HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2019-12675

CVSS 8.8v3.1pub. 2019-10-02upd. 2024-11-21

Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace. These vulnerabilities are due to insufficient protections on the underlying filesystem. An attacker could exploit these vulnerabilities by modifying critical files on the underlying filesystem. A successful exploit could allow the attacker to execute commands with root privileges within the host namespace. This could allow the attacker to impact other running FTD instances.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Cisco Firepower 4110

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4110 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4115

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4115 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4120

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4120 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4125

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4125 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4140

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4140 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4145

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4145 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 4150

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 4150 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower 9300

    HW
    Cisco
    wszystkie wersje
  • Cisco Firepower 9300 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Firepower Threat Defense

    APP
    Cisco
    < 6.4.0.2
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Container
CWE
References

Related vulnerabilities

CVE-2025-20333CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE jako root w Cisco ASA i FTD poprzez podatny serwer VPN web

CVE-2025-20363CRITICAL9.0PL ✓ten sam produkt

RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP

CVE-2024-20412CRITICAL9.3PL ✓ten sam produkt

Cisco FTD: statyczne konta z zakodowanymi hasłami umożliwiają nieautoryzowany dostęp

CVE-2022-20829CRITICAL9.1ten sam produkt

A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the validation of...

CVE-2020-3187CRITICAL9.1ten sam produkt

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Fi...