CVE-2023-20198

NVD Published Date: October 16, 2023 at 04:15 PM
NVD Last Modified: June 17, 2024 at 01:31 PM
Download Patch
Vulnerability ID
CVE-2023-20198
Severity
CRITICAL
Severity Score
10.0
Summary
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previously unknown issues. The attacker first exploited CVE-2023-20198 to gain initial access and issued a privilege 15 command to create a local user and password combination. This allowed the user to log in with normal user access. The attacker then exploited another component of the web UI feature, leveraging the new local user to elevate privilege to root and write the implant to the file system. Cisco has assigned CVE-2023-20273 to this issue. CVE-2023-20198 has been assigned a CVSS Score of 10.0. CVE-2023-20273 has been assigned a CVSS Score of 7.2. Both of these CVEs are being tracked by CSCwh87343.
References
Mitigation and Patches
Exploits

https://github.com/W01fh4cker/CVE-2023-20198-RCE

https://github.com/smokeintheshell/CVE-2023-20198

https://github.com/fox-it/cisco-ios-xe-implant-detection

https://github.com/ZephrFish/CVE-2023-20198-Checker

https://github.com/Shadow0ps/CVE-2023-20198-Scanner

https://github.com/Atea-Redteam/CVE-2023-20198

https://github.com/Pushkarup/CVE-2023-20198

https://github.com/Tounsi007/CVE-2023-20198

https://github.com/iveresk/cve-2023-20198

https://github.com/RevoltSecurities/CVE-2023-20198

https://www.cisa.gov/known-exploited-vulnerabilities-catalog

https://github.com/Atea-Redteam/CVE-2023-20198

https://github.com/ZephrFish/Cisco-IOS-XE-Scanner

https://github.com/cert-orangecyberdefense/Cisco_CVE-2023-20198

https://github.com/Tounsi007/CVE-2023-20198

https://github.com/ZephrFish/CVE-2023-20198-Checker

https://github.com/Shadow0ps/CVE-2023-20198-Scanner

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z

https://github.com/fox-it/cisco-ios-xe-implant-detection

https://github.com/Pushkarup/CVE-2023-20198

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/cisco_ios_xe_cli_exec_cve_2023_20198.rb

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/cisco_ios_xe_os_exec_cve_2023_20273.rb

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/cisco_ios_xe_rce.rb

https://github.com/sohaibeb/CVE-2023-20198

http://packetstormsecurity.com/files/175674/Cisco-IOX-XE-Unauthenticated-Remote-Code-Execution.html

https://github.com/iveresk/cve-2023-20198

https://github.com/smokeintheshell/CVE-2023-20198

https://github.com/W01fh4cker/CVE-2023-20198-RCE

https://github.com/RevoltSecurities/CVE-2023-20198

Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CWE ID
NVD-CWE-Other

Recent Publish

CVE-2024-1709

CVE-2024-8546

CVE-2024-4657

CVE-2024-7024

CVE-2024-7023

CVE-2024-3400

See More ...

See SecOps Solution
in action

Schedule Demo
Agentless security for your infrastructure and applications - to build faster, more securely and in a fraction of the operational cost of other solutions
hello@secopsolution.com
+569-231-213
Compare
Qualys Cloud Agent Tenable Nessus Rapid7 InsightVM
Company
About Us Contact Career
Resources
Blog Sample Reports CVE Windows KB Case Studies eBooks Policy Templates Webinar
Try It
Patch Astra EPSS Calculator Contact Free Scan Schedule Demo Log In
© 2024  SecOps Solution, Inc.| Privacy Policy | Terms and Conditions .
Social Media :