Description

A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated attacker with physical access to the device to bypass the secure boot functionality. This vulnerability is due to a logic error in the boot process. An attacker could exploit this vulnerability by injecting malicious code into a specific memory location during the boot process of an affected device. A successful exploit could allow the attacker to execute persistent code at boot time and break the chain of trust.

Related CPE's

o

cisco

adaptive_security_appliance_software

6

h

cisco

secure_firewall_3105

2

h

cisco

secure_firewall_3110

2

h

cisco

secure_firewall_3120

2

h

cisco

secure_firewall_3130

2

h

cisco

secure_firewall_3140

2

a

cisco

firepower_threat_defense

3

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fw3100-secure-boot-5M8mUh26

Weaknesses

[email protected]

Primary
NVD-CWE-Other

[email protected]

Secondary
CWE-501

CVSS impact metrics

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-11-15T21:15:22.930

2 years ago

Last modified

2024-01-25T17:15:15.463

1 year ago