Vulnerability Description
A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated attacker with physical access to the device to bypass the secure boot functionality. This vulnerability is due to a logic error in the boot process. An attacker could exploit this vulnerability by injecting malicious code into a specific memory location during the boot process of an affected device. A successful exploit could allow the attacker to execute persistent code at boot time and break the chain of trust.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance Software | 9.17.1 |
| Cisco | Secure Firewall 3105 | - |
| Cisco | Secure Firewall 3110 | - |
| Cisco | Secure Firewall 3120 | - |
| Cisco | Secure Firewall 3130 | - |
| Cisco | Secure Firewall 3140 | - |
| Cisco | Firepower Threat Defense | 7.1.0.0 |
Related Weaknesses (CWE)
References
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/ci
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/ci
FAQ
What is CVE-2022-20826?
CVE-2022-20826 is a vulnerability with a CVSS score of 6.4 (MEDIUM). A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Softwa...
How severe is CVE-2022-20826?
CVE-2022-20826 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-20826?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance Software, Cisco Secure Firewall 3105, Cisco Secure Firewall 3110, Cisco Secure Firewall 3120, Cisco Secure Firewall 3130.