CVE-2023-20065 - Vulnerability Details

Description

A vulnerability in the Cisco IOx application hosting subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to root on an affected device.

This vulnerability is due to insufficient restrictions on the hosted application. An attacker could exploit this vulnerability by logging in to and then escaping the Cisco IOx application container. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges.

Published: 2023-03-23

Score: 7.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Cisco

Cisco IOS XE Software

affected

Version	Status	Constraints
`16.4.1`	affected	—
`16.4.2`	affected	—
`16.4.3`	affected	—
`17.3.1`	affected	—
`17.3.2`	affected	—
`17.3.3`	affected	—
`17.3.1a`	affected	—
`17.3.1w`	affected	—
`17.3.2a`	affected	—
`17.3.1x`	affected	—
`17.3.1z`	affected	—
`17.3.4`	affected	—
`17.3.5`	affected	—
`17.3.4a`	affected	—
`17.3.6`	affected	—
`17.3.4b`	affected	—
`17.3.4c`	affected	—
`17.3.5a`	affected	—
`17.3.5b`	affected	—
`17.4.1`	affected	—
`17.4.2`	affected	—
`17.4.1a`	affected	—
`17.4.1b`	affected	—
`17.4.2a`	affected	—
`17.5.1`	affected	—
`17.5.1a`	affected	—
`17.5.1b`	affected	—
`17.5.1c`	affected	—
`17.6.1`	affected	—
`17.6.2`	affected	—
`17.6.1w`	affected	—
`17.6.1a`	affected	—
`17.6.1x`	affected	—
`17.6.3`	affected	—
`17.6.1y`	affected	—
`17.6.1z`	affected	—
`17.6.3a`	affected	—
`17.6.4`	affected	—
`17.6.1z1`	affected	—
`17.7.1`	affected	—
`17.7.1a`	affected	—
`17.7.1b`	affected	—
`17.7.2`	affected	—
`17.8.1`	affected	—
`17.8.1a`	affected	—
`17.9.1`	affected	—
`17.9.1w`	affected	—
`17.9.2`	affected	—
`17.9.1a`	affected	—
`17.9.2a`	affected	—

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:ios_xe:17.6.3:::::::*
	cpe:2.3:o:cisco:ios_xe:17.11.1:::::::*

OR	cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4000_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4221_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4431_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4451-x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4451_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4461_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:8101-32fh:-:::::::*
	cpe:2.3:h:cisco:8101-32h:-:::::::*
	cpe:2.3:h:cisco:8102-64h:-:::::::*
	cpe:2.3:h:cisco:8201:-:::::::*
	cpe:2.3:h:cisco:8201-32fh:-:::::::*
	cpe:2.3:h:cisco:8202:-:::::::*
	cpe:2.3:h:cisco:8800_12-slot:-:::::::*
	cpe:2.3:h:cisco:8800_18-slot:-:::::::*
	cpe:2.3:h:cisco:8800_4-slot:-:::::::*
	cpe:2.3:h:cisco:8800_8-slot:-:::::::*
	cpe:2.3:h:cisco:8804:-:::::::*
	cpe:2.3:h:cisco:8808:-:::::::*
	cpe:2.3:h:cisco:8812:-:::::::*
	cpe:2.3:h:cisco:8818:-:::::::*
	cpe:2.3:h:cisco:8831:-:::::::*
	cpe:2.3:h:cisco:9800-40:-:::::::*
	cpe:2.3:h:cisco:9800-80:-:::::::*
	cpe:2.3:h:cisco:9800-cl:-:::::::*
	cpe:2.3:h:cisco:9800-l:-:::::::*
	cpe:2.3:h:cisco:asr_1000:-:::::::*
	cpe:2.3:h:cisco:asr_1000-esp100:-:::::::*
	cpe:2.3:h:cisco:asr_1000-esp100-x:-:::::::*
	cpe:2.3:h:cisco:asr_1000-esp200-x:-:::::::*
	cpe:2.3:h:cisco:asr_1001:-:::::::*
	cpe:2.3:h:cisco:asr_1001-hx:-:::::::*
	cpe:2.3:h:cisco:asr_1001-hx_r:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x_r:-:::::::*
	cpe:2.3:h:cisco:asr_1002:-:::::::*
	cpe:2.3:h:cisco:asr_1002-hx:-:::::::*
	cpe:2.3:h:cisco:asr_1002-hx_r:-:::::::*
	cpe:2.3:h:cisco:asr_1002-x:-:::::::*
	cpe:2.3:h:cisco:asr_1002-x_r:-:::::::*
	cpe:2.3:h:cisco:asr_1004:-:::::::*
	cpe:2.3:h:cisco:asr_1006:-:::::::*
	cpe:2.3:h:cisco:asr_1006-x:-:::::::*
	cpe:2.3:h:cisco:asr_1009-x:-:::::::*
	cpe:2.3:h:cisco:asr_1013:-:::::::*
cpe:2.3:h:cisco:asr_1023:-:::::::*
cpe:2.3:h:cisco:asr_900:-:::::::*
cpe:2.3:h:cisco:asr_9000:-:::::::*
cpe:2.3:h:cisco:asr_9000v:-:::::::*
cpe:2.3:h:cisco:asr_9000v:v2:::::::*
cpe:2.3:h:cisco:asr_9001:-:::::::*
cpe:2.3:h:cisco:asr_9006:-:::::::*
cpe:2.3:h:cisco:asr_901-12c-f-d:-:::::::*
cpe:2.3:h:cisco:asr_901-12c-ft-d:-:::::::*
cpe:2.3:h:cisco:asr_901-4c-f-d:-:::::::*
cpe:2.3:h:cisco:asr_901-4c-ft-d:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-f-a:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-f-d:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-fs-a:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-fs-d:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-ft-a:-:::::::*
cpe:2.3:h:cisco:asr_901-6cz-ft-d:-:::::::*
cpe:2.3:h:cisco:asr_9010:-:::::::*
cpe:2.3:h:cisco:asr_901s-2sg-f-ah:-:::::::*
cpe:2.3:h:cisco:asr_901s-2sg-f-d:-:::::::*
cpe:2.3:h:cisco:asr_901s-3sg-f-ah:-:::::::*
cpe:2.3:h:cisco:asr_901s-3sg-f-d:-:::::::*
cpe:2.3:h:cisco:asr_901s-4sg-f-d:-:::::::*
cpe:2.3:h:cisco:asr_902:-:::::::*
cpe:2.3:h:cisco:asr_902u:-:::::::*
cpe:2.3:h:cisco:asr_903:-:::::::*
cpe:2.3:h:cisco:asr_907:-:::::::*
cpe:2.3:h:cisco:asr_914:-:::::::*
cpe:2.3:h:cisco:asr_920-10sz-pd:-:::::::*
cpe:2.3:h:cisco:asr_920-10sz-pd_r:-:::::::*
cpe:2.3:h:cisco:asr_920-12cz-a:-:::::::*
cpe:2.3:h:cisco:asr_920-12cz-a_r:-:::::::*
cpe:2.3:h:cisco:asr_920-12cz-d:-:::::::*
cpe:2.3:h:cisco:asr_920-12cz-d_r:-:::::::*
cpe:2.3:h:cisco:asr_920-12sz-im:-:::::::*
cpe:2.3:h:cisco:asr_920-12sz-im_r:-:::::::*
cpe:2.3:h:cisco:asr_920-24sz-im:-:::::::*
cpe:2.3:h:cisco:asr_920-24sz-im_r:-:::::::*
cpe:2.3:h:cisco:asr_920-24sz-m:-:::::::*
cpe:2.3:h:cisco:asr_920-24sz-m_r:-:::::::*
cpe:2.3:h:cisco:asr_920-24tz-m:-:::::::*
cpe:2.3:h:cisco:asr_920-24tz-m_r:-:::::::*
cpe:2.3:h:cisco:asr_920-4sz-a:-:::::::*
cpe:2.3:h:cisco:asr_920-4sz-a_r:-:::::::*
cpe:2.3:h:cisco:asr_920-4sz-d:-:::::::*
cpe:2.3:h:cisco:asr_920-4sz-d_r:-:::::::*
cpe:2.3:h:cisco:asr_920u-12sz-im:-:::::::*
cpe:2.3:h:cisco:asr_9901:-:::::::*
cpe:2.3:h:cisco:asr_9902:-:::::::*
cpe:2.3:h:cisco:asr_9903:-:::::::*
cpe:2.3:h:cisco:asr_9904:-:::::::*
cpe:2.3:h:cisco:asr_9906:-:::::::*
cpe:2.3:h:cisco:asr_9910:-:::::::*
cpe:2.3:h:cisco:asr_9912:-:::::::*
cpe:2.3:h:cisco:asr_9920:-:::::::*
cpe:2.3:h:cisco:asr_9922:-:::::::*
cpe:2.3:h:cisco:catalyst_3850:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-12s-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-12s-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-12x48u:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-12xs-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-12xs-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-16xs-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-16xs-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24p-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24p-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24p-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24pw-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24s-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24s-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24t-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24t-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24t-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24u:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24u-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24u-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24u-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xs:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xs-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xs-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xu:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xu-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xu-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-24xu-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-32xs-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-32xs-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48f-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48f-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48f-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48p-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48p-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48p-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48pw-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48t-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48t-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48t-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48u:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48u-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48u-l:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48u-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48xs:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48xs-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48xs-f-e:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48xs-f-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-48xs-s:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-nm-2-40g:-:::::::*
cpe:2.3:h:cisco:catalyst_3850-nm-8-10g:-:::::::*
cpe:2.3:h:cisco:catalyst_8200:-:::::::*
cpe:2.3:h:cisco:catalyst_8300:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:::::::*
cpe:2.3:h:cisco:catalyst_8500:-:::::::*
cpe:2.3:h:cisco:catalyst_8500-4qc:-:::::::*
cpe:2.3:h:cisco:catalyst_8500l:-:::::::*
cpe:2.3:h:cisco:catalyst_8510csr:-:::::::*
cpe:2.3:h:cisco:catalyst_8510msr:-:::::::*
cpe:2.3:h:cisco:catalyst_8540csr:-:::::::*
cpe:2.3:h:cisco:catalyst_8540msr:-:::::::*
cpe:2.3:h:cisco:catalyst_9200:-:::::::*
cpe:2.3:h:cisco:catalyst_9200cx:-:::::::*
cpe:2.3:h:cisco:catalyst_9200l:-:::::::*
cpe:2.3:h:cisco:catalyst_9300:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24p-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24p-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24s-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24s-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24t-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24t-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24u-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24u-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24ux-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-24ux-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48p-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48p-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48s-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48s-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48t-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48t-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48u-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48u-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48un-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48un-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48uxm-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300-48uxm-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24p-4g-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24p-4g-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24p-4x-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24p-4x-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24t-4g-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24t-4g-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24t-4x-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-24t-4x-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48p-4g-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48p-4g-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48p-4x-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48p-4x-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48t-4g-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48t-4g-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48t-4x-a:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l-48t-4x-e:-:::::::*
cpe:2.3:h:cisco:catalyst_9300l_stack:-:::::::*
cpe:2.3:h:cisco:catalyst_9300lm:-:::::::*
cpe:2.3:h:cisco:catalyst_9300x:-:::::::*
cpe:2.3:h:cisco:catalyst_9400:-:::::::*
cpe:2.3:h:cisco:catalyst_9400_supervisor_engine-1:-:::::::*
cpe:2.3:h:cisco:catalyst_9407r:-:::::::*
cpe:2.3:h:cisco:catalyst_9410r:-:::::::*
cpe:2.3:h:cisco:catalyst_9500:-:::::::*
cpe:2.3:h:cisco:catalyst_9500h:-:::::::*
cpe:2.3:h:cisco:catalyst_9600:-:::::::*
cpe:2.3:h:cisco:catalyst_9600_supervisor_engine-1:-:::::::*
cpe:2.3:h:cisco:catalyst_9600x:-:::::::*
cpe:2.3:h:cisco:catalyst_9800:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-40:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-40_wireless_controller:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-80:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-80_wireless_controller:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-cl:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-l:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-l-c:-:::::::*
cpe:2.3:h:cisco:catalyst_9800-l-f:-:::::::*
cpe:2.3:h:cisco:catalyst_9800_embedded_wireless_controller:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3200:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3200_rugged_switch:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3300:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3300_rugged_switch:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3400:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3400_heavy_duty_switch:-:::::::*
cpe:2.3:h:cisco:catalyst_ie3400_rugged_switch:-:::::::*
cpe:2.3:h:cisco:catalyst_ie9300:-:::::::*
cpe:2.3:h:cisco:cbr-8:-:::::::*
cpe:2.3:h:cisco:cg418-e:-:::::::*
cpe:2.3:h:cisco:cg522-e:-:::::::*
cpe:2.3:h:cisco:esr6300:-:::::::*
cpe:2.3:h:cisco:ess-3300-24t-con-a:-:::::::*
cpe:2.3:h:cisco:ess-3300-24t-con-e:-:::::::*
cpe:2.3:h:cisco:ess-3300-24t-ncp-a:-:::::::*
cpe:2.3:h:cisco:ess-3300-24t-ncp-e:-:::::::*
cpe:2.3:h:cisco:ess-3300-con-a:-:::::::*
cpe:2.3:h:cisco:ess-3300-con-e:-:::::::*
cpe:2.3:h:cisco:ess-3300-ncp-a:-:::::::*
cpe:2.3:h:cisco:ess-3300-ncp-e:-:::::::*
cpe:2.3:h:cisco:ess9300-10x-e:-:::::::*
cpe:2.3:h:cisco:integrated_services_virtual_router:-:::::::*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-24244	A vulnerability in the Cisco IOx application hosting subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to insufficient restrictions on the hosted application. An attacker could exploit this vulnerability by logging in to and then escaping the Cisco IOx application container. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00112.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-priv-escalate-Xg8zkyPk

History

No history.

Subscriptions

Cisco 1000 Integrated Services Router 1100-4g Integrated Services Router 1100-4p Integrated Services Router 1100-6g Integrated Services Router 1100-8p Integrated Services Router 1100 Integrated Services Router 1101-4p Integrated Services Router 1101 Integrated Services Router 1109-2p Integrated Services Router 1109-4p Integrated Services Router 1109 Integrated Services Router 1111x-8p Integrated Services Router 1111x Integrated Services Router 111x Integrated Services Router 1120 Integrated Services Router 1131 Integrated Services Router 1160 Integrated Services Router 4000 Integrated Services Router 4221 Integrated Services Router 4321 Integrated Services Router 4331 Integrated Services Router 4351 Integrated Services Router 4431 Integrated Services Router 4451-x Integrated Services Router 4451 Integrated Services Router 4461 Integrated Services Router 8101-32fh 8101-32h 8102-64h 8201 8201-32fh 8202 8800 12-slot 8800 18-slot 8800 4-slot 8800 8-slot 8804 8808 8812 8818 8831 9800-40 9800-80 9800-cl 9800-l Asr 1000 Asr 1000-esp100 Asr 1000-esp100-x Asr 1000-esp200-x Asr 1001 Asr 1001-hx Asr 1001-hx R Asr 1001-x Asr 1001-x R Asr 1002 Asr 1002-hx Asr 1002-hx R Asr 1002-x Asr 1002-x R Asr 1004 Asr 1006 Asr 1006-x Asr 1009-x Asr 1013 Asr 1023 Asr 900 Asr 9000 Asr 9000v Asr 9001 Asr 9006 Asr 901-12c-f-d Asr 901-12c-ft-d Asr 901-4c-f-d Asr 901-4c-ft-d Asr 901-6cz-f-a Asr 901-6cz-f-d Asr 901-6cz-fs-a Asr 901-6cz-fs-d Asr 901-6cz-ft-a Asr 901-6cz-ft-d Asr 9010 Asr 901s-2sg-f-ah Asr 901s-2sg-f-d Asr 901s-3sg-f-ah Asr 901s-3sg-f-d Asr 901s-4sg-f-d Asr 902 Asr 902u Asr 903 Asr 907 Asr 914 Asr 920-10sz-pd Asr 920-10sz-pd R Asr 920-12cz-a Asr 920-12cz-a R Asr 920-12cz-d Asr 920-12cz-d R Asr 920-12sz-im Asr 920-12sz-im R Asr 920-24sz-im Asr 920-24sz-im R Asr 920-24sz-m Asr 920-24sz-m R Asr 920-24tz-m Asr 920-24tz-m R Asr 920-4sz-a Asr 920-4sz-a R Asr 920-4sz-d Asr 920-4sz-d R Asr 920u-12sz-im Asr 9901 Asr 9902 Asr 9903 Asr 9904 Asr 9906 Asr 9910 Asr 9912 Asr 9920 Asr 9922 Catalyst 3850 Catalyst 3850-12s-e Catalyst 3850-12s-s Catalyst 3850-12x48u Catalyst 3850-12xs-e Catalyst 3850-12xs-s Catalyst 3850-16xs-e Catalyst 3850-16xs-s Catalyst 3850-24p-e Catalyst 3850-24p-l Catalyst 3850-24p-s Catalyst 3850-24pw-s Catalyst 3850-24s-e Catalyst 3850-24s-s Catalyst 3850-24t-e Catalyst 3850-24t-l Catalyst 3850-24t-s Catalyst 3850-24u Catalyst 3850-24u-e Catalyst 3850-24u-l Catalyst 3850-24u-s Catalyst 3850-24xs Catalyst 3850-24xs-e Catalyst 3850-24xs-s Catalyst 3850-24xu Catalyst 3850-24xu-e Catalyst 3850-24xu-l Catalyst 3850-24xu-s Catalyst 3850-32xs-e Catalyst 3850-32xs-s Catalyst 3850-48f-e Catalyst 3850-48f-l Catalyst 3850-48f-s Catalyst 3850-48p-e Catalyst 3850-48p-l Catalyst 3850-48p-s Catalyst 3850-48pw-s Catalyst 3850-48t-e Catalyst 3850-48t-l Catalyst 3850-48t-s Catalyst 3850-48u Catalyst 3850-48u-e Catalyst 3850-48u-l Catalyst 3850-48u-s Catalyst 3850-48xs Catalyst 3850-48xs-e Catalyst 3850-48xs-f-e Catalyst 3850-48xs-f-s Catalyst 3850-48xs-s Catalyst 3850-nm-2-40g Catalyst 3850-nm-8-10g Catalyst 8200 Catalyst 8300 Catalyst 8300-1n1s-4t2x Catalyst 8300-1n1s-6t Catalyst 8300-2n2s-4t2x Catalyst 8300-2n2s-6t Catalyst 8500 Catalyst 8500-4qc Catalyst 8500l Catalyst 8510csr Catalyst 8510msr Catalyst 8540csr Catalyst 8540msr Catalyst 9200 Catalyst 9200cx Catalyst 9200l Catalyst 9300 Catalyst 9300-24p-a Catalyst 9300-24p-e Catalyst 9300-24s-a Catalyst 9300-24s-e Catalyst 9300-24t-a Catalyst 9300-24t-e Catalyst 9300-24u-a Catalyst 9300-24u-e Catalyst 9300-24ux-a Catalyst 9300-24ux-e Catalyst 9300-48p-a Catalyst 9300-48p-e Catalyst 9300-48s-a Catalyst 9300-48s-e Catalyst 9300-48t-a Catalyst 9300-48t-e Catalyst 9300-48u-a Catalyst 9300-48u-e Catalyst 9300-48un-a Catalyst 9300-48un-e Catalyst 9300-48uxm-a Catalyst 9300-48uxm-e Catalyst 9300l Catalyst 9300l-24p-4g-a Catalyst 9300l-24p-4g-e Catalyst 9300l-24p-4x-a Catalyst 9300l-24p-4x-e Catalyst 9300l-24t-4g-a Catalyst 9300l-24t-4g-e Catalyst 9300l-24t-4x-a Catalyst 9300l-24t-4x-e Catalyst 9300l-48p-4g-a Catalyst 9300l-48p-4g-e Catalyst 9300l-48p-4x-a Catalyst 9300l-48p-4x-e Catalyst 9300l-48t-4g-a Catalyst 9300l-48t-4g-e Catalyst 9300l-48t-4x-a Catalyst 9300l-48t-4x-e Catalyst 9300l Stack Catalyst 9300lm Catalyst 9300x Catalyst 9400 Catalyst 9400 Supervisor Engine-1 Catalyst 9407r Catalyst 9410r Catalyst 9500 Catalyst 9500h Catalyst 9600 Catalyst 9600 Supervisor Engine-1 Catalyst 9600x Catalyst 9800 Catalyst 9800-40 Catalyst 9800-40 Wireless Controller Catalyst 9800-80 Catalyst 9800-80 Wireless Controller Catalyst 9800-cl Catalyst 9800-l Catalyst 9800-l-c Catalyst 9800-l-f Catalyst 9800 Embedded Wireless Controller Catalyst Ie3200 Catalyst Ie3200 Rugged Switch Catalyst Ie3300 Catalyst Ie3300 Rugged Switch Catalyst Ie3400 Catalyst Ie3400 Heavy Duty Switch Catalyst Ie3400 Rugged Switch Catalyst Ie9300 Cbr-8 Cg418-e Cg522-e Esr6300 Ess-3300-24t-con-a Ess-3300-24t-con-e Ess-3300-24t-ncp-a Ess-3300-24t-ncp-e Ess-3300-con-a Ess-3300-con-e Ess-3300-ncp-a Ess-3300-ncp-e Ess9300-10x-e Integrated Services Virtual Router Ios Xe

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2023-03-23T00:00:00.000Z

Updated: 2024-08-02T08:57:35.585Z

Reserved: 2022-10-27T00:00:00.000Z

Link: CVE-2023-20065

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-03-23T17:15:14.393

Modified: 2024-11-21T07:40:28.227

Link: CVE-2023-20065

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object