Cisco Secure Firewall Management Center HTML Injection Vulnerability

A vulnerability exists in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software. It allows an authenticated, remote attacker to inject arbitrary HTML into documents generated by the device. This issue arises from inadequate validation of user-supplied data. An attacker could exploit this by sending malicious content to an affected device, which could then be used to create a document containing sensitive information. Successful exploitation could disrupt the document's standard format, enable the attacker to read arbitrary files from the operating system, and perform server-side request forgery (SSRF) attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the Security Analyst (Read Only) role.

Impact

Exploitation of this vulnerability could lead to unauthorized HTML injection, allowing for manipulation of device-generated documents, unauthorized access to arbitrary files on the underlying operating system, and execution of server-side request forgery (SSRF) attacks.

Remediation

Cisco has released free software updates to address this vulnerability. Customers with service contracts should obtain these updates through their usual channels. For those without service contracts, contact the Cisco Technical Assistance Center (TAC) for assistance.