#VU81670 Permissions, Privileges, and Access Controls in Cisco Systems, Inc products - CVE-2023-20235
Published: October 6, 2023
Vulnerability identifier: #VU81670
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-20235
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Catalyst IE3x00 Rugged Series Switches
Catalyst IR8300 Rugged Series Routers
Embedded Services 3300 Series Switches
Catalyst IR1100 Rugged Series Routers
Catalyst IR1800 Rugged Series Routers
Catalyst IR8100 Heavy Duty Series Routers
Cisco IOS XE
Catalyst IE3x00 Rugged Series Switches
Catalyst IR8300 Rugged Series Routers
Embedded Services 3300 Series Switches
Catalyst IR1100 Rugged Series Routers
Catalyst IR1800 Rugged Series Routers
Catalyst IR8100 Heavy Duty Series Routers
Cisco IOS XE
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a remote user to escalate privileges on the system.
The vulnerability exists due to the Docker containers with the privileged runtime option are not blocked when they are in application development mode within the Cisco IOx application. A remote administrator can gain access to the underlying operating system as the root user.
Remediation
Install updates from vendor's website.