CVE-2023-20235Files or Directories Accessible to External Parties in Cisco IOS XE

CWE-552Files or Directories Accessible to External PartiesCWE-269Improper Privilege Management4 documents4 sources
Severity
8.8HIGHNVD
CNA6.5
EPSS
0.2%
top 60.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOS XECisco IOS XE Software
Timeline
PublishedOct 4

Description

A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docker containers with the privileged runtime option are not blocked when they are in application development mode. An attacker could exploit this vulnerability by using the Docker CLI to access an affected d

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5cisco/cisco_ios_xe_software66 versions+65
NVDcisco/ios_xe< 17.3.1

🔴Vulnerability Details

2
CVEList
CVE-2023-20235: A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Softwar2023-10-04
GHSA
GHSA-j6h7-r25f-wgww: A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Softwar2023-10-04

📋Vendor Advisories

1
Cisco
Cisco IOx Application Hosting Environment Privilege Escalation Vulnerability2023-10-04
CVE-2023-20235 — Cisco IOS XE vulnerability | cvebase