Cisco Security Advisory - Cisco BroadWorks Privilege Escalation Vulnerability

Started by Netwörkheäd, July 05, 2023, 12:06:49 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

July 05, 2023, 12:06:49 PM
Cisco BroadWorks Privilege Escalation Vulnerability

A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device.


The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted command to the affected system. A successful exploit could allow the attacker to execute commands as the root user. To exploit this vulnerability, an attacker must have valid BroadWorks administrative privileges on the affected device.


Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.


This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-privesc-yw4ekrXW



     
         
Security Impact Rating:  Medium
   
   
       
CVE: CVE-2023-20210
Source: Cisco BroadWorks Privilege Escalation Vulnerability
Let's not argue. Let's network!
Print
Go Up Pages1
User actions