SB2023020157 - Privilege escalation in Cisco Identity Services Engine (ISE) CLI commands

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Command Injection (CVE-ID: CVE-2023-20021)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation when processing input passed to certain CLI commands. A local user with Administrator privileges can execute arbitrary commands as root.

2) Command Injection (CVE-ID: CVE-2023-20022)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation when processing input passed to certain CLI commands. A local user with Administrator privileges can execute arbitrary commands as root.

3) Command Injection (CVE-ID: CVE-2023-20023)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation when processing input passed to certain CLI commands. A local user with Administrator privileges can execute arbitrary commands as root.

Remediation

Install update from vendor's website.

References

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-os-injection-pxhKsDM
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd07340
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd07341
• https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd07344