CVE-2022-20805

Name of the Vulnerable Software and Affected Versions Cisco Umbrella Secure Web Gateway (SWG) (affected versions not specified)

Description A vulnerability in the automatic decryption process could allow an authenticated, adjacent attacker to bypass the SSL decryption and content filtering policies on an affected system. This issue is due to how the decryption function uses the TLS Server Name Indication (SNI) extension of an HTTP request to discover the destination domain and determine if the request needs to be decrypted. An attacker could exploit this by sending a crafted request over TLS from a client to an unknown or controlled URL, potentially allowing malicious content to be downloaded to a host on a protected network.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.