Vulnerability Bulletins

Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Denial of Service Vulnerability


System information

   
Affected software Cisco

Description

A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper input validation when parsing HTTP requests. An attacker could exploit this vulnerability by sending a sustained stream of crafted requests to an affected device. A successful exploit

More info:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-dos-HpkeYzp?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20BroadWorks%20Application%20Delivery%20Platform%20and%20Xtended%20Services%20Platform%20Denial%20of%20Service%20Vulnerability&vs_k=1

Standar resources

Property Value
CVE CVE-2023-20020.

Version history

Version Comments Date
1.0 Advisory issued 2023-01-12
Ministerio de Defensa
CNI
CCN
CCN-CERT