CVE-2023-20114

A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to download arbitrary files from an affected system. This vulnerability is due to a lack of input sanitation. An attacker could exploit this vulnerability by sending a crafted HTTPS request. A successful exploit could allow the attacker to download arbitrary files from the affected system.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-file-download-7js4ug2J	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::
	cpe:2.3:a:cisco:firepower_management_center::::::::

History

25 Jan 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-11-01 17:15

Updated : 2024-02-05 00:01

NVD link : CVE-2023-20114

Mitre link : CVE-2023-20114

CVE.ORG link : CVE-2023-20114

JSON object : View

Products Affected

cisco

firepower_management_center

CWE

CWE-20

Improper Input Validation

CWE-73

External Control of File Name or Path

{"id": "CVE-2023-20114", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2023-11-01T17:15:11.147", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-file-download-7js4ug2J", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-73"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to download arbitrary files from an affected system. This vulnerability is due to a lack of input sanitation. An attacker could exploit this vulnerability by sending a crafted HTTPS request. A successful exploit could allow the attacker to download arbitrary files from the affected system."}, {"lang": "es", "value": "Una vulnerabilidad en la funci\u00f3n de descarga de archivos del software Cisco Firepower Management Center (FMC) podr\u00eda permitir que un atacante remoto autenticado descargue archivos arbitrarios de un sistema afectado. Esta vulnerabilidad se debe a la falta de sanitizaci\u00f3n de entrada. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando una solicitud HTTPS manipulada. Un exploit exitoso podr\u00eda permitir al atacante descargar archivos arbitrarios del sistema afectado."}], "lastModified": "2024-01-25T17:15:30.717", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6BF3D02-3BA0-4736-B78D-3634E3E91623", "versionEndIncluding": "6.2.3.18", "versionStartIncluding": "6.2.3"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FBA1598-02FE-4855-8449-E2FF06EF8276", "versionEndIncluding": "6.4.0.16", "versionStartIncluding": "6.4.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF3259C7-8F36-46B1-A1BA-C2F9AC165A2D", "versionEndIncluding": "6.6.7.1", "versionStartIncluding": "6.6.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BE29E8B-5D64-4CF6-B8CB-A38E991A9BB9", "versionEndIncluding": "7.0.5", "versionStartIncluding": "7.0.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "749D90E8-9009-4F05-8C5E-2521A9BC7D32", "versionEndIncluding": "7.1.0.3", "versionStartIncluding": "7.1.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D44E33FB-20A2-448B-A901-3BD383E45F2B", "versionEndIncluding": "7.2.3.1", "versionStartIncluding": "7.2.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E355BD8E-18E7-4405-8F32-0A191DCE0774", "versionEndIncluding": "7.3.1.1", "versionStartIncluding": "7.3.0"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}