Vulnslist

find the latest Cisco vulnerabilities

CVE-2020-3457

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to execute commands on the underlying operating system with root privileges.

SeverityMEDIUM
CVSS6.7
CWECWE-78
KEV
Published
Modified

Related Products

Product Advisory Evidence
Firepower Extensible Operating System cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower Threat Defense Software cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower Extensible Operating System cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower 9000 Series cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower 4100 Series cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower 2100 Series cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Firepower 1000 Series cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software cisco-sa-fxos-cmdinj-pqZvmXCr Cisco OpenVuln