A critical vulnerability has been identified in the Cisco Firepower Management Center (FMC) software, which could potentially allow attackers to conduct SQL injection attacks. The vulnerability, designated as CVE-2024-20360 with a CVSS score of 8.8, exists in the web-based management interface of the FMC software. Exploiting this flaw could enable an attacker to access database information, execute arbitrary commands on the operating system, and escalate privileges to root level. However, the attacker would require at least read-only user credentials to exploit this vulnerability.
According to Cisco, the root cause of this vulnerability is the lack of proper validation of user input in the web-based management interface. As a result, authenticated remote attackers could send malicious SQL queries to the affected system and potentially compromise it. Cisco has emphasized that there are no feasible workarounds to address this vulnerability. Fortunately, Adaptive Security Appliance (ASA) software and Firepower Threat Defense (FTD) software remain unaffected by this issue.
The Cisco Product Security Incident Response Team (PSIRT) has not received any reports of active attacks exploiting this vulnerability at the time of the advisory release. It is crucial for organizations using the affected FMC software to apply the necessary patches and updates provided by Cisco to mitigate the risk posed by this vulnerability.
In summary, the discovery of this high severity vulnerability in the Cisco Firepower Management Center software underscores the ongoing challenge of ensuring robust cybersecurity measures in complex IT environments. Organizations are urged to stay vigilant, keep their software up to date, and adhere to best practices in order to safeguard their systems and data from potential threats.
Please note that further information and updates on security issues, including hacking and SQL injection, can be found on the official Security Affairs website. For real-time updates, follow Pierluigi Paganini on Twitter, Facebook, and Mastodon.
By addressing this critical vulnerability promptly and raising awareness about potential risks, Cisco aims to enhance the overall security posture of its customers and strengthen defenses against evolving cyber threats.
Article Source
https://securityaffairs.com/163718/security/a-high-severity-vulnerability-affects-cisco-firepower-management-center.html