An issue exists in ezXML 0.8.3 up to and including 0.8.6. The function ezxml_ent_ok() mishandles recursion, leading to stack consumption for a crafted XML file.
Cisco IOS XE implant scanning & network detection
Network detection of CVE-2023-20198 exploitation and fingerprinting of post-exploitation of Cisco IOS XE devices
CVE-2023-20198 Suricata network detection
The suricata/ folder contains Suricata detection rules for exploitation of CVE-2023-20198 These rules monitor for a percent-encoded-percent which can be used to bypa