CVE-2022-20851

7.2

HIGH

"Cisco IOS XE Software Web UI Command Injection Vulnerability"

Description

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI API. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges. To exploit this vulnerability, an attacker must have valid Administrator privileges on the affected device.

INFO

Published Date :

Sept. 30, 2022, 7:15 p.m.

Last Modified :

Nov. 21, 2024, 6:43 a.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

5.9

Exploitability Score :

1.2 Public PoC/Exploit Available at Github

CVE-2022-20851 has a 1 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2022-20851 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Cisco	ios_xe
2	Cisco	catalyst_8500
3	Cisco	catalyst_8510csr
4	Cisco	catalyst_8510msr
5	Cisco	catalyst_8540csr
6	Cisco	catalyst_8540msr
7	Cisco	asr_1001
8	Cisco	asr_1002
9	Cisco	asr_1002-x
10	Cisco	asr_1002_fixed_router
11	Cisco	asr_1004
12	Cisco	asr_1006
13	Cisco	asr_1013
14	Cisco	catalyst_3650
15	Cisco	catalyst_3650-12x48fd-e
16	Cisco	catalyst_3650-12x48fd-l
17	Cisco	catalyst_3650-12x48fd-s
18	Cisco	catalyst_3650-12x48uq
19	Cisco	catalyst_3650-12x48uq-e
20	Cisco	catalyst_3650-12x48uq-l
21	Cisco	catalyst_3650-12x48uq-s
22	Cisco	catalyst_3650-12x48ur
23	Cisco	catalyst_3650-12x48ur-e
24	Cisco	catalyst_3650-12x48ur-l
25	Cisco	catalyst_3650-12x48ur-s
26	Cisco	catalyst_3650-12x48uz
27	Cisco	catalyst_3650-12x48uz-e
28	Cisco	catalyst_3650-12x48uz-l
29	Cisco	catalyst_3650-12x48uz-s
30	Cisco	catalyst_3650-24pd
31	Cisco	catalyst_3650-24pd-e
32	Cisco	catalyst_3650-24pd-l
33	Cisco	catalyst_3650-24pd-s
34	Cisco	catalyst_3650-24pdm
35	Cisco	catalyst_3650-24pdm-e
36	Cisco	catalyst_3650-24pdm-l
37	Cisco	catalyst_3650-24pdm-s
38	Cisco	catalyst_3650-24ps-e
39	Cisco	catalyst_3650-24ps-l
40	Cisco	catalyst_3650-24ps-s
41	Cisco	catalyst_3650-24td-e
42	Cisco	catalyst_3650-24td-l
43	Cisco	catalyst_3650-24td-s
44	Cisco	catalyst_3650-24ts-e
45	Cisco	catalyst_3650-24ts-l
46	Cisco	catalyst_3650-24ts-s
47	Cisco	catalyst_3650-48fd-e
48	Cisco	catalyst_3650-48fd-l
49	Cisco	catalyst_3650-48fd-s
50	Cisco	catalyst_3650-48fq
51	Cisco	catalyst_3650-48fq-e
52	Cisco	catalyst_3650-48fq-l
53	Cisco	catalyst_3650-48fq-s
54	Cisco	catalyst_3650-48fqm
55	Cisco	catalyst_3650-48fqm-e
56	Cisco	catalyst_3650-48fqm-l
57	Cisco	catalyst_3650-48fqm-s
58	Cisco	catalyst_3650-48fs-e
59	Cisco	catalyst_3650-48fs-l
60	Cisco	catalyst_3650-48fs-s
61	Cisco	catalyst_3650-48pd-e
62	Cisco	catalyst_3650-48pd-l
63	Cisco	catalyst_3650-48pd-s
64	Cisco	catalyst_3650-48pq-e
65	Cisco	catalyst_3650-48pq-l
66	Cisco	catalyst_3650-48pq-s
67	Cisco	catalyst_3650-48ps-e
68	Cisco	catalyst_3650-48ps-l
69	Cisco	catalyst_3650-48ps-s
70	Cisco	catalyst_3650-48td-e
71	Cisco	catalyst_3650-48td-l
72	Cisco	catalyst_3650-48td-s
73	Cisco	catalyst_3650-48tq-e
74	Cisco	catalyst_3650-48tq-l
75	Cisco	catalyst_3650-48tq-s
76	Cisco	catalyst_3650-48ts-e
77	Cisco	catalyst_3650-48ts-l
78	Cisco	catalyst_3650-48ts-s
79	Cisco	catalyst_3650-8x24pd-e
80	Cisco	catalyst_3650-8x24pd-l
81	Cisco	catalyst_3650-8x24pd-s
82	Cisco	catalyst_3650-8x24uq
83	Cisco	catalyst_3650-8x24uq-e
84	Cisco	catalyst_3650-8x24uq-l
85	Cisco	catalyst_3650-8x24uq-s
86	Cisco	catalyst_3850
87	Cisco	catalyst_3850-12s-e
88	Cisco	catalyst_3850-12s-s
89	Cisco	catalyst_3850-12x48u
90	Cisco	catalyst_3850-12xs-e
91	Cisco	catalyst_3850-12xs-s
92	Cisco	catalyst_3850-16xs-e
93	Cisco	catalyst_3850-16xs-s
94	Cisco	catalyst_3850-24p-e
95	Cisco	catalyst_3850-24p-l
96	Cisco	catalyst_3850-24p-s
97	Cisco	catalyst_3850-24pw-s
98	Cisco	catalyst_3850-24s-e
99	Cisco	catalyst_3850-24s-s
100	Cisco	catalyst_3850-24t-e
101	Cisco	catalyst_3850-24t-l
102	Cisco	catalyst_3850-24t-s
103	Cisco	catalyst_3850-24u
104	Cisco	catalyst_3850-24u-e
105	Cisco	catalyst_3850-24u-l
106	Cisco	catalyst_3850-24u-s
107	Cisco	catalyst_3850-24xs
108	Cisco	catalyst_3850-24xs-e
109	Cisco	catalyst_3850-24xs-s
110	Cisco	catalyst_3850-24xu
111	Cisco	catalyst_3850-24xu-e
112	Cisco	catalyst_3850-24xu-l
113	Cisco	catalyst_3850-24xu-s
114	Cisco	catalyst_3850-32xs-e
115	Cisco	catalyst_3850-32xs-s
116	Cisco	catalyst_3850-48f-e
117	Cisco	catalyst_3850-48f-l
118	Cisco	catalyst_3850-48f-s
119	Cisco	catalyst_3850-48p-e
120	Cisco	catalyst_3850-48p-l
121	Cisco	catalyst_3850-48p-s
122	Cisco	catalyst_3850-48pw-s
123	Cisco	catalyst_3850-48t-e
124	Cisco	catalyst_3850-48t-l
125	Cisco	catalyst_3850-48t-s
126	Cisco	catalyst_3850-48u
127	Cisco	catalyst_3850-48u-e
128	Cisco	catalyst_3850-48u-l
129	Cisco	catalyst_3850-48u-s
130	Cisco	catalyst_3850-48xs
131	Cisco	catalyst_3850-48xs-e
132	Cisco	catalyst_3850-48xs-f-e
133	Cisco	catalyst_3850-48xs-f-s
134	Cisco	catalyst_3850-48xs-s
135	Cisco	catalyst_3850-nm-2-40g
136	Cisco	catalyst_3850-nm-8-10g
137	Cisco	8201
138	Cisco	8202
139	Cisco	1100-4g_integrated_services_router
140	Cisco	1100-4p_integrated_services_router
141	Cisco	1100-6g_integrated_services_router
142	Cisco	1100-8p_integrated_services_router
143	Cisco	1100_integrated_services_router
144	Cisco	1101-4p_integrated_services_router
145	Cisco	1101_integrated_services_router
146	Cisco	1109-2p_integrated_services_router
147	Cisco	1109-4p_integrated_services_router
148	Cisco	1109_integrated_services_router
149	Cisco	1111x-8p_integrated_services_router
150	Cisco	111x_integrated_services_router
151	Cisco	1120_integrated_services_router
152	Cisco	1131_integrated_services_router
153	Cisco	1160_integrated_services_router
154	Cisco	4000_integrated_services_router
155	Cisco	4221_integrated_services_router
156	Cisco	8101-32fh
157	Cisco	8101-32h
158	Cisco	8102-64h
159	Cisco	8201-32fh
160	Cisco	8800_12-slot
161	Cisco	8800_18-slot
162	Cisco	8800_4-slot
163	Cisco	8800_8-slot
164	Cisco	8804
165	Cisco	8808
166	Cisco	8812
167	Cisco	8818
168	Cisco	asr_1000-esp100
169	Cisco	asr_1001-hx
170	Cisco	asr_1001-hx_r
171	Cisco	asr_1001-x
172	Cisco	asr_1001-x_r
173	Cisco	asr_1002-hx
174	Cisco	asr_1002-hx_r
175	Cisco	asr_1002-x_r
176	Cisco	asr_1006-x
177	Cisco	asr_1009-x
178	Cisco	asr_1023
179	Cisco	catalyst_8200
180	Cisco	catalyst_8300
181	Cisco	catalyst_8300-1n1s-4t2x
182	Cisco	catalyst_8300-1n1s-6t
183	Cisco	catalyst_8300-2n2s-4t2x
184	Cisco	catalyst_8300-2n2s-6t
185	Cisco	catalyst_8500-4qc
186	Cisco	catalyst_8500l
187	Cisco	catalyst_9200
188	Cisco	catalyst_9200cx
189	Cisco	catalyst_9200l
190	Cisco	catalyst_9300
191	Cisco	catalyst_9300-24p-a
192	Cisco	catalyst_9300-24p-e
193	Cisco	catalyst_9300-24s-a
194	Cisco	catalyst_9300-24s-e
195	Cisco	catalyst_9300-24t-a
196	Cisco	catalyst_9300-24t-e
197	Cisco	catalyst_9300-24u-a
198	Cisco	catalyst_9300-24u-e
199	Cisco	catalyst_9300-24ux-a
200	Cisco	catalyst_9300-24ux-e
201	Cisco	catalyst_9300-48p-a
202	Cisco	catalyst_9300-48p-e
203	Cisco	catalyst_9300-48s-a
204	Cisco	catalyst_9300-48s-e
205	Cisco	catalyst_9300-48t-a
206	Cisco	catalyst_9300-48t-e
207	Cisco	catalyst_9300-48u-a
208	Cisco	catalyst_9300-48u-e
209	Cisco	catalyst_9300-48un-a
210	Cisco	catalyst_9300-48un-e
211	Cisco	catalyst_9300-48uxm-a
212	Cisco	catalyst_9300-48uxm-e
213	Cisco	catalyst_9300l
214	Cisco	catalyst_9300l-24p-4g-a
215	Cisco	catalyst_9300l-24p-4g-e
216	Cisco	catalyst_9300l-24p-4x-a
217	Cisco	catalyst_9300l-24p-4x-e
218	Cisco	catalyst_9300l-24t-4g-a
219	Cisco	catalyst_9300l-24t-4g-e
220	Cisco	catalyst_9300l-24t-4x-a
221	Cisco	catalyst_9300l-24t-4x-e
222	Cisco	catalyst_9300l-48p-4g-a
223	Cisco	catalyst_9300l-48p-4g-e
224	Cisco	catalyst_9300l-48p-4x-a
225	Cisco	catalyst_9300l-48p-4x-e
226	Cisco	catalyst_9300l-48t-4g-a
227	Cisco	catalyst_9300l-48t-4g-e
228	Cisco	catalyst_9300l-48t-4x-a
229	Cisco	catalyst_9300l-48t-4x-e
230	Cisco	catalyst_9300l_stack
231	Cisco	catalyst_9300lm
232	Cisco	catalyst_9300x
233	Cisco	catalyst_9500
234	Cisco	catalyst_9500h
235	Cisco	catalyst_9600
236	Cisco	catalyst_9600_supervisor_engine-1
237	Cisco	catalyst_9600x
238	Cisco	catalyst_9800
239	Cisco	catalyst_9800-40
240	Cisco	catalyst_9800-80
241	Cisco	catalyst_9800-cl
242	Cisco	catalyst_9800-l
243	Cisco	catalyst_9800-l-c
244	Cisco	catalyst_9800-l-f
245	Cisco	1000_integrated_services_router
246	Cisco	1111x_integrated_services_router
247	Cisco	4321_integrated_services_router
248	Cisco	4331_integrated_services_router
249	Cisco	4351_integrated_services_router
250	Cisco	4431_integrated_services_router
251	Cisco	4451-x_integrated_services_router
252	Cisco	4451_integrated_services_router
253	Cisco	4461_integrated_services_router
254	Cisco	asr_1000-x
255	Cisco	8831
256	Cisco	catalyst_9400
257	Cisco	catalyst_9400_supervisor_engine-1
258	Cisco	catalyst_9407r
259	Cisco	catalyst_9410r

: Total Affected Vendor : 1 | Products : 259

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2022-20851.

URL	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-Gje47EMn	Vendor Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-Gje47EMn	Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

AlphabugX/CVE-2022-RCE

test 反向辣鸡数据投放 CVE-2022-23305 工具利用教程 Exploit POC

cve-2020-

Updated: 2 years, 1 month ago

5 stars 2 fork 2 watcher

Born at : Jan. 21, 2022, 5:07 a.m. This repo has been linked 2633 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2022-20851 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2022-20851 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by af854a3a-2127-422b-91ae-364da2661108

Nov. 21, 2024

Action	Type	Old Value	New Value
Added	Reference		https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-Gje47EMn

CVE Modified by [email protected]

May. 14, 2024

Action	Type	Old Value	New Value

CVE Modified by [email protected]

Nov. 07, 2023

Action	Type	Old Value	New Value
Removed	CVSS V3	Cisco Systems, Inc. AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N
Added	CVSS V3.1		Cisco Systems, Inc. AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4221:-:::::::	OR cpe:2.3:h:cisco:4221_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1000:-:::::::	OR cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4321:-:::::::	OR cpe:2.3:h:cisco:4321_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4351:-:::::::	OR cpe:2.3:h:cisco:4351_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1111x-8p:-:::::::	OR cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1100-8p:-:::::::	OR cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1100-4p:-:::::::	OR cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1101-4p:-:::::::	OR cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1109-4p:-:::::::	OR cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1109-2p:-:::::::	OR cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4431:-:::::::	OR cpe:2.3:h:cisco:4431_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4461:-:::::::	OR cpe:2.3:h:cisco:4461_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1100:-:::::::	OR cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1101:-:::::::	OR cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1109:-:::::::	OR cpe:2.3:h:cisco:1109_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_111x:-:::::::	OR cpe:2.3:h:cisco:111x_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1111x:-:::::::	OR cpe:2.3:h:cisco:1111x_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1120:-:::::::	OR cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1160:-:::::::	OR cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4451-x:-:::::::	OR cpe:2.3:h:cisco:4451-x_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4451:-:::::::	OR cpe:2.3:h:cisco:4451_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1100-4g:-:::::::	OR cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1100-6g:-:::::::	OR cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_1131:-:::::::	OR cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4331:-:::::::	OR cpe:2.3:h:cisco:4331_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

May. 22, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:h:cisco:isr_4000:-:::::::	OR cpe:2.3:h:cisco:4000_integrated_services_router:-:::::::

CPE Deprecation Remap by [email protected]

Oct. 27, 2022

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:cisco:ios_xe:17.6.1:::::::	OR cpe:2.3:o:cisco:ios_xe:17.6.1:::::::

Initial Analysis by [email protected]

Oct. 05, 2022

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Changed	Reference Type	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-Gje47EMn No Types Assigned	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-cmdinj-Gje47EMn Vendor Advisory
Added	CWE		NIST CWE-78
Added	CPE Configuration		AND OR cpe:2.3:a:cisco:ios_xe:17.6.1::::::: OR cpe:2.3:h:cisco:8101-32fh:-:::::::* cpe:2.3:h:cisco:8101-32h:-:::::::* cpe:2.3:h:cisco:8102-64h:-:::::::* cpe:2.3:h:cisco:8201:-:::::::* cpe:2.3:h:cisco:8201-32fh:-:::::::* cpe:2.3:h:cisco:8202:-:::::::* cpe:2.3:h:cisco:8800_12-slot:-:::::::* cpe:2.3:h:cisco:8800_18-slot:-:::::::* cpe:2.3:h:cisco:8800_4-slot:-:::::::* cpe:2.3:h:cisco:8800_8-slot:-:::::::* cpe:2.3:h:cisco:8804:-:::::::* cpe:2.3:h:cisco:8808:-:::::::* cpe:2.3:h:cisco:8812:-:::::::* cpe:2.3:h:cisco:8818:-:::::::* cpe:2.3:h:cisco:8831:-:::::::* cpe:2.3:h:cisco:asr_1000-esp100:-:::::::* cpe:2.3:h:cisco:asr_1000-x:-:::::::* cpe:2.3:h:cisco:asr_1001:-:::::::* cpe:2.3:h:cisco:asr_1001-hx:-:::::::* cpe:2.3:h:cisco:asr_1001-hx_r:-:::::::* cpe:2.3:h:cisco:asr_1001-x:-:::::::* cpe:2.3:h:cisco:asr_1001-x_r:-:::::::* cpe:2.3:h:cisco:asr_1002:-:::::::* cpe:2.3:h:cisco:asr_1002-hx:-:::::::* cpe:2.3:h:cisco:asr_1002-hx_r:-:::::::* cpe:2.3:h:cisco:asr_1002-x:-:::::::* cpe:2.3:h:cisco:asr_1002-x_r:-:::::::* cpe:2.3:h:cisco:asr_1002_fixed_router:-:::::::* cpe:2.3:h:cisco:asr_1004:-:::::::* cpe:2.3:h:cisco:asr_1006:-:::::::* cpe:2.3:h:cisco:asr_1006-x:-:::::::* cpe:2.3:h:cisco:asr_1009-x:-:::::::* cpe:2.3:h:cisco:asr_1013:-:::::::* cpe:2.3:h:cisco:asr_1023:-:::::::* cpe:2.3:h:cisco:catalyst_3650:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48fd-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48fd-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48fd-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uq:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uq-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uq-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uq-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48ur:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48ur-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48ur-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48ur-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uz:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uz-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uz-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-12x48uz-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pd:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pd-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pd-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pd-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pdm:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pdm-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pdm-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24pdm-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ps-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ps-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ps-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24td-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24td-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24td-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ts-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ts-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-24ts-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fd-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fd-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fd-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fq:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fq-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fq-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fq-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fqm:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fqm-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fqm-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fqm-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fs-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48fs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pd-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pd-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pd-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pq-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pq-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48pq-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ps-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ps-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ps-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48td-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48td-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48td-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48tq-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48tq-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48tq-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ts-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ts-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-48ts-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24pd-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24pd-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24pd-s:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24uq:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24uq-e:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24uq-l:-:::::::* cpe:2.3:h:cisco:catalyst_3650-8x24uq-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12s-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12s-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12x48u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-16xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-16xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24pw-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24s-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24s-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-32xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-32xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48pw-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-f-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-f-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-nm-2-40g:-:::::::* cpe:2.3:h:cisco:catalyst_3850-nm-8-10g:-:::::::* cpe:2.3:h:cisco:catalyst_8200:-:::::::* cpe:2.3:h:cisco:catalyst_8300:-:::::::* cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:::::::* cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:::::::* cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:::::::* cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:::::::* cpe:2.3:h:cisco:catalyst_8500:-:::::::* cpe:2.3:h:cisco:catalyst_8500-4qc:-:::::::* cpe:2.3:h:cisco:catalyst_8500l:-:::::::* cpe:2.3:h:cisco:catalyst_8510csr:-:::::::* cpe:2.3:h:cisco:catalyst_8510msr:-:::::::* cpe:2.3:h:cisco:catalyst_8540csr:-:::::::* cpe:2.3:h:cisco:catalyst_8540msr:-:::::::* cpe:2.3:h:cisco:catalyst_9200:-:::::::* cpe:2.3:h:cisco:catalyst_9200cx:-:::::::* cpe:2.3:h:cisco:catalyst_9200l:-:::::::* cpe:2.3:h:cisco:catalyst_9300:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24p-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24p-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24s-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24s-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24t-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24t-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24u-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24u-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24ux-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24ux-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48p-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48p-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48s-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48s-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48t-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48t-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48u-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48u-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48un-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48un-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48uxm-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48uxm-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l_stack:-:::::::* cpe:2.3:h:cisco:catalyst_9300lm:-:::::::* cpe:2.3:h:cisco:catalyst_9300x:-:::::::* cpe:2.3:h:cisco:catalyst_9400:-:::::::* cpe:2.3:h:cisco:catalyst_9400_supervisor_engine-1:-:::::::* cpe:2.3:h:cisco:catalyst_9407r:-:::::::* cpe:2.3:h:cisco:catalyst_9410r:-:::::::* cpe:2.3:h:cisco:catalyst_9500:-:::::::* cpe:2.3:h:cisco:catalyst_9500h:-:::::::* cpe:2.3:h:cisco:catalyst_9600:-:::::::* cpe:2.3:h:cisco:catalyst_9600_supervisor_engine-1:-:::::::* cpe:2.3:h:cisco:catalyst_9600x:-:::::::* cpe:2.3:h:cisco:catalyst_9800:-:::::::* cpe:2.3:h:cisco:catalyst_9800-40:-:::::::* cpe:2.3:h:cisco:catalyst_9800-80:-:::::::* cpe:2.3:h:cisco:catalyst_9800-cl:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l-c:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l-f:-:::::::* cpe:2.3:h:cisco:isr_1000:-:::::::* cpe:2.3:h:cisco:isr_1100:-:::::::* cpe:2.3:h:cisco:isr_1100-4g:-:::::::* cpe:2.3:h:cisco:isr_1100-4p:-:::::::* cpe:2.3:h:cisco:isr_1100-6g:-:::::::* cpe:2.3:h:cisco:isr_1100-8p:-:::::::* cpe:2.3:h:cisco:isr_1101:-:::::::* cpe:2.3:h:cisco:isr_1101-4p:-:::::::* cpe:2.3:h:cisco:isr_1109:-:::::::* cpe:2.3:h:cisco:isr_1109-2p:-:::::::* cpe:2.3:h:cisco:isr_1109-4p:-:::::::* cpe:2.3:h:cisco:isr_1111x:-:::::::* cpe:2.3:h:cisco:isr_1111x-8p:-:::::::* cpe:2.3:h:cisco:isr_111x:-:::::::* cpe:2.3:h:cisco:isr_1120:-:::::::* cpe:2.3:h:cisco:isr_1131:-:::::::* cpe:2.3:h:cisco:isr_1160:-:::::::* cpe:2.3:h:cisco:isr_4000:-:::::::* cpe:2.3:h:cisco:isr_4221:-:::::::* cpe:2.3:h:cisco:isr_4321:-:::::::* cpe:2.3:h:cisco:isr_4331:-:::::::* cpe:2.3:h:cisco:isr_4351:-:::::::* cpe:2.3:h:cisco:isr_4431:-:::::::* cpe:2.3:h:cisco:isr_4451:-:::::::* cpe:2.3:h:cisco:isr_4451-x:-:::::::* cpe:2.3:h:cisco:isr_4461:-:::::::*

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2022-20851 is associated with the following CWEs:

CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2022-20851 weaknesses.

CAPEC-15: Command Delimiters Command Delimiters CAPEC-40: Manipulating Writeable Terminal Devices Manipulating Writeable Terminal Devices CAPEC-43: Exploiting Multiple Input Interpretation Layers Exploiting Multiple Input Interpretation Layers CAPEC-75: Manipulating Writeable Configuration Files Manipulating Writeable Configuration Files CAPEC-76: Manipulating Web Input to File System Calls Manipulating Web Input to File System Calls CAPEC-136: LDAP Injection LDAP Injection CAPEC-183: IMAP/SMTP Command Injection IMAP/SMTP Command Injection CAPEC-248: Command Injection Command Injection CAPEC-6: Argument Injection Argument Injection CAPEC-15: Command Delimiters Command Delimiters CAPEC-43: Exploiting Multiple Input Interpretation Layers Exploiting Multiple Input Interpretation Layers CAPEC-88: OS Command Injection OS Command Injection CAPEC-108: Command Line Execution through SQL Injection Command Line Execution through SQL Injection

CVE-2022-20851

"Cisco IOS XE Software Web UI Command Injection Vulnerability"

Description

INFO

Sept. 30, 2022, 7:15 p.m.

Nov. 21, 2024, 6:43 a.m.

[email protected]

Yes !

5.9

1.2

Public PoC/Exploit Available at Github

Affected Products

References to Advisories, Solutions, and Tools

AlphabugX/CVE-2022-RCE

CVE Modified by af854a3a-2127-422b-91ae-364da2661108

CVE Modified by [email protected]

CVE Modified by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

CPE Deprecation Remap by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.11 }} 0.02%

0.44429

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable