "21.16.c1"
},
{
"status": "affected",
"version": "21.5.21"
},
{
"status": "affected",
"version": "21.11.4"
},
{
"status": "affected",
"version": "21.6.b21"
},
{
"status": "affected",
"version": "21.14.a5"
},
{
"status": "affected",
"version": "21.10.3"
},
{
"status": "affected",
"version": "21.11.5"
},
{
"status": "affected",
"version": "21.13.3"
},
{
"status": "affected",
"version": "21.5.22"
},
{
"status": "affected",
"version": "21.12.7"
},
{
"status": "affected",
"version": "21.12.13"
},
{
"status": "affected",
"version": "21.12.6"
},
{
"status": "affected",
"version": "21.5.19"
},
{
"status": "affected",
"version": "21.6.b22"
},
{
"status": "affected",
"version": "21.11.7"
},
{
"status": "affected",
"version": "21.13.1"
},
{
"status": "affected",
"version": "21.14.a0"
},
{
"status": "affected",
"version": "21.14.4"
},
{
"status": "affected",
"version": "21.14.5"
},
{
"status": "affected",
"version": "21.5.24"
},
{
"status": "affected",
"version": "21.14.3"
},
{
"status": "affected",
"version": "21.16.0"
},
{
"status": "affected",
"version": "21.6.b20"
},
{
"status": "affected",
"version": "21.7.5"
},
{
"status": "affected",
"version": "21.15.3"
},
{
"status": "affected",
"version": "21.6.12"
},
{
"status": "affected",
"version": "21.8.5"
},
{
"status": "affected",
"version": "21.9.7"
},
{
"status": "affected",
"version": "21.12.11"
},
{
"status": "affected",
"version": "21.12.2"
},
{
"status": "affected",
"version": "6.2.b6"
},
{
"status": "affected",
"version": "21.8.4"
},
{
"status": "affected",
"version": "6.2.b5"
},
{
"status": "affected",
"version": "21.5.15"
},
{
"status": "affected",
"version": "21.8.1"
},
{
"status": "affected",
"version": "21.4.13"
},
{
"status": "affected",
"version": "21.10.0"
},
{
"status": "affected",
"version": "21.5.13"
},
{
"status": "affected",
"version": "21.9.0"
},
{
"status": "affected",
"version": "21.9.4"
},
{
"status": "affected",
"version": "21.4.9"
},
{
"status": "affected",
"version": "21.4.12"
},
{
"status": "affected",
"version": "21.11.3"
},
{
"status": "affected",
"version": "21.5.16"
},
{
"status": "affected",
"version": "21.7.9"
},
{
"status": "affected",
"version": "6.5.0"
},
{
"status": "affected",
"version": "21.4.8"
},
{
"status": "affected",
"version": "21.6.8"
},
{
"status": "affected",
"version": "21.6.5"
},
{
"status": "affected",
"version": "21.8.3"
},
{
"status": "affected",
"version": "21.6.10"
},
{
"status": "affected",
"version": "21.6.4"
},
{
"status": "affected",
"version": "21.7.8"
},
{
"status": "affected",
"version": "21.4.15"
},
{
"status": "affected",
"version": "21.4.11"
},
{
"status": "affected",
"version": "21.8.6"
},
{
"status": "affected",
"version": "21.8.ca1"
},
{
"status": "affected",
"version": "21.9.6"
},
{
"status": "affected",
"version": "21.4.7"
},
{
"status": "affected",
"version": "21.11.0"
},
{
"status": "affected",
"version": "21.11.1"
},
{
"status": "affected",
"version": "21.5.7"
},
{
"status": "affected",
"version": "6.2.b4"
},
{
"status": "affected",
"version": "21.7.7"
},
{
"status": "affected",
"version": "21.6.b14"
},
{
"status": "affected",
"version": "21.6.b13"
},
{
"status": "affected",
"version": "21.6.b15"
},
{
"status": "affected",
"version": "21.7.6"
},
{
"status": "affected",
"version": "21.6.6"
},
{
"status": "affected",
"version": "21.9.5"
},
{
"status": "affected",
"version": "21.5.9"
},
{
"status": "affected",
"version": "21.5.14"
},
{
"status": "affected",
"version": "21.8.8"
},
{
"status": "affected",
"version": "21.5.12"
},
{
"status": "affected",
"version": "21.8.0"
},
{
"status": "affected",
"version": "21.5.8"
},
{
"status": "affected",
"version": "21.7.10"
},
{
"status": "affected",
"version": "6.2.5"
},
{
"status": "affected",
"version": "21.8.9"
},
{
"status": "affected",
"version": "6.4.0"
},
{
"status": "affected",
"version": "21.6.b17"
},
{
"status": "affected",
"version": "21.6.b16"
},
{
"status": "affected",
"version": "21.6.11"
},
{
"status": "affected",
"version": "21.10.1"
},
{
"status": "affected",
"version": "21.4.10"
},
{
"status": "affected",
"version": "21.4.14"
},
{
"status": "affected",
"version": "21.6.9"
},
{
"status": "affected",
"version": "21.6.7"
},
{
"status": "affected",
"version": "21.12.3"
},
{
"status": "affected",
"version": "21.9.1"
},
{
"status": "affected",
"version": "21.9.2"
},
{
"status": "affected",
"version": "21.12.0"
},
{
"status": "affected",
"version": "21.7.12"
},
{
"status": "affected",
"version": "21.10.2"
},
{
"status": "affected",
"version": "21.8.7"
},
{
"status": "affected",
"version": "21.8.2"
},
{
"status": "affected",
"version": "21.5.6"
},
{
"status": "affected",
"version": "21.5.10"
},
{
"status": "affected",
"version": "21.6.13"
},
{
"status": "affected",
"version": "21.6.b18"
},
{
"status": "affected",
"version": "21.7.11"
},
{
"status": "affected",
"version": "21.7.1"
},
{
"status": "affected",
"version": "21.9.3"
},
{
"status": "affected",
"version": "21.7.0"
},
{
"status": "affected",
"version": "21.5.11"
},
{
"status": "affected",
"version": "21.5.17"
},
{
"status": "affected",
"version": "21.5.4"
},
{
"status": "affected",
"version": "21.7.3"
},
{
"status": "affected",
"version": "21.4.1"
},
{
"status": "affected",
"version": "21.4.3"
},
{
"status": "affected",
"version": "21.7.2"
},
{
"status": "affected",
"version": "21.4.5"
},
{
"status": "affected",
"version": "21.5.2"
},
{
"status": "affected",
"version": "21.6.3"
},
{
"status": "affected",
"version": "21.6.0"
},
{
"status": "affected",
"version": "21.6.2"
},
{
"status": "affected",
"version": "21.5.5"
},
{
"status": "affected",
"version": "21.4.6"
},
{
"status": "affected",
"version": "21.4.0"
},
{
"status": "affected",
"version": "21.4.2"
},
{
"status": "affected",
"version": "21.4.4"
},
{
"status": "affected",
"version": "21.7.4"
},
{
"status": "affected",
"version": "21.5.0"
},
{
"status": "affected",
"version": "21.5.1"
},
{
"status": "affected",
"version": "21.6.1"
},
{
"status": "affected",
"version": "21.5.3"
},
{
"status": "affected",
"version": "21.19.n14"
},
{
"status": "affected",
"version": "21.25.3"
},
{
"status": "affected",
"version": "21.23.11"
},
{
"status": "affected",
"version": "21.23.b3"
},
{
"status": "affected",
"version": "21.20.c22"
},
{
"status": "affected",
"version": "21.20.27"
},
{
"status": "affected",
"version": "21.23.n7"
},
{
"status": "affected",
"version": "21.20.26"
},
{
"status": "affected",
"version": "21.23.12"
},
{
"status": "affected",
"version": "21.20.28"
},
{
"status": "affected",
"version": "21.22.ua5"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in a debug function for Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted.\r\nThis vulnerability exists because of a debug service that incorrectly listens to and accepts incoming connections. An attacker could exploit this vulnerability by connecting to the debug port and executing debug commands. A successful exploit could allow the attacker to view sensitive debugging information.Cisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco\u00a0PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-200",
"description": "Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T15:59:16.243Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-rcm-vuls-7cS3Nuq",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO"
}
],
"source": {
"advisory": "cisco-sa-rcm-vuls-7cS3Nuq",
"defects": [
"CSCvy80857"
],
"discovery": "INTERNAL"
},
"title": "Cisco Redundancy Configuration Manager Debug Information Disclosure Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2022-20648",
"datePublished": "2024-11-15T15:59:16.243Z",
"dateReserved": "2021-11-02T13:28:29.035Z",
"dateUpdated": "2024-11-15T18:14:54.282Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-20649 (GCVE-0-2022-20649)
Vulnerability from cvelistv5
Published
2024-11-15 15:59
Modified
2024-11-15 19:41
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-489 - Active Debug Code
Summary
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.
This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Redundancy Configuration Manager |
Version: 2021.02.0 Version: 2021.01.0 Version: 21.19.n13 Version: 21.17.19 Version: 21.18.24 Version: 21.25.0 Version: 21.15.60 Version: 21.22.11 Version: 21.20.25 Version: 21.20.21 Version: 21.24.2 Version: 21.23.10 Version: 21.22.n5 Version: 21.15.57 Version: 21.25.1 Version: 21.18.21 Version: 21.23.1 Version: 21.19.11 Version: 21.16.c16 Version: 21.23.5 Version: 21.22.4 Version: 21.22.ua2 Version: 21.23.n6 Version: 21.17.18 Version: 21.17.17 Version: 21.21.KS2 Version: 21.20.23 Version: 21.20.15 Version: 21.20.p9 Version: 21.20.17 Version: 21.20.14 Version: 21.21.3 Version: 21.19.n9 Version: 21.23.0 Version: 21.5.30 Version: 21.22.n4 Version: 21.20.12 Version: 21.23.b2 Version: 21.20.13 Version: 21.18.22 Version: 21.18.23 Version: 21.20.24 Version: 21.23.6 Version: 21.21.1 Version: 21.23.8 Version: 21.11.20 Version: 21.15.58 Version: 21.24.0 Version: 21.18.18 Version: 21.20.u8 Version: 21.18.19 Version: 21.21.2 Version: 21.22.2 Version: 21.22.8 Version: 21.22.uj3 Version: 21.22.5 Version: 21.22.3 Version: 21.22.10 Version: 21.18.20 Version: 21.15.55 Version: 21.12.22 Version: 21.23.4 Version: 21.15.59 Version: 21.22.ua0 Version: 21.20.16 Version: 21.20.18 Version: 21.20.19 Version: 21.19.n7 Version: 21.20.20 Version: 21.19.n10 Version: 21.19.n11 Version: 21.22.7 Version: 21.22.ua3 Version: 21.19.n12 Version: 21.23.9 Version: 21.18.16 Version: 21.16.10 Version: 21.22.6 Version: 21.18.17 Version: 21.24.1 Version: 21.11.21 Version: 21.23.3 Version: 21.9.13 Version: 21.20.k8 Version: 21.19.n8 Version: 21.22.9 Version: 21.16.c17 Version: 21.16.9 Version: 21.23.2 Version: 21.20.22 Version: 21.18.7 Version: 21.19.6 Version: 21.23.7 Version: 21.11.16 Version: 21.18.13 Version: 21.15.47 Version: 21.19.n6 Version: 6.9.8 Version: 21.20.k6 Version: 21.20.6 Version: 21.19.10 Version: 21.19.n4 Version: 21.15.46 Version: 21.17.14 Version: 21.15.52 Version: 21.16.6 Version: 21.22.n3 Version: 21.15.54 Version: 21.18.15 Version: 21.18.11 Version: 21.18.8 Version: 21.12.20 Version: 21.5.28 Version: 21.20.11 Version: 21.8.12 Version: 21.19.7 Version: 21.19.5 Version: 21.11.19 Version: 21.16.c15 Version: 21.18.12 Version: 21.15.51 Version: 21.18.14 Version: 21.11.15 Version: 21.16.c14 Version: 21.20.4 Version: 21.20.7 Version: 21.14.b22 Version: 21.17.10 Version: 21.12.21 Version: 21.19.9 Version: 21.13.21 Version: 21.14.23 Version: 21.20.UV0 Version: 21.10.6 Version: 21.15.45 Version: 21.15.53 Version: 21.17.15 Version: 21.17.16 Version: 6.14.2 Version: 21.19.n3 Version: 21.17.11 Version: 21.21.0 Version: 21.20.10 Version: 21.20.3 Version: 21.20.5 Version: 21.16.7 Version: 21.22.1 Version: 21.17.9 Version: 21.17.13 Version: 21.20.2 Version: 21.20.9 Version: 21.5.27 Version: 21.14.22 Version: 21.19.8 Version: 21.22.n2 Version: 21.16.8 Version: 21.11.17 Version: 21.20.8 Version: 21.20.k7 Version: 21.18.9 Version: 21.19.n5 Version: 21.11.18 Version: 21.5.29 Version: 21.15.48 Version: 21.22.0 Version: 21.14.b19 Version: 21.15.17 Version: 21.16.c4 Version: 21.19.2 Version: 6.2.b17 Version: 6.9.7 Version: 21.16.c6 Version: 21.17.8 Version: 21.11.13 Version: 21.12.19 Version: 21.12.18 Version: 21.6.15 Version: 21.20.0 Version: 6.13.EY2 Version: 21.15.36 Version: 21.15.21 Version: 21.15.43 Version: 6.14.0 Version: 21.14.b15 Version: 21.15.14 Version: 21.15.15 Version: 21.16.c7 Version: 21.16.c3 Version: 6.13.EY1 Version: 21.15.13 Version: 21.12.15 Version: 21.5.25 Version: 21.14.b12 Version: 21.18.6 Version: 21.19.4 Version: 21.17.3 Version: 21.16.c5 Version: 21.14.b21 Version: 21.18.1 Version: 6.11.0 Version: 21.14.17 Version: 21.5.26 Version: 21.14.b13 Version: 21.14.b16 Version: 21.15.22 Version: 21.15.23 Version: 21.16.3 Version: 21.16.c10 Version: 21.16.d1 Version: 21.15.28 Version: 21.11.11 Version: 21.15.30 Version: 21.15.29 Version: 21.13.18 Version: 21.12.16 Version: 21.17.5 Version: 21.14.b18 Version: 21.14.RH0 Version: 21.14.b14 Version: 6.6.7 Version: 21.15.20 Version: 21.15.32 Version: 21.14.18 Version: 21.6.b25 Version: 21.17.2 Version: 6.2.b15 Version: 21.15.33 Version: 21.13.19 Version: 6.2.b14 Version: 21.19.n1 Version: 21.19.1 Version: 21.19.0 Version: 21.6.b26 Version: 6.2.b16 Version: 21.11.12 Version: 21.18.3 Version: 21.17.7 Version: 21.14.12 Version: 21.19.n2 Version: 21.16.c11 Version: 21.16.c12 Version: 6.10.0 Version: 21.16.4 Version: 6.13.0 Version: 21.13.16 Version: 21.16.c13 Version: 21.17.1 Version: 21.17.6 Version: 21.12.17 Version: 21.11.10 Version: 21.20.SV1 Version: 21.11.14 Version: 6.11.1 Version: 21.17.0 Version: 21.9.12 Version: 21.20.1 Version: 21.14.19 Version: 21.14.c3 Version: 21.15.18 Version: 21.15.19 Version: 21.15.16 Version: 21.15.39 Version: 6.6.6 Version: 21.14.11 Version: 21.14.b17 Version: 21.14.16 Version: 21.15.24 Version: 21.6.b24 Version: 21.16.c9 Version: 21.16.c8 Version: 6.8.1 Version: 21.15.27 Version: 21.15.26 Version: 21.15.25 Version: 21.17.4 Version: 21.13.17 Version: 6.9.5 Version: 21.18.5 Version: 21.15.40 Version: 6.12.0 Version: 21.18.2 Version: 21.12.14 Version: 21.16.d0 Version: 21.14.20 Version: 21.18.0 Version: 21.15.37 Version: 21.15.41 Version: 21.18.4 Version: 21.20.SV2 Version: 21.20.SV3 Version: 21.16.5 Version: 21.20.SV5 Version: 5.1.15 Version: 21.19.3 Version: 21.13.20 Version: 21.14.b20 Version: 21.15.7 Version: 21.13.15 Version: 21.15.11 Version: 21.15.9 Version: 21.15.0 Version: 21.10.4 Version: 21.12.12 Version: 21.12.4 Version: 21.12.8 Version: 21.15.5 Version: 21.13.8 Version: 21.8.10 Version: 21.14.6 Version: 21.15.1 Version: 21.8.11 Version: 21.4.16 Version: 21.9.11 Version: 21.16.c0 Version: 21.13.14 Version: 21.13.4 Version: 21.14.7 Version: 21.14.8 Version: 21.9.8 Version: 21.16.c2 Version: 21.15.10 Version: 21.15.2 Version: 21.15.6 Version: 6.7.0 Version: 21.13.6 Version: 21.9.10 Version: 21.14.1 Version: 21.7.13 Version: 21.11.8 Version: 21.14.2 Version: 21.14.0 Version: 21.12.10 Version: 21.9.9 Version: 21.13.5 Version: 21.13.2 Version: 21.13.9 Version: 21.13.10 Version: 21.12.5 Version: 21.12.9 Version: 21.5.23 Version: 21.14.10 Version: 21.14.c2 Version: 21.14.9 Version: 21.11.6 Version: 21.5.20 Version: 21.13.12 Version: 21.15.12 Version: 6.9.2 Version: 21.15.4 Version: 21.13.11 Version: 21.13.7 Version: 21.10.5 Version: 21.6.b19 Version: 21.6.b23 Version: 21.13.0 Version: 21.6.14 Version: 21.13.13 Version: 21.4.17 Version: 21.11.9 Version: 21.11.2 Version: 21.15.8 Version: 21.16.2 Version: 21.16.1 Version: 21.16.c1 Version: 21.5.21 Version: 21.11.4 Version: 21.6.b21 Version: 21.14.a5 Version: 21.10.3 Version: 21.11.5 Version: 21.13.3 Version: 21.5.22 Version: 21.12.7 Version: 21.12.13 Version: 21.12.6 Version: 21.5.19 Version: 21.6.b22 Version: 21.11.7 Version: 21.13.1 Version: 21.14.a0 Version: 21.14.4 Version: 21.14.5 Version: 21.5.24 Version: 21.14.3 Version: 21.16.0 Version: 21.6.b20 Version: 21.7.5 Version: 21.15.3 Version: 21.6.12 Version: 21.8.5 Version: 21.9.7 Version: 21.12.11 Version: 21.12.2 Version: 6.2.b6 Version: 21.8.4 Version: 6.2.b5 Version: 21.5.15 Version: 21.8.1 Version: 21.4.13 Version: 21.10.0 Version: 21.5.13 Version: 21.9.0 Version: 21.9.4 Version: 21.4.9 Version: 21.4.12 Version: 21.11.3 Version: 21.5.16 Version: 21.7.9 Version: 6.5.0 Version: 21.4.8 Version: 21.6.8 Version: 21.6.5 Version: 21.8.3 Version: 21.6.10 Version: 21.6.4 Version: 21.7.8 Version: 21.4.15 Version: 21.4.11 Version: 21.8.6 Version: 21.8.ca1 Version: 21.9.6 Version: 21.4.7 Version: 21.11.0 Version: 21.11.1 Version: 21.5.7 Version: 6.2.b4 Version: 21.7.7 Version: 21.6.b14 Version: 21.6.b13 Version: 21.6.b15 Version: 21.7.6 Version: 21.6.6 Version: 21.9.5 Version: 21.5.9 Version: 21.5.14 Version: 21.8.8 Version: 21.5.12 Version: 21.8.0 Version: 21.5.8 Version: 21.7.10 Version: 6.2.5 Version: 21.8.9 Version: 6.4.0 Version: 21.6.b17 Version: 21.6.b16 Version: 21.6.11 Version: 21.10.1 Version: 21.4.10 Version: 21.4.14 Version: 21.6.9 Version: 21.6.7 Version: 21.12.3 Version: 21.9.1 Version: 21.9.2 Version: 21.12.0 Version: 21.7.12 Version: 21.10.2 Version: 21.8.7 Version: 21.8.2 Version: 21.5.6 Version: 21.5.10 Version: 21.6.13 Version: 21.6.b18 Version: 21.7.11 Version: 21.7.1 Version: 21.9.3 Version: 21.7.0 Version: 21.5.11 Version: 21.5.17 Version: 21.5.4 Version: 21.7.3 Version: 21.4.1 Version: 21.4.3 Version: 21.7.2 Version: 21.4.5 Version: 21.5.2 Version: 21.6.3 Version: 21.6.0 Version: 21.6.2 Version: 21.5.5 Version: 21.4.6 Version: 21.4.0 Version: 21.4.2 Version: 21.4.4 Version: 21.7.4 Version: 21.5.0 Version: 21.5.1 Version: 21.6.1 Version: 21.5.3 Version: 21.19.n14 Version: 21.25.3 Version: 21.23.11 Version: 21.23.b3 Version: 21.20.c22 Version: 21.20.27 Version: 21.23.n7 Version: 21.20.26 Version: 21.23.12 Version: 21.20.28 Version: 21.22.ua5 |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:cisco:redundancy_configuration_manager:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "redundancy_configuration_manager",
"vendor": "cisco",
"versions": [
{
"lessThan": "21.25.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-20649",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-15T19:40:41.090546Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T19:41:58.793Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Cisco Redundancy Configuration Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "2021.02.0"
},
{
"status": "affected",
"version": "2021.01.0"
},
{
"status": "affected",
"version": "21.19.n13"
},
{
"status": "affected",
"version": "21.17.19"
},
{
"status": "affected",
"version": "21.18.24"
},
{
"status": "affected",
"version": "21.25.0"
},
{
"status": "affected",
"version": "21.15.60"
},
{
"status": "affected",
"version": "21.22.11"
},
{
"status": "affected",
"version": "21.20.25"
},
{
"status": "affected",
"version": "21.20.21"
},
{
"status": "affected",
"version": "21.24.2"
},
{
"status": "affected",
"version": "21.23.10"
},
{
"status": "affected",
"version": "21.22.n5"
},
{
"status": "affected",
"version": "21.15.57"
},
{
"status": "affected",
"version": "21.25.1"
},
{
"status": "affected",
"version": "21.18.21"
},
{
"status": "affected",
"version": "21.23.1"
},
{
"status": "affected",
"version": "21.19.11"
},
{
"status": "affected",
"version": "21.16.c16"
},
{
"status": "affected",
"version": "21.23.5"
},
{
"status": "affected",
"version": "21.22.4"
},
{
"status": "affected",
"version": "21.22.ua2"
},
{
"status": "affected",
"version": "21.23.n6"
},
{
"status": "affected",
"version": "21.17.18"
},
{
"status": "affected",
"version": "21.17.17"
},
{
"status": "affected",
"version": "21.21.KS2"
},
{
"status": "affected",
"version": "21.20.23"
},
{
"status": "affected",
"version": "21.20.15"
},
{
"status": "affected",
"version": "21.20.p9"
},
{
"status": "affected",
"version": "21.20.17"
},
{
"status": "affected",
"version": "21.20.14"
},
{
"status": "affected",
"version": "21.21.3"
},
{
"status": "affected",
"version": "21.19.n9"
},
{
"status": "affected",
"version": "21.23.0"
},
{
"status": "affected",
"version": "21.5.30"
},
{
"status": "affected",
"version": "21.22.n4"
},
{
"status": "affected",
"version": "21.20.12"
},
{
"status": "affected",
"version": "21.23.b2"
},
{
"status": "affected",
"version": "21.20.13"
},
{
"status": "affected",
"version": "21.18.22"
},
{
"status": "affected",
"version": "21.18.23"
},
{
"status": "affected",
"version": "21.20.24"
},
{
"status": "affected",
"version": "21.23.6"
},
{
"status": "affected",
"version": "21.21.1"
},
{
"status": "affected",
"version": "21.23.8"
},
{
"status": "affected",
"version": "21.11.20"
},
{
"status": "affected",
"version": "21.15.58"
},
{
"status": "affected",
"version": "21.24.0"
},
{
"status": "affected",
"version": "21.18.18"
},
{
"status": "affected",
"version": "21.20.u8"
},
{
"status": "affected",
"version": "21.18.19"
},
{
"status": "affected",
"version": "21.21.2"
},
{
"status": "affected",
"version": "21.22.2"
},
{
"status": "affected",
"version": "21.22.8"
},
{
"status": "affected",
"version": "21.22.uj3"
},
{
"status": "affected",
"version": "21.22.5"
},
{
"status": "affected",
"version": "21.22.3"
},
{
"status": "affected",
"version": "21.22.10"
},
{
"status": "affected",
"version": "21.18.20"
},
{
"status": "affected",
"version": "21.15.55"
},
{
"status": "affected",
"version": "21.12.22"
},
{
"status": "affected",
"version": "21.23.4"
},
{
"status": "affected",
"version": "21.15.59"
},
{
"status": "affected",
"version": "21.22.ua0"
},
{
"status": "affected",
"version": "21.20.16"
},
{
"status": "affected",
"version": "21.20.18"
},
{
"status": "affected",
"version": "21.20.19"
},
{
"status": "affected",
"version": "21.19.n7"
},
{
"status": "affected",
"version": "21.20.20"
},
{
"status": "affected",
"version": "21.19.n10"
},
{
"status": "affected",
"version": "21.19.n11"
},
{
"status": "affected",
"version": "21.22.7"
},
{
"status": "affected",
"version": "21.22.ua3"
},
{
"status": "affected",
"version": "21.19.n12"
},
{
"status": "affected",
"version": "21.23.9"
},
{
"status": "affected",
"version": "21.18.16"
},
{
"status": "affected",
"version": "21.16.10"
},
{
"status": "affected",
"version": "21.22.6"
},
{
"status": "affected",
"version": "21.18.17"
},
{
"status": "affected",
"version": "21.24.1"
},
{
"status": "affected",
"version": "21.11.21"
},
{
"status": "affected",
"version": "21.23.3"
},
{
"status": "affected",
"version": "21.9.13"
},
{
"status": "affected",
"version": "21.20.k8"
},
{
"status": "affected",
"version": "21.19.n8"
},
{
"status": "affected",
"version": "21.22.9"
},
{
"status": "affected",
"version": "21.16.c17"
},
{
"status": "affected",
"version": "21.16.9"
},
{
"status": "affected",
"version": "21.23.2"
},
{
"status": "affected",
"version": "21.20.22"
},
{
"status": "affected",
"version": "21.18.7"
},
{
"status": "affected",
"version": "21.19.6"
},
{
"status": "affected",
"version": "21.23.7"
},
{
"status": "affected",
"version": "21.11.16"
},
{
"status": "affected",
"version": "21.18.13"
},
{
"status": "affected",
"version": "21.15.47"
},
{
"status": "affected",
"version": "21.19.n6"
},
{
"status": "affected",
"version": "6.9.8"
},
{
"status": "affected",
"version": "21.20.k6"
},
{
"status": "affected",
"version": "21.20.6"
},
{
"status": "affected",
"version": "21.19.10"
},
{
"status": "affected",
"version": "21.19.n4"
},
{
"status": "affected",
"version": "21.15.46"
},
{
"status": "affected",
"version": "21.17.14"
},
{
"status": "affected",
"version": "21.15.52"
},
{
"status": "affected",
"version": "21.16.6"
},
{
"status": "affected",
"version": "21.22.n3"
},
{
"status": "affected",
"version": "21.15.54"
},
{
"status": "affected",
"version": "21.18.15"
},
{
"status": "affected",
"version": "21.18.11"
},
{
"status": "affected",
"version": "21.18.8"
},
{
"status": "affected",
"version": "21.12.20"
},
{
"status": "affected",
"version": "21.5.28"
},
{
"status": "affected",
"version": "21.20.11"
},
{
"status": "affected",
"version": "21.8.12"
},
{
"status": "affected",
"version": "21.19.7"
},
{
"status": "affected",
"version": "21.19.5"
},
{
"status": "affected",
"version": "21.11.19"
},
{
"status": "affected",
"version": "21.16.c15"
},
{
"status": "affected",
"version": "21.18.12"
},
{
"status": "affected",
"version": "21.15.51"
},
{
"status": "affected",
"version": "21.18.14"
},
{
"status": "affected",
"version": "21.11.15"
},
{
"status": "affected",
"version": "21.16.c14"
},
{
"status": "affected",
"version": "21.20.4"
},
{
"status": "affected",
"version": "21.20.7"
},
{
"status": "affected",
"version": "21.14.b22"
},
{
"status": "affected",
"version": "21.17.10"
},
{
"status": "affected",
"version": "21.12.21"
},
{
"status": "affected",
"version": "21.19.9"
},
{
"status": "affected",
"version": "21.13.21"
},
{
"status": "affected",
"version": "21.14.23"
},
{
"status": "affected",
"version": "21.20.UV0"
},
{
"status": "affected",
"version": "21.10.6"
},
{
"status": "affected",
"version": "21.15.45"
},
{
"status": "affected",
"version": "21.15.53"
},
{
"status": "affected",
"version": "21.17.15"
},
{
"status": "affected",
"version": "21.17.16"
},
{
"status": "affected",
"version": "6.14.2"
},
{
"status": "affected",
"version": "21.19.n3"
},
{
"status": "affected",
"version": "21.17.11"
},
{
"status": "affected",
"version": "21.21.0"
},
{
"status": "affected",
"version": "21.20.10"
},
{
"status": "affected",
"version": "21.20.3"
},
{
"status": "affected",
"version": "21.20.5"
},
{
"status": "affected",
"version": "21.16.7"
},
{
"status": "affected",
"version": "21.22.1"
},
{
"status": "affected",
"version": "21.17.9"
},
{
"status": "affected",
"version": "21.17.13"
},
{
"status": "affected",
"version": "21.20.2"
},
{
"status": "affected",
"version": "21.20.9"
},
{
"status": "affected",
"version": "21.5.27"
},
{
"status": "affected",
"version": "21.14.22"
},
{
"status": "affected",
"version": "21.19.8"
},
{
"status": "affected",
"version": "21.22.n2"
},
{
"status": "affected",
"version": "21.16.8"
},
{
"status": "affected",
"version": "21.11.17"
},
{
"status": "affected",
"version": "21.20.8"
},
{
"status": "affected",
"version": "21.20.k7"
},
{
"status": "affected",
"version": "21.18.9"
},
{
"status": "affected",
"version": "21.19.n5"
},
{
"status": "affected",
"version": "21.11.18"
},
{
"status": "affected",
"version": "21.5.29"
},
{
"status": "affected",
"version": "21.15.48"
},
{
"status": "affected",
"version": "21.22.0"
},
{
"status": "affected",
"version": "21.14.b19"
},
{
"status": "affected",
"version": "21.15.17"
},
{
"status": "affected",
"version": "21.16.c4"
},
{
"status": "affected",
"version": "21.19.2"
},
{
"status": "affected",
"version": "6.2.b17"
},
{
"status": "affected",
"version": "6.9.7"
},
{
"status": "affected",
"version": "21.16.c6"
},
{
"status": "affected",
"version": "21.17.8"
},
{
"status": "affected",
"version": "21.11.13"
},
{
"status": "affected",
"version": "21.12.19"
},
{
"status": "affected",
"version": "21.12.18"
},
{
"status": "affected",
"version": "21.6.15"
},
{
"status": "affected",
"version": "21.20.0"
},
{
"status": "affected",
"version": "6.13.EY2"
},
{
"status": "affected",
"version": "21.15.36"
},
{
"status": "affected",
"version": "21.15.21"
},
{
"status": "affected",
"version": "21.15.43"
},
{
"status": "affected",
"version": "6.14.0"
},
{
"status": "affected",
"version": "21.14.b15"
},
{
"status": "affected",
"version": "21.15.14"
},
{
"status": "affected",
"version": "21.15.15"
},
{
"status": "affected",
"version": "21.16.c7"
},
{
"status": "affected",
"version": "21.16.c3"
},
{
"status": "affected",
"version": "6.13.EY1"
},
{
"status": "affected",
"version": "21.15.13"
},
{
"status": "affected",
"version": "21.12.15"
},
{
"status": "affected",
"version": "21.5.25"
},
{
"status": "affected",
"version": "21.14.b12"
},
{
"status": "affected",
"version": "21.18.6"
},
{
"status": "affected",
"version": "21.19.4"
},
{
"status": "affected",
"version": "21.17.3"
},
{
"status": "affected",
"version": "21.16.c5"
},
{
"status": "affected",
"version": "21.14.b21"
},
{
"status": "affected",
"version": "21.18.1"
},
{
"status": "affected",
"version": "6.11.0"
},
{
"status": "affected",
"version": "21.14.17"
},
{
"status": "affected",
"version": "21.5.26"
},
{
"status": "affected",
"version": "21.14.b13"
},
{
"status": "affected",
"version": "21.14.b16"
},
{
"status": "affected",
"version": "21.15.22"
},
{
"status": "affected",
"version": "21.15.23"
},
{
"status": "affected",
"version": "21.16.3"
},
{
"status": "affected",
"version": "21.16.c10"
},
{
"status": "affected",
"version": "21.16.d1"
},
{
"status": "affected",
"version": "21.15.28"
},
{
"status": "affected",
"version": "21.11.11"
},
{
"status": "affected",
"version": "21.15.30"
},
{
"status": "affected",
"version": "21.15.29"
},
{
"status": "affected",
"version": "21.13.18"
},
{
"status": "affected",
"version": "21.12.16"
},
{
"status": "affected",
"version": "21.17.5"
},
{
"status": "affected",
"version": "21.14.b18"
},
{
"status": "affected",
"version": "21.14.RH0"
},
{
"status": "affected",
"version": "21.14.b14"
},
{
"status": "affected",
"version": "6.6.7"
},
{
"status": "affected",
"version": "21.15.20"
},
{
"status": "affected",
"version": "21.15.32"
},
{
"status": "affected",
"version": "21.14.18"
},
{
"status": "affected",
"version": "21.6.b25"
},
{
"status": "affected",
"version": "21.17.2"
},
{
"status": "affected",
"version": "6.2.b15"
},
{
"status": "affected",
"version": "21.15.33"
},
{
"status": "affected",
"version": "21.13.19"
},
{
"status": "affected",
"version": "6.2.b14"
},
{
"status": "affected",
"version": "21.19.n1"
},
{
"status": "affected",
"version": "21.19.1"
},
{
"status": "affected",
"version": "21.19.0"
},
{
"status": "affected",
"version": "21.6.b26"
},
{
"status": "affected",
"version": "6.2.b16"
},
{
"status": "affected",
"version": "21.11.12"
},
{
"status": "affected",
"version": "21.18.3"
},
{
"status": "affected",
"version": "21.17.7"
},
{
"status": "affected",
"version": "21.14.12"
},
{
"status": "affected",
"version": "21.19.n2"
},
{
"status": "affected",
"version": "21.16.c11"
},
{
"status": "affected",
"version": "21.16.c12"
},
{
"status": "affected",
"version": "6.10.0"
},
{
"status": "affected",
"version": "21.16.4"
},
{
"status": "affected",
"version": "6.13.0"
},
{
"status": "affected",
"version": "21.13.16"
},
{
"status": "affected",
"version": "21.16.c13"
},
{
"status": "affected",
"version": "21.17.1"
},
{
"status": "affected",
"version": "21.17.6"
},
{
"status": "affected",
"version": "21.12.17"
},
{
"status": "affected",
"version": "21.11.10"
},
{
"status": "affected",
"version": "21.20.SV1"
},
{
"status": "affected",
"version": "21.11.14"
},
{
"status": "affected",
"version": "6.11.1"
},
{
"status": "affected",
"version": "21.17.0"
},
{
"status": "affected",
"version": "21.9.12"
},
{
"status": "affected",
"version": "21.20.1"
},
{
"status": "affected",
"version": "21.14.19"
},
{
"status": "affected",
"version": "21.14.c3"
},
{
"status": "affected",
"version": "21.15.18"
},
{
"status": "affected",
"version": "21.15.19"
},
{
"status": "affected",
"version": "21.15.16"
},
{
"status": "affected",
"version": "21.15.39"
},
{
"status": "affected",
"version": "6.6.6"
},
{
"status": "affected",
"version": "21.14.11"
},
{
"status": "affected",
"version": "21.14.b17"
},
{
"status": "affected",
"version": "21.14.16"
},
{
"status": "affected",
"version": "21.15.24"
},
{
"status": "affected",
"version": "21.6.b24"
},
{
"status": "affected",
"version": "21.16.c9"
},
{
"status": "affected",
"version": "21.16.c8"
},
{
"status": "affected",
"version": "6.8.1"
},
{
"status": "affected",
"version": "21.15.27"
},
{
"status": "affected",
"version": "21.15.26"
},
{
"status": "affected",
"version": "21.15.25"
},
{
"status": "affected",
"version": "21.17.4"
},
{
"status": "affected",
"version": "21.13.17"
},
{
"status": "affected",
"version": "6.9.5"
},
{
"status": "affected",
"version": "21.18.5"
},
{
"status": "affected",
"version": "21.15.40"
},
{
"status": "affected",
"version": "6.12.0"
},
{
"status": "affected",
"version": "21.18.2"
},
{
"status": "affected",
"version": "21.12.14"
},
{
"status": "affected",
"version": "21.16.d0"
},
{
"status": "affected",
"version": "21.14.20"
},
{
"status": "affected",
"version": "21.18.0"
},
{
"status": "affected",
"version": "21.15.37"
},
{
"status": "affected",
"version": "21.15.41"
},
{
"status": "affected",
"version": "21.18.4"
},
{
"status": "affected",
"version": "21.20.SV2"
},
{
"status": "affected",
"version": "21.20.SV3"
},
{
"status": "affected",
"version": "21.16.5"
},
{
"status": "affected",
"version": "21.20.SV5"
},
{
"status": "affected",
"version": "5.1.15"
},
{
"status": "affected",
"version": "21.19.3"
},
{
"status": "affected",
"version": "21.13.20"
},
{
"status": "affected",
"version": "21.14.b20"
},
{
"status": "affected",
"version": "21.15.7"
},
{
"status": "affected",
"version": "21.13.15"
},
{
"status": "affected",
"version": "21.15.11"
},
{
"status": "affected",
"version": "21.15.9"
},
{
"status": "affected",
"version": "21.15.0"
},
{
"status": "affected",
"version": "21.10.4"
},
{
"status": "affected",
"version": "21.12.12"
},
{
"status": "affected",
"version": "21.12.4"
},
{
"status": "affected",
"version": "21.12.8"
},
{
"status": "affected",
"version": "21.15.5"
},
{
"status": "affected",
"version": "21.13.8"
},
{
"status": "affected",
"version": "21.8.10"
},
{
"status": "affected",
"version": "21.14.6"
},
{
"status": "affected",
"version": "21.15.1"
},
{
"status": "affected",
"version": "21.8.11"
},
{
"status": "affected",
"version": "21.4.16"
},
{
"status": "affected",
"version": "21.9.11"
},
{
"status": "affected",
"version": "21.16.c0"
},
{
"status": "affected",
"version": "21.13.14"
},
{
"status": "affected",
"version": "21.13.4"
},
{
"status": "affected",
"version": "21.14.7"
},
{
"status": "affected",
"version": "21.14.8"
},
{
"status": "affected",
"version": "21.9.8"
},
{
"status": "affected",
"version": "21.16.c2"
},
{
"status": "affected",
"version": "21.15.10"
},
{
"status": "affected",
"version": "21.15.2"
},
{
"status": "affected",
"version": "21.15.6"
},
{
"status": "affected",
"version": "6.7.0"
},
{
"status": "affected",
"version": "21.13.6"
},
{
"status": "affected",
"version": "21.9.10"
},
{
"status": "affected",
"version": "21.14.1"
},
{
"status": "affected",
"version": "21.7.13"
},
{
"status": "affected",
"version": "21.11.8"
},
{
"status": "affected",
"version": "21.14.2"
},
{
"status": "affected",
"version": "21.14.0"
},
{
"status": "affected",
"version": "21.12.10"
},
{
"status": "affected",
"version": "21.9.9"
},
{
"status": "affected",
"version": "21.13.5"
},
{
"status": "affected",
"version": "21.13.2"
},
{
"status": "affected",
"version": "21.13.9"
},
{
"status": "affected",
"version": "21.13.10"
},
{
"status": "affected",
"version": "21.12.5"
},
{
"status": "affected",
"version": "21.12.9"
},
{
"status": "affected",
"version": "21.5.23"
},
{
"status": "affected",
"version": "21.14.10"
},
{
"status": "affected",
"version": "21.14.c2"
},
{
"status": "affected",
"version": "21.14.9"
},
{
"status": "affected",
"version": "21.11.6"
},
{
"status": "affected",
"version": "21.5.20"
},
{
"status": "affected",
"version": "21.13.12"
},
{
"status": "affected",
"version": "21.15.12"
},
{
"status": "affected",
"version": "6.9.2"
},
{
"status": "affected",
"version": "21.15.4"
},
{
"status": "affected",
"version": "21.13.11"
},
{
"status": "affected",
"version": "21.13.7"
},
{
"status": "affected",
"version": "21.10.5"
},
{
"status": "affected",
"version": "21.6.b19"
},
{
"status": "affected",
"version": "21.6.b23"
},
{
"status": "affected",
"version": "21.13.0"
},
{
"status": "affected",
"version": "21.6.14"
},
{
"status": "affected",
"version": "21.13.13"
},
{
"status": "affected",
"version": "21.4.17"
},
{
"status": "affected",
"version": "21.11.9"
},
{
"status": "affected",
"version": "21.11.2"
},
{
"status": "affected",
"version": "21.15.8"
},
{
"status": "affected",
"version": "21.16.2"
},
{
"status": "affected",
"version": "21.16.1"
},
{
"status": "affected",
"version": "21.16.c1"
},
{
"status": "affected",
"version": "21.5.21"
},
{
"status": "affected",
"version": "21.11.4"
},
{
"status": "affected",
"version": "21.6.b21"
},
{
"status": "affected",
"version": "21.14.a5"
},
{
"status": "affected",
"version": "21.10.3"
},
{
"status": "affected",
"version": "21.11.5"
},
{
"status": "affected",
"version": "21.13.3"
},
{
"status": "affected",
"version": "21.5.22"
},
{
"status": "affected",
"version": "21.12.7"
},
{
"status": "affected",
"version": "21.12.13"
},
{
"status": "affected",
"version": "21.12.6"
},
{
"status": "affected",
"version": "21.5.19"
},
{
"status": "affected",
"version": "21.6.b22"
},
{
"status": "affected",
"version": "21.11.7"
},
{
"status": "affected",
"version": "21.13.1"
},
{
"status": "affected",
"version": "21.14.a0"
},
{
"status": "affected",
"version": "21.14.4"
},
{
"status": "affected",
"version": "21.14.5"
},
{
"status": "affected",
"version": "21.5.24"
},
{
"status": "affected",
"version": "21.14.3"
},
{
"status": "affected",
"version": "21.16.0"
},
{
"status": "affected",
"version": "21.6.b20"
},
{
"status": "affected",
"version": "21.7.5"
},
{
"status": "affected",
"version": "21.15.3"
},
{
"status": "affected",
"version": "21.6.12"
},
{
"status": "affected",
"version": "21.8.5"
},
{
"status": "affected",
"version": "21.9.7"
},
{
"status": "affected",
"version": "21.12.11"
},
{
"status": "affected",
"version": "21.12.2"
},
{
"status": "affected",
"version": "6.2.b6"
},
{
"status": "affected",
"version": "21.8.4"
},
{
"status": "affected",
"version": "6.2.b5"
},
{
"status": "affected",
"version": "21.5.15"
},
{
"status": "affected",
"version": "21.8.1"
},
{
"status": "affected",
"version": "21.4.13"
},
{
"status": "affected",
"version": "21.10.0"
},
{
"status": "affected",
"version": "21.5.13"
},
{
"status": "affected",
"version": "21.9.0"
},
{
"status": "affected",
"version": "21.9.4"
},
{
"status": "affected",
"version": "21.4.9"
},
{
"status": "affected",
"version": "21.4.12"
},
{
"status": "affected",
"version": "21.11.3"
},
{
"status": "affected",
"version": "21.5.16"
},
{
"status": "affected",
"version": "21.7.9"
},
{
"status": "affected",
"version": "6.5.0"
},
{
"status": "affected",
"version": "21.4.8"
},
{
"status": "affected",
"version": "21.6.8"
},
{
"status": "affected",
"version": "21.6.5"
},
{
"status": "affected",
"version": "21.8.3"
},
{
"status": "affected",
"version": "21.6.10"
},
{
"status": "affected",
"version": "21.6.4"
},
{
"status": "affected",
"version": "21.7.8"
},
{
"status": "affected",
"version": "21.4.15"
},
{
"status": "affected",
"version": "21.4.11"
},
{
"status": "affected",
"version": "21.8.6"
},
{
"status": "affected",
"version": "21.8.ca1"
},
{
"status": "affected",
"version": "21.9.6"
},
{
"status": "affected",
"version": "21.4.7"
},
{
"status": "affected",
"version": "21.11.0"
},
{
"status": "affected",
"version": "21.11.1"
},
{
"status": "affected",
"version": "21.5.7"
},
{
"status": "affected",
"version": "6.2.b4"
},
{
"status": "affected",
"version": "21.7.7"
},
{
"status": "affected",
"version": "21.6.b14"
},
{
"status": "affected",
"version": "21.6.b13"
},
{
"status": "affected",
"version": "21.6.b15"
},
{
"status": "affected",
"version": "21.7.6"
},
{
"status": "affected",
"version": "21.6.6"
},
{
"status": "affected",
"version": "21.9.5"
},
{
"status": "affected",
"version": "21.5.9"
},
{
"status": "affected",
"version": "21.5.14"
},
{
"status": "affected",
"version": "21.8.8"
},
{
"status": "affected",
"version": "21.5.12"
},
{
"status": "affected",
"version": "21.8.0"
},
{
"status": "affected",
"version": "21.5.8"
},
{
"status": "affected",
"version": "21.7.10"
},
{
"status": "affected",
"version": "6.2.5"
},
{
"status": "affected",
"version": "21.8.9"
},
{
"status": "affected",
"version": "6.4.0"
},
{
"status": "affected",
"version": "21.6.b17"
},
{
"status": "affected",
"version": "21.6.b16"
},
{
"status": "affected",
"version": "21.6.11"
},
{
"status": "affected",
"version": "21.10.1"
},
{
"status": "affected",
"version": "21.4.10"
},
{
"status": "affected",
"version": "21.4.14"
},
{
"status": "affected",
"version": "21.6.9"
},
{
"status": "affected",
"version": "21.6.7"
},
{
"status": "affected",
"version": "21.12.3"
},
{
"status": "affected",
"version": "21.9.1"
},
{
"status": "affected",
"version": "21.9.2"
},
{
"status": "affected",
"version": "21.12.0"
},
{
"status": "affected",
"version": "21.7.12"
},
{
"status": "affected",
"version": "21.10.2"
},
{
"status": "affected",
"version": "21.8.7"
},
{
"status": "affected",
"version": "21.8.2"
},
{
"status": "affected",
"version": "21.5.6"
},
{
"status": "affected",
"version": "21.5.10"
},
{
"status": "affected",
"version": "21.6.13"
},
{
"status": "affected",
"version": "21.6.b18"
},
{
"status": "affected",
"version": "21.7.11"
},
{
"status": "affected",
"version": "21.7.1"
},
{
"status": "affected",
"version": "21.9.3"
},
{
"status": "affected",
"version": "21.7.0"
},
{
"status": "affected",
"version": "21.5.11"
},
{
"status": "affected",
"version": "21.5.17"
},
{
"status": "affected",
"version": "21.5.4"
},
{
"status": "affected",
"version": "21.7.3"
},
{
"status": "affected",
"version": "21.4.1"
},
{
"status": "affected",
"version": "21.4.3"
},
{
"status": "affected",
"version": "21.7.2"
},
{
"status": "affected",
"version": "21.4.5"
},
{
"status": "affected",
"version": "21.5.2"
},
{
"status": "affected",
"version": "21.6.3"
},
{
"status": "affected",
"version": "21.6.0"
},
{
"status": "affected",
"version": "21.6.2"
},
{
"status": "affected",
"version": "21.5.5"
},
{
"status": "affected",
"version": "21.4.6"
},
{
"status": "affected",
"version": "21.4.0"
},
{
"status": "affected",
"version": "21.4.2"
},
{
"status": "affected",
"version": "21.4.4"
},
{
"status": "affected",
"version": "21.7.4"
},
{
"status": "affected",
"version": "21.5.0"
},
{
"status": "affected",
"version": "21.5.1"
},
{
"status": "affected",
"version": "21.6.1"
},
{
"status": "affected",
"version": "21.5.3"
},
{
"status": "affected",
"version": "21.19.n14"
},
{
"status": "affected",
"version": "21.25.3"
},
{
"status": "affected",
"version": "21.23.11"
},
{
"status": "affected",
"version": "21.23.b3"
},
{
"status": "affected",
"version": "21.20.c22"
},
{
"status": "affected",
"version": "21.20.27"
},
{
"status": "affected",
"version": "21.23.n7"
},
{
"status": "affected",
"version": "21.20.26"
},
{
"status": "affected",
"version": "21.23.12"
},
{
"status": "affected",
"version": "21.20.28"
},
{
"status": "affected",
"version": "21.22.ua5"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in Cisco\u0026nbsp;RCM for Cisco\u0026nbsp;StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges\u0026nbsp;in the context of the configured container.\r\n\r\nThis vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.\r\nThe attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.\r\nCisco\u0026nbsp;has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-489",
"description": "Active Debug Code",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-15T15:59:07.107Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-rcm-vuls-7cS3Nuq",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rcm-vuls-7cS3Nuq"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-FmbPu2pe"
},
{
"name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tetr-cmd-injc-skrwGO"
}
],
"source": {
"advisory": "cisco-sa-rcm-vuls-7cS3Nuq",
"defects": [
"CSCvy80878"
],
"discovery": "INTERNAL"
},
"title": "Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2022-20649",
"datePublished": "2024-11-15T15:59:07.107Z",
"dateReserved": "2021-11-02T13:28:29.035Z",
"dateUpdated": "2024-11-15T19:41:58.793Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…