OS Command Injection in Cisco Systems, Inc products - CVE-2023-20076
Published: February 1, 2023
Vulnerability identifier: #VU71744
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-20076
CWE-ID: CWE-78
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
CGR1000 Compute Modules
IR510 WPAN Industrial Routers
Catalyst 3850 Series Switches
Catalyst 8000V Edge Software
Catalyst 8200 Series Edge Platforms
Catalyst 8300 Series Edge Platforms
Catalyst 8300 Series Edge Universal CPE
Catalyst 8500L Series Edge Platforms
Catalyst 9200 Series Switches
Catalyst 9300 Series Switches
Catalyst 9400 Series Switches
Catalyst 9500 Series Switches
Catalyst 9500H Series Switches
Catalyst 9600 Series Switches
Catalyst 9800 Series Wireless Controllers
Catalyst IE3200 Rugged Series
Catalyst IE3300 Rugged Series
Catalyst IE3400 Heavy Duty Series
Catalyst IE3400 Rugged Series
Catalyst IE9300 Rugged Series
IC3000 Industrial Compute Gateway
Catalyst 8200 Series Edge uCPE
Catalyst 8500 Series Edge Platforms
Catalyst Cellular Gateways
Catalyst ESS9300 Embedded Series Switch
800 Series Industrial Integrated Services Routers
CGR1000 Compute Modules
IR510 WPAN Industrial Routers
Catalyst 3850 Series Switches
Catalyst 8000V Edge Software
Catalyst 8200 Series Edge Platforms
Catalyst 8300 Series Edge Platforms
Catalyst 8300 Series Edge Universal CPE
Catalyst 8500L Series Edge Platforms
Catalyst 9200 Series Switches
Catalyst 9300 Series Switches
Catalyst 9400 Series Switches
Catalyst 9500 Series Switches
Catalyst 9500H Series Switches
Catalyst 9600 Series Switches
Catalyst 9800 Series Wireless Controllers
Catalyst IE3200 Rugged Series
Catalyst IE3300 Rugged Series
Catalyst IE3400 Heavy Duty Series
Catalyst IE3400 Rugged Series
Catalyst IE9300 Rugged Series
IC3000 Industrial Compute Gateway
Catalyst 8200 Series Edge uCPE
Catalyst 8500 Series Edge Platforms
Catalyst Cellular Gateways
Catalyst ESS9300 Embedded Series Switch
800 Series Industrial Integrated Services Routers
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a remote user to execute arbitrary shell commands on the target system.
The vulnerability exists due to improper input validation in the Cisco IOx application hosting environment when parsing parameters passed in for activation of an application. A remote authenticated user can pass specially crafted data and execute arbitrary OS commands as root on the underlying host system.
Remediation
Install updates from vendor's website.