Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-20115

Published: 23/08/2023 Updated: 25/01/2024
CVSS v3 Base Score: 5.4 | Impact Score: 2.5 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Nx-os

Vulnerability Summary

A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote malicious user to download or overwrite files from the underlying operating system of an affected device. This vulnerability is due to a logic error when verifying the user role when an SFTP connection is opened to an affected device. An attacker could exploit this vulnerability by connecting and authenticating via SFTP as a valid, non-administrator user. A successful exploit could allow the malicious user to read or overwrite files from the underlying operating system with the privileges of the authenticated user. There are workarounds that address this vulnerability.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco nx-os 9.2\\(1\\)

cisco nx-os 9.2\\(2\\)

cisco nx-os 9.2\\(2t\\)

cisco nx-os 9.2\\(2v\\)

cisco nx-os 9.2\\(3\\)

cisco nx-os 9.2\\(4\\)

cisco nx-os 9.3\\(1\\)

cisco nx-os 9.3\\(2\\)

cisco nx-os 9.3\\(3\\)

cisco nx-os 9.3\\(4\\)

cisco nx-os 9.3\\(5\\)

cisco nx-os 9.3\\(6\\)

cisco nx-os 9.3\\(7\\)

cisco nx-os 9.3\\(7a\\)

cisco nx-os 9.3\\(8\\)

cisco nx-os 9.3\\(9\\)

cisco nx-os 9.3\\(10\\)

cisco nx-os 9.3\\(11\\)

cisco nx-os 10.1\\(1\\)

cisco nx-os 10.1\\(2\\)

cisco nx-os 10.1\\(2t\\)

cisco nx-os 10.2\\(1\\)

cisco nx-os 10.2\\(1q\\)

cisco nx-os 10.2\\(2\\)

cisco nx-os 10.2\\(3\\)

cisco nx-os 10.2\\(3t\\)

cisco nx-os 10.2\\(4\\)

cisco nx-os 10.2\\(5\\)

cisco nx-os 10.3\\(1\\)

cisco nx-os 10.3\\(2\\)

Vendor Advisories

Cisco: Cisco Nexus 3000 and 9000 Series Switches SFTP Server File Access Vulnerability
A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote attacker to download or overwrite files from the underlying operating system of an affected device This vulnerability is due to a logic error when verifying the user role whe ...

References

NVD-CWE-noinfohttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-sftp-xVAp5Hfdhttps://nvd.nist.govhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-sftp-xVAp5Hfd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook