CVE-2017-12243

Published: Nov 2, 2017Modified: May 13, 2026

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to obtain root shell privileges on the device, aka Command Injection. The vulnerability is due to improper validation of string input in the shell application. An attacker could exploit this vulnerability through the use of malicious commands. A successful exploit could allow the attacker to obtain root shell privileges on the device. Cisco Bug IDs: CSCvf20741, CSCvf60078.

Affected (3)

Products: Cisco: Unified Computing System Manager Firmware, Firepower 9300 Security Appliance Firmware, Firepower 4100 Next Generation Firewall Firmware

Cisco

3 products

Unified Computing System Manager Firmware

Firepower 9300 Security Appliance Firmware

Firepower 4100 Next Generation Firewall Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Unified Computing System Manager Firmware	All versions

Running on/with	Platform Versions
Cisco Unified Computing System Manager	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Firepower 9300 Security Appliance Firmware	All versions

Running on/with	Platform Versions
Cisco Firepower 9300 Security Appliance	All versions

Configuration C

1 vulnerable · 4 platform

Vulnerable Software	Affected Versions
Cisco Firepower 4100 Next Generation Firewall Firmware	All versions

Running on/with	Platform Versions
Cisco Firepower 4110 Next Generation Firewall	All versions
Cisco Firepower 4120 Next Generation Firewall	All versions
Cisco Firepower 4140 Next Generation Firewall	All versions
Cisco Firepower 4150 Next Generation Firewall	All versions