Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature
|
System information
|
|
|
Affected software |
Cisco |
Description
|
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases. Cisco will update the advisory as additional releases post to Cisco Software Download Center. Fix information can be found in the Fixed Software section of this advisory. Our investigation has determined that the actors exploited two previously unknown issues. The attacker first exploited CVE-2023-20198 to gain initial
More info:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Vulnerabilities%20in%20Cisco%20IOS%20XE%20Software%20Web%20UI%20Feature&vs_k=1 |
Standar resources
|
Property |
Value |
CVE |
CVE-2023-20198 and CVE-2023-20273. |