CVE-2022-20818

{"id": "CVE-2022-20818", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2022-09-30T19:15:11.867", "references": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-25"}]}], "descriptions": [{"lang": "en", "value": "Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabilities by running a malicious command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades en la CLI del software Cisco SD-WAN podr\u00edan permitir a un atacante local autenticado conseguir altos privilegios. Estas vulnerabilidades son debido a controles de acceso inapropiados en los comandos dentro de la aplicaci\u00f3n CLI. Un atacante podr\u00eda explotar estas vulnerabilidades al ejecutar un comando malicioso en la CLI de la aplicaci\u00f3n. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante ejecutar comandos arbitrarios como usuario root"}], "lastModified": "2023-11-07T03:43:02.297", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "907DC50A-5624-413C-A61F-157B2B1E52BE", "versionEndExcluding": "20.9"}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vmanage:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F48596B-7315-4FF0-A91A-25B6AA94955B", "versionEndExcluding": "20.9"}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vsmart_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6AC232B-0AF3-4B67-B080-72944C42CAE9", "versionEndExcluding": "20.9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:catalyst_8000v_edge:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CF365FC4-46E3-4564-9F25-1C2FBE70057B"}, {"criteria": "cpe:2.3:a:cisco:catalyst_cg418-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "36AFCB37-1760-4808-AEA5-875F45C05464"}, {"criteria": "cpe:2.3:a:cisco:catalyst_cg522-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C146F67C-0FCF-4C5C-B6B8-D67746E69CFB"}, {"criteria": "cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0F77CD6A-83DA-4F31-A128-AD6DAECD623B"}, {"criteria": "cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2D2305B-B69E-4F74-A44E-07B3205CE9F7"}, {"criteria": "cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2B68B363-3C57-4E95-8B13-0F9B59D551F7"}, {"criteria": "cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26DD41B3-1D1D-44D3-BA8E-5A66AFEE77E6"}, {"criteria": "cpe:2.3:h:cisco:1100_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1952B64C-4AE0-4CCB-86C5-8D1FF6A12822"}, {"criteria": "cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5AAD4397-6DCF-493A-BD61-3A890F6F3AB2"}, {"criteria": "cpe:2.3:h:cisco:1101_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5EB8A757-7888-4AC2-BE44-B89DB83C6C77"}, {"criteria": "cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3F2F0A8E-97F6-41AC-BE67-4B2D60F9D36B"}, {"criteria": "cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB9229F3-7BCE-46C4-9879-D57B5BAAE44E"}, {"criteria": "cpe:2.3:h:cisco:1109_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B80890A8-E3D3-462C-B125-9E9BC6525B02"}, {"criteria": "cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A5A606FE-E6F1-43F9-B1CD-D9DF35FC3573"}, {"criteria": "cpe:2.3:h:cisco:1111x_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0547E196-5991-4C33-823A-342542E9DFD3"}, {"criteria": "cpe:2.3:h:cisco:111x_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "802CBFC1-8A2F-4BF7-A1D3-00622C33BE16"}, {"criteria": "cpe:2.3:h:cisco:1120_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7AFE0FC1-EEBC-42F0-88B0-4AF5B76DDD97"}, {"criteria": "cpe:2.3:h:cisco:1131_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F3F374DC-B9F7-4515-A064-01BB436CA984"}, {"criteria": "cpe:2.3:h:cisco:1160_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D916389F-54DB-44CB-91DD-7CE3C7059350"}, {"criteria": "cpe:2.3:h:cisco:4000_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CE82335E-ECEC-47BD-BC4A-5FDEA08D1A18"}, {"criteria": "cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6C8AED7C-DDA3-4C29-BB95-6518C02C551A"}, {"criteria": "cpe:2.3:h:cisco:4321\\/k9-rf_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "05C90C43-2D7D-43F8-AD7F-421878909AE2"}, {"criteria": "cpe:2.3:h:cisco:4321\\/k9-ws_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "445597DA-7EEC-470D-9A71-BC43A9F7DE5E"}, {"criteria": "cpe:2.3:h:cisco:4321\\/k9_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "86049773-C88D-4A26-A0D3-D40F3C312AEC"}, {"criteria": "cpe:2.3:h:cisco:4321_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9421DBEF-AE42-4234-B49F-FCC34B804D7F"}, {"criteria": "cpe:2.3:h:cisco:4331\\/k9-rf_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6AB4B7C2-4D45-4267-BCBB-57D36C6104A3"}, {"criteria": "cpe:2.3:h:cisco:4331\\/k9-ws_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3B8A4630-8B21-4994-8EF5-E105593A64E5"}, {"criteria": "cpe:2.3:h:cisco:4331\\/k9_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F799DC02-EB06-458C-8545-A174475FE7A2"}, {"criteria": "cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5419CB9F-241F-4431-914F-2659BE27BEA5"}, {"criteria": "cpe:2.3:h:cisco:4351\\/k9-rf_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B89FBA68-A8ED-4C5A-916E-A68468F59730"}, {"criteria": "cpe:2.3:h:cisco:4351\\/k9-ws_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD272E6E-2ED1-4408-8FF7-0B82F9DCBEF8"}, {"criteria": "cpe:2.3:h:cisco:4351\\/k9_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DC278B77-AD63-42AD-B9E8-EE4DE97E27E9"}, {"criteria": "cpe:2.3:h:cisco:4351_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7DE02DBE-EAD5-4F37-8AB7-DF46A605A0E2"}, {"criteria": "cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5720462A-BE6B-4E84-A1A1-01E80BBA86AD"}, {"criteria": "cpe:2.3:h:cisco:4451-x_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "818CEFA6-208C-43C3-8E43-474A93ADCF21"}, {"criteria": "cpe:2.3:h:cisco:4451_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "82225D40-537F-41D2-B1C4-1B7D06466B06"}, {"criteria": "cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E8B60888-6E2B-494E-AC65-83337661EE7D"}, {"criteria": "cpe:2.3:h:cisco:8101-32fh:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E055F58F-F9FB-4B27-841E-61ECAB5F42B8"}, {"criteria": "cpe:2.3:h:cisco:8101-32h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2B832863-E366-46ED-BC35-838762F0CE29"}, {"criteria": "cpe:2.3:h:cisco:8102-64h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A3C3DDAC-7D0F-4D1D-9632-F001F2EB5D34"}, {"criteria": "cpe:2.3:h:cisco:8201:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3D8E7FFF-82A8-4ECB-BA0C-CBF0C2FDA3A3"}, {"criteria": "cpe:2.3:h:cisco:8201-32fh:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "528BE0D3-E5ED-4836-B0D8-0C8508C5BDD7"}, {"criteria": "cpe:2.3:h:cisco:8202:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "87DC4C2F-01C5-4D89-8D79-E5D28EDAD0F2"}, {"criteria": "cpe:2.3:h:cisco:8804:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6655851F-58D9-49D9-A56E-8440A7F7BB45"}, {"criteria": "cpe:2.3:h:cisco:8808:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F5E2AE67-DED3-4414-A194-386ADB2C8DC7"}, {"criteria": "cpe:2.3:h:cisco:8812:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3920133A-684D-4A9F-B65A-FF4EAE5052E5"}, {"criteria": "cpe:2.3:h:cisco:8818:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9ED06361-5A68-4656-AEA5-240C290594CD"}, {"criteria": "cpe:2.3:h:cisco:8831:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BE2514A1-486C-40F7-8746-56E2B973CBE6"}, {"criteria": "cpe:2.3:h:cisco:asr_1000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "91209C16-A620-44A0-9134-8AA456343F29"}, {"criteria": "cpe:2.3:h:cisco:asr_1000-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FE2182E7-C813-4966-A36C-E648A9344299"}, {"criteria": "cpe:2.3:h:cisco:asr_1001:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ED7C321E-F083-4AB6-96A0-D6358980441E"}, {"criteria": "cpe:2.3:h:cisco:asr_1001-hx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7594E307-AC80-41EC-AE94-07E664A7D701"}, {"criteria": "cpe:2.3:h:cisco:asr_1001-hx_r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "33208B25-0CBB-4E31-A892-60B7B5625155"}, {"criteria": "cpe:2.3:h:cisco:asr_1001-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "09C913FF-63D5-43FB-8B39-598EF436BA5A"}, {"criteria": "cpe:2.3:h:cisco:asr_1001-x_r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "241EEBD9-76E4-4AE6-96B8-1C1ACD834F17"}, {"criteria": "cpe:2.3:h:cisco:asr_1002:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E4376E56-A21C-4642-A85D-439C8E21CD7F"}, {"criteria": "cpe:2.3:h:cisco:asr_1002-hx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD2794BD-C8CE-46EF-9857-1723FCF04E46"}, {"criteria": "cpe:2.3:h:cisco:asr_1002-hx_r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CC03A84F-C8F2-4225-9A00-8FA35368CD57"}, {"criteria": "cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "444F688F-79D0-4F22-B530-7BD520080B8F"}, {"criteria": "cpe:2.3:h:cisco:asr_1002-x_r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "51F2A755-556C-4C5E-8622-96D124319AF7"}, {"criteria": "cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "55DD2272-10C2-43B9-9F13-6DC41DBE179B"}, {"criteria": "cpe:2.3:h:cisco:asr_1006:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7428E0A8-1641-47FB-9CA9-34311DEF660D"}, {"criteria": "cpe:2.3:h:cisco:asr_1006-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE7401B7-094C-46EB-9869-2F0372E8B26B"}, {"criteria": "cpe:2.3:h:cisco:asr_1009-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8D8A72FD-D8B0-45B5-8FAD-6D8395BB218A"}, {"criteria": "cpe:2.3:h:cisco:asr_1013:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "854D9594-FE84-4E7B-BA21-A3287F2DC302"}, {"criteria": "cpe:2.3:h:cisco:asr_1023:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C81CC6E3-B989-4730-820E-46734E3E608D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE9EABE0-5FB0-4277-A389-87732E750B7C"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "72BBF8E8-7AD9-46B8-8B02-F0DB1F95E1CD"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5E7E8914-7B25-4097-8B22-6928C1F03D5A"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B207857B-C483-47DF-9FC7-6A05B866BF60"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD26746A-80D1-4C48-BF77-E9F7EEEF7EA7"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BDB16CCE-1E89-4707-86C1-97F2FB5B62B9"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7A82CE19-C3C4-4FAD-A1B3-AB91EDB61591"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8500-4qc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A1DBA393-232D-40E6-9CDB-DF82D2E7A5B6"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8500l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "04AB61E9-0148-495E-BD21-64D52DE60A6C"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8510csr:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "85D2C587-E95B-4E74-88CF-5930072258D3"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8510msr:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3D1BB0B-0EFE-4C6D-A18E-3E48ABA01F00"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8540csr:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "74270062-2030-45A0-9C93-C1F3B7C88E8B"}, {"criteria": "cpe:2.3:h:cisco:catalyst_8540msr:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0F403859-F034-4DD9-9CA5-708EADECB380"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:sd-wan:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "070EBD00-E21A-4510-BE38-A935E788FA39", "versionEndExcluding": "20.9"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}