CVE-2023-20040

CWE-23 CWE-434 — Unrestricted File Upload4 documents4 sources

Severity

5.5MEDIUM

EPSS

1.5%

top 18.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Network Services Orchestrator Cisco Cisco Network Services Orchestrator

Timeline

PublishedJan 20

Description

A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause a denial of service (DoS) on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of the admin group. This vulnerability exists because user-supplied input is not properly validated when NETCONF is used to upload packages to an affected device. An attacker could exploit this vulnerability by uploadi…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:HExploitability: 1.2 | Impact: 4.2

Affected Packages2 packages

▶NVDcisco/network_services_orchestrator3.3 — 5.4.7+4

▶CVEListV5cisco/cisco_network_services_orchestrator4.7.3

🔴Vulnerability Details

GHSA

GHSA-v96g-9h62-76pj: A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause a denial of↗2023-01-20

▶

CVEList

CVE-2023-20040: A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause a denial of↗2023-01-19

▶

📋Vendor Advisories

Cisco

Cisco Network Services Orchestrator Path Traversal Vulnerability↗2023-01-11

▶