Cisco Firepower Management Center Software Command Injection Vulnerabilities
Información sobre el sistema

Software afectado	Cisco
Descripción
Multiple vulnerabilities in the web management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. These vulnerabilities are due to insufficient validation of user-supplied parameters for certain API endpoints. An attacker could exploit these vulnerabilities by sending crafted input to an affected API endpoint. A successful exploit could allow an attacker to execute More info: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-Z3B5MY35?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Firepower%20Management%20Center%20Software%20Command%20Injection%20Vulnerabilities&vs_k=1
Identificadores estándar
Propiedad	Valor
CVE	CVE-2022-20925 and CVE-2022-20926.

TRABAJAMOS PARA FORTALECER LA CIBERSEGURIDAD DE ESPAÑA

Ayudamos a mejorar las capacidades de prevención, detección y respuesta a ciberamenazas de la Administración Pública. Impulsamos la creación de un ciberescudo único para nuestro país.