Vulnslist

find the latest Cisco vulnerabilities

Cisco Web Security Appliance Authenticated Command Injection and Privilege Escalation Vulnerability

cisco-sa-20170719-wsa2 · Medium · Published · Updated

A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to perform command injection and elevate privileges to root. The attacker must authenticate with valid operator-level or administrator-level credentials. The vulnerability is due to insufficient validation of user-supplied input in the CLI parser. An attacker could exploit this vulnerability by authenticating to the affected device and performing command injection over the CLI. An exploit could allow the attacker to escape from the CLI subshell and execute system-level commands on the underlying operating system as root. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170719-wsa2

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2017-6748
Cisco Bug IDsCSCvd88855
CVSS ScoreBase 6.7
Base 6.7 CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco Web Security Appliance (WSA), Cisco Web Security Virtual Appliance, Cisco Secure Web Appliance

Related Products

Product CVE Evidence
Cisco Web Security Virtual Appliance CVE-2017-6748 Cisco OpenVuln
Cisco Web Security Appliance (WSA) CVE-2017-6748 Cisco OpenVuln
Cisco Secure Web Appliance CVE-2017-6748 Cisco OpenVuln