CVE-2023-20002

CWE-918 — Server-Side Request Forgery (SSRF)CWE-59 CWE-200 — Information Exposure5 documents5 sources

Severity

4.4MEDIUM

EPSS

0.1%

top 81.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco Roomos Software Cisco Cisco Telepresence Endpoint Software (tc/ce)Cisco Roomos +1 more

Timeline

PublishedJan 20

Latest updateJun 20

Description

A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 1.8 | Impact: 2.5

Affected Packages4 packages

▶CVEListV5cisco/cisco_roomos_software7 versions+6

▶CVEListV5cisco/cisco_telepresence_endpoint_software_(tc/ce)41 versions+40

▶NVDcisco/roomos7 versions+6

▶NVDcisco/telepresence_collaboration_endpoint35 versions+34

🔴Vulnerability Details

GHSA

XWiki Platform's tags on non-viewable pages can be revealed to users↗2023-06-20

▶

GHSA

GHSA-2m96-fxj3-h8fg: A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSR↗2023-01-20

▶

CVEList

CVE-2023-20002: A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSR↗2023-01-19

▶

📋Vendor Advisories

Cisco

Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities↗2023-01-11

▶