Vulnerability Details : CVE-2022-20777


CVE Name: CVE-2022-20777: Code Execution vulnerability on Cisco Enterprise Nfv Infrastructure Software
Description: Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an attacker to escape from the guest virtual machine (VM) to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these vulnerabilities, see the Details section of this advisory.
Publish date: 2022-05-04T17:15Z
Last Update: 2022-05-11T18:22Z

CVSS Scores & Vulnerability Types


CVSS Score
Confidentiality ImpactHIGH
Integrity ImpactHIGH
Availability ImpactHIGH
Actack VectorNETWORK
Actack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeCHANGED
Vulnerability Type(s)Code Execution
CWE ID863

Products Affected By CVE-2022-20777


# Vendor Product Vulnerable Versions
1 Cisco Enterprise Nfv Infrastructure Software 1

Detail of Verions Affected


# Product Type Vendor Product Version
1 Application Cisco Enterprise Nfv Infrastructure Software *