CVE-2020-3550

A vulnerability in the sfmgr daemon of Cisco Firepower Management Center (FMC) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to perform directory traversal and access directories outside the restricted path. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using a relative path in specific sfmgr commands. An exploit could allow the attacker to read or write arbitrary files on an sftunnel-connected peer device.

Severity	HIGH
CVSS	8.1
CWE	CWE-22
KEV
Published	5 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco Secure Firewall Threat Defense Virtual	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Secure Firewall Threat Defense (FTD) Software	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Secure Firewall Management Center (FMC) Appliances	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Secure Firewall Management Center (FMC)	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower Threat Defense Software	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower Management Center	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower 9000 Series	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower 4100 Series	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower 2100 Series	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco Firepower 1000 Series	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco ASA 5500-X Series Firewalls	cisco-sa-ftdfmc-dirtrav-NW8XcuSB
Cisco 3000 Series Industrial Security Appliances (ISA)	cisco-sa-ftdfmc-dirtrav-NW8XcuSB