Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2022-20821

Disclosure Date: May 20, 2022 •

CVE-2022-20821 CVSS v3 Base Score: 6.5

Exploited in the Wild

Reported by carlosevieira and 1 more...
View Source Details

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote attacker to access the Redis instance that is running within the NOSi container. This vulnerability exists because the health check RPM opens TCP port 6379 by default upon activation. An attacker could exploit this vulnerability by connecting to the Redis instance on the open port. A successful exploit could allow the attacker to write to the Redis in-memory database, write arbitrary files to the container filesystem, and retrieve information about the Redis database. Given the configuration of the sandboxed container that the Redis instance runs in, a remote attacker would be unable to execute remote code or abuse the integrity of the Cisco IOS XR Software host system.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

6.5 Medium

Impact Score:

2.5

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

Low

Integrity (I):

Low

Availability (A):

None

Vendors

cisco

Products

ios xr -

Exploited in the Wild

Reported by:

carlosevieira indicated source as Vendor Advisory (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-redis-ABJyE5xK)

Reported: May 22, 2022 12:08am UTC (2 years ago)

gwillcox-r7 indicated sources as

Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)
News Article or Blog (https://securityaffairs.co/wordpress/131516/security/cisco-ios-xr-flaw.html)

Reported: May 23, 2022 9:40pm UTC (2 years ago) • Edited 2 years ago

References

Canonical

CVE-2022-20821 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20821)

Advisory

20220520 Cisco IOS XR Software Health Check Open Port Vulnerability (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-redis-ABJyE5xK)

Rapid7

Unknown

CVE-2022-20821

Unknown

Unknown

None

None

Network

CVE-2022-20821

Description