CVE-2022-20805— Cisco Umbrella 加密问题漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2022-20805の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Cisco Umbrella Secure Web Gateway File Decryption Bypass Vulnerability
ソース: NVD (National Vulnerability Database)
脆弱性説明
A vulnerability in the automatic decryption process in Cisco Umbrella Secure Web Gateway (SWG) could allow an authenticated, adjacent attacker to bypass the SSL decryption and content filtering policies on an affected system. This vulnerability is due to how the decryption function uses the TLS Sever Name Indication (SNI) extension of an HTTP request to discover the destination domain and determine if the request needs to be decrypted. An attacker could exploit this vulnerability by sending a crafted request over TLS from a client to an unknown or controlled URL. A successful exploit could allow an attacker to bypass the decryption process of Cisco Umbrella SWG and allow malicious content to be downloaded to a host on a protected network. There are workarounds that address this vulnerability.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
保护机制失效
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Cisco Umbrella 加密问题漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Cisco Umbrella是美国思科(Cisco)公司的一套云安全平台。该平台能够预防网络钓鱼、恶意软件和勒索软件等网络威胁。 Cisco Umbrella Secure Web Gateway (SWG) 中存在安全漏洞,攻击者可以通过从客户端通过 TLS 向未知或受控 URL 发送精心设计的请求来绕过 Cisco Umbrella SWG 的解密过程,并允许将恶意内容下载到受保护网络上的主机。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| Cisco | Cisco Umbrella Insights Virtual Appliance | n/a | - |
II. CVE-2022-20805の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2022-20805のインテリジェンス情報
请登录查看更多情报信息。
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uswg-fdbps-xtTRKpp6vendor-advisoryx_refsource_CISCO
- https://nvd.nist.gov/vuln/detail/CVE-2022-20805
Same Patch Batch · Cisco · 2022-04-21 · 12 CVEs total
| CVE-2022-20732 | 7.8 HIGH | Cisco Virtualized Infrastructure Manager Privilege Escalation Vulnerability |
| CVE-2022-20783 | 7.5 HIGH | Cisco TelePresence Collaboration Endpoint and RoomOS Software H.323 Denial of Service Vuln |
| CVE-2022-20773 | 7.5 HIGH | Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability |
| CVE-2022-20790 | 6.5 MEDIUM | Cisco Unified Communications Products Arbitrary File Read Vulnerability |
| CVE-2022-20778 | 6.1 MEDIUM | Cisco Webex Meetings Cross-Site Scripting Vulnerability |
| CVE-2022-20788 | 6.1 MEDIUM | Cisco Unified Communications Products Cross-Site Scripting Vulnerability |
| CVE-2022-20795 | 5.8 MEDIUM | Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense Software AnyConnect S |
| CVE-2022-20787 | 5.7 MEDIUM | Cisco Unified Communications Products Cross-Site Request Forgery Vulnerability |
| CVE-2022-20786 | 5.4 MEDIUM | Cisco Unified Communications Manager IM & Presence Service SQL Injection Vulnerability |
| CVE-2022-20804 | 5.3 MEDIUM | Cisco Unified Communications Products Denial of Service Vulnerability |
| CVE-2022-20789 | 4.9 MEDIUM | Cisco Unified Communications Products Arbitrary File Write Vulnerability |
IV. 関連脆弱性
- CVE-2022-20773
Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnera - CVE-2022-20738
Cisco Umbrella Secure Web Gateway File Inspection Bypass Vul - CVE-2021-40126
Cisco Umbrella Email Enumeration Vulnerability - CVE-2021-1475
Cisco Umbrella Link and CSV Formula Injection Vulnerabilitie - CVE-2021-1474
Cisco Umbrella Link and CSV Formula Injection Vulnerabilitie
同じベンダー: Cisco
- CVE-2026-20219
Cisco Slido 安全漏洞 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability - CVE-2026-20035
Cisco Unity Connection Server-Side Request Forgery Vulnerabi - CVE-2026-20167
Cisco IoT Field Network Director Remote Device Denial of Ser - CVE-2026-20169
Cisco IoT Field Network Director Command Injection Vulnerabi
同じ弱点: CWE-693
- CVE-2026-26956
vm2: WASM Sandbox Escape (Node 25 only) - CVE-2026-24120
vm2: Sandbox Breakout Through Promise Species - CVE-2026-41316
ERB has an @_init deserialization guard bypass via def_modul - CVE-2026-41469
Beghelli Sicuro24 SicuroWeb Missing Content Security Policy - CVE-2026-40604
ClearanceKit: opfilter system extension can be suspended or
V. CVE-2022-20805へのコメント
まだコメントはありません