CVE-2019-12699

Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute commands on the underlying operating system (OS) with root privileges. These vulnerabilities are due to insufficient input validation. An attacker could exploit these vulnerabilities by including crafted arguments to specific CLI commands. A successful exploit could allow the attacker to execute commands on the underlying OS with root privileges.

Severity	HIGH
CVSS	7.8
CWE	CWE-20
KEV
Published	6 years ago
Modified	1 year ago

Related Products

Product	Advisory	Evidence
Firepower Extensible Operating System	cisco-sa-20191002-fxos-cmd-inject	Cisco OpenVuln
Cisco Firepower Threat Defense Software for Firepower 1000/2100 Series	cisco-sa-20191002-fxos-cmd-inject	Cisco OpenVuln
Cisco Firepower Threat Defense Software	cisco-sa-20191002-fxos-cmd-inject	Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS)	cisco-sa-20191002-fxos-cmd-inject	Cisco OpenVuln
Cisco Firepower Extensible Operating System	cisco-sa-20191002-fxos-cmd-inject	Cisco OpenVuln