CVE-2022-20940

{"id": "CVE-2022-20940", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2022-11-15T21:15:34.650", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tls-bb-rCgtmY2", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-203"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-203"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain access to sensitive information.\r\n\r This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher attack on a device that uses SSL decryption policies. An attacker could exploit this vulnerability by sending crafted TLS messages to an affected device, which would act as an oracle and allow the attacker to carry out a chosen-ciphertext attack. A successful exploit could allow the attacker to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions to the affected device."}, {"lang": "es", "value": "Una vulnerabilidad en el controlador TLS del software Cisco Firepower Threat Defense (FTD) podr\u00eda permitir que un atacante remoto no autenticado obtenga acceso a informaci\u00f3n confidencial. Esta vulnerabilidad se debe a la implementaci\u00f3n inadecuada de contramedidas contra un ataque Bleichenbacher en un dispositivo que utiliza pol\u00edticas de descifrado SSL. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando mensajes TLS manipulados a un dispositivo afectado, lo que actuar\u00eda como un or\u00e1culo y permitir\u00eda al atacante llevar a cabo un ataque de texto cifrado elegido. Un exploit exitoso podr\u00eda permitir al atacante realizar operaciones criptoanal\u00edticas que podr\u00edan permitir el descifrado de sesiones TLS previamente capturadas en el dispositivo afectado."}], "lastModified": "2024-01-25T17:15:20.583", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D58D7217-F6F5-4B58-B59C-E5C8781C87A9", "versionEndIncluding": "6.2.3.18", "versionStartIncluding": "6.2.3"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDE0C110-518D-4E51-BCEB-F4E9FC448278", "versionEndIncluding": "6.3.0.5", "versionStartIncluding": "6.3.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3D91A5E-EAB7-4E45-A2CE-09BAD45414D4", "versionEndIncluding": "6.4.0.14", "versionStartIncluding": "6.4.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "171E1C5D-68C5-4BBC-AE18-D1518A1B7277", "versionEndIncluding": "6.5.0.5", "versionStartIncluding": "6.5.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1110632C-526F-4025-A7BE-0CF9F37E5F9E", "versionEndIncluding": "6.7.0.3", "versionStartIncluding": "6.7.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89DFD86B-768D-4301-92DB-B73C14255123", "versionEndIncluding": "7.0.3", "versionStartIncluding": "7.0.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCD69468-8067-4A5D-B2B0-EC510D889AA0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20AE4051-FA3B-4F0B-BD3D-083A14269FF6"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46A42D07-FF3E-41B4-BA39-3A5BDA4E0E61"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3985EA37-2B77-45F2-ABA5-5CCC7B35CA2E"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67FB5ABE-3C40-4C58-B91F-0621C2180FAC"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53909FD6-EC74-4D2F-99DA-26E70400B53F"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55FE024D-0D43-40AD-9645-8C54ECF17824"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.6.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC411A8D-CD39-46F5-B8FC-6753E618FAEC"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:7.1.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7533780-0DF9-41BE-8455-F60676785689"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:7.1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "469EA365-DED5-4436-AAC2-5553529DE700"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:7.1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D94F400-5A35-41F5-B37F-E9DA6F87ED8E"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}