CVE-2022-20626

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 15, 2024

CWE ID 79

Summary

CVE-2022-20626 is a vulnerability affecting the web-based management interface of Cisco Prime Access Registrar Appliance. An authenticated, remote attacker can execute a cross-site scripting (XSS) attack against a user of the interface, requiring valid credentials for the device. The vulnerability arises from insufficient input validation by the interface, which could allow the attacker to inject arbitrary script code or access sensitive information. Successful exploitation could lead to significant security implications. Cisco has released software updates to address this vulnerability, and no workarounds are available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Cisco Systems Inc

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners