Information disclosure in Cisco IOS XR
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-20064 |
| CWE-ID | CWE-200 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Cisco ASR 9000 Series Aggregation Services Routers Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco IOS XRv 9000 Router Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Network Convergence System 540 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc NCS 1001 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc NCS 1002 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc NCS5000 Hardware solutions / Routers & switches, VoIP, GSM, etc NCS 5000 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc NCS 5700 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc NCS 6000 Series Routers Hardware solutions / Routers & switches, VoIP, GSM, etc IOS XR White box Operating systems & Components / Operating system package or component NCS560 Hardware solutions / Firmware NCS5500 Hardware solutions / Firmware Cisco IOS XR Operating systems & Components / Operating system |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Information disclosure
EUVDB-ID: #VU73202
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-20064
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain access to potentially sensitive information.
The vulnerability exists due to the inclusion of unnecessary commands within the GRand Unified Bootloader (GRUB). An attacker with physical access can gain unauthorized access to sensitive information on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsCisco ASR 9000 Series Aggregation Services Routers: All versions
IOS XR White box: All versions
Cisco IOS XRv 9000 Router: All versions
Cisco Network Convergence System 540 Series Routers: All versions
NCS560: All versions
NCS 1001 Series Routers: All versions
NCS 1002 Series Routers: All versions
NCS5000: All versions
NCS 5000 Series Routers: All versions
NCS5500: All versions
NCS 5700 Series Routers: All versions
NCS 6000 Series Routers: All versions
Cisco IOS XR: before
CPE2.3- cpe:2.3:h:cisco_systems:cisco_asr_9000_series_aggregation_services_routers:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:ios_xr_white_box:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ios_xrv_9000_router:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_network_convergence_system_540_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs560:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs_1001_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs_1002_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs5000:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs_5000_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs5500:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs_5700_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:ncs_6000_series_routers:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco_systems:cisco_ios_xr:*:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
