CVE-2019-12675

CVE Database · CVE-2019-12675

CVE-2019-12675

· HIGHModified

CVSS v3.1

8.8

EPSS

0.40%

Published

Oct 2, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace. These vulnerabilities are due to insufficient protections on the underlying filesystem. An attacker could exploit these vulnerabilities by modifying critical files on the underlying filesystem. A successful exploit could allow the attacker to execute commands with root privileges within the host namespace. This could allow the attacker to impact other running FTD instances.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Weaknesses (CWE)

CWE-216CWE-116

Affected Products (17)

cisco · firepower_threat_defense (up to 6.4.0.2)vulnerable

cisco · firepower_9300_firmwarevulnerable

cisco · firepower_9300

cisco · firepower_4115_firmwarevulnerable

cisco · firepower_4115

cisco · firepower_4125_firmwarevulnerable

cisco · firepower_4125

cisco · firepower_4145_firmwarevulnerable

cisco · firepower_4145

cisco · firepower_4110_firmwarevulnerable

cisco · firepower_4110

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-container-esc

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-container-esc

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs