Cisco Smart Software Manager On-Prem Vulnerability

CVE-2022-20939

What is CVE-2022-20939?

A vulnerability exists in the web-based management interface of Cisco Smart Software Manager On-Prem that may enable an authenticated, remote attacker to elevate their privileges on an affected system. This issue arises from insufficient safeguards surrounding sensitive user data. By exploiting this vulnerability, an attacker can gain access to specific logs on the system and utilize the gathered information to escalate privileges to the System Admin level. Cisco has issued software updates to address this vulnerability, and no workarounds are available.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References