CVE-2023-20066

CVE Database · CVE-2023-20066

CVE-2023-20066

· MEDIUMModified

CVSS v3.1

6.5

EPSS

1.71%

Published

Mar 23, 2023

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to perform a directory traversal and access resources that are outside the filesystem mountpoint of the web UI. This vulnerability is due to an insufficient security configuration. An attacker could exploit this vulnerability by sending a crafted request to the web UI. A successful exploit could allow the attacker to gain read access to files that are outside the filesystem mountpoint of the web UI. Note: These files are located on a restricted filesystem that is maintained for the web UI. There is no ability to write to any files on this filesystem.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-23CWE-22

Affected Products (274)

cisco · ios_xevulnerable

cisco · 1000_integrated_services_router

cisco · 1100-4g_integrated_services_router

cisco · 1100-4p_integrated_services_router

cisco · 1100-6g_integrated_services_router

cisco · 1100-8p_integrated_services_router

cisco · 1100_integrated_services_router

cisco · 1101-4p_integrated_services_router

cisco · 1101_integrated_services_router

cisco · 1109-2p_integrated_services_router

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-pthtrv-es7GSb9V

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-pthtrv-es7GSb9V

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs