HTTP Response Splitting in Cisco ESA & Secure Email Web Manager
CVE-2022-20772 Published on November 4, 2022
A vulnerability in Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to the failure of the application or its environment to properly sanitize input values. An attacker could exploit this vulnerability by injecting malicious HTTP headers, controlling the response body, or splitting the response into multiple responses.
Vulnerability Analysis
CVE-2022-20772 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.
Weakness Type
What is a HTTP Response Splitting Vulnerability?
The software receives data from an upstream component, but does not neutralize or incorrectly neutralizes CR and LF characters before the data is included in outgoing HTTP headers.
CVE-2022-20772 has been classified to as a HTTP Response Splitting vulnerability or weakness.
Products Associated with CVE-2022-20772
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-20772 are published in Cisco Email Security Appliance:
Affected Versions
Cisco Secure Email:- Version 13.5.1-277 is affected.
- Version 14.0.0-698 is affected.
- Version 14.2.0-620 is affected.
- Version 14.0.0-404 is affected.
- Version 14.1.0-223 is affected.
- Version 14.1.0-227 is affected.
- Version 14.2.0-212 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.