Unknown
CVE-2022-20726
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2022-20726
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being authenticated, or conduct a cross-site scripting (XSS) attack against a user of the affected software. For more information about these vulnerabilities, see the Details section of this advisory.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- cisco
Products
- cgr1000 compute module,
- ic3000 industrial compute gateway,
- ios,
- ios 15.2(5)e1,
- ios 15.2(5)e2c,
- ios 15.2(6)e0a,
- ios 15.2(6)e1,
- ios 15.2(6)e2a,
- ios 15.2(7)e,
- ios 15.2(7)e0b,
- ios 15.2(7)e0s,
- ios 15.6(1)t1,
- ios 15.6(1)t2,
- ios 15.6(1)t3,
- ios 15.6(2)t,
- ios 15.6(2)t1,
- ios 15.6(2)t2,
- ios 15.6(2)t3,
- ios 15.6(3)m,
- ios 15.6(3)m0a,
- ios 15.6(3)m1,
- ios 15.6(3)m1b,
- ios 15.6(3)m2,
- ios 15.6(3)m3,
- ios 15.6(3)m3a,
- ios 15.6(3)m4,
- ios 15.6(3)m5,
- ios 15.6(3)m6,
- ios 15.6(3)m6a,
- ios 15.6(3)m6b,
- ios 15.6(3)m7,
- ios 15.6(3)m8,
- ios 15.7(3)m,
- ios 15.7(3)m0a,
- ios 15.7(3)m1,
- ios 15.7(3)m2,
- ios 15.7(3)m3,
- ios 15.7(3)m4,
- ios 15.7(3)m4a,
- ios 15.7(3)m4b,
- ios 15.7(3)m5,
- ios 15.7(3)m6,
- ios 15.8(3)m,
- ios 15.8(3)m0a,
- ios 15.8(3)m1,
- ios 15.8(3)m2,
- ios 15.8(3)m2a,
- ios 15.8(3)m3,
- ios 15.8(3)m4,
- ios 15.8(3)m5,
- ios 15.8(3)m6,
- ios 15.8(3)m7,
- ios 15.9(3)m,
- ios 15.9(3)m1,
- ios 15.9(3)m2,
- ios 15.9(3)m2a,
- ios 15.9(3)m3,
- ios 15.9(3)m4,
- ios 15.9(3)m4a
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below: