#VU64421 Improper Authentication in Cisco Systems, Inc products - CVE-2022-20798
Published: June 15, 2022
Vulnerability identifier: #VU64421
Vulnerability risk: Critical
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Red
CVE-ID: CVE-2022-20798
CWE-ID: CWE-287
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Secure Email Gateway
Cisco AsyncOS for Cisco Email Security Appliance
Cisco Email Security Appliance
Cisco Secure Email and Web Manager
Secure Email Gateway
Cisco AsyncOS for Cisco Email Security Appliance
Cisco Email Security Appliance
Cisco Secure Email and Web Manager
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to an error improper authentication checks when using the Lightweight Directory Access Protocol (LDAP) for external authentication. A remote non-authenticated attacker can bypass specially crafted data to the login page of the affected device, bypass the authenticated process and gain unauthorized access to the system.
Remediation
Install updates from vendor's website.