CVE-2023-20237
published 2023-08-16CVE-2023-20237: A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise…
PriorityP422medium4.3CVSS 3.1
AVAACLPRNUINSUCNILAN
EPSS
0.24%
14.8th percentile
A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible.
This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this vulnerability by submitting a crafted CLI command. A successful exploit could allow the attacker access to internal subnets beyond the sphere of their intended access level.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_intersight_virtual_appliance | — | — |
| cisco | cisco_intersight_virtual_appliance | — | — |
| cisco | cisco_intersight_virtual_appliance | — | — |
| cisco | cisco_intersight_virtual_appliance | — | — |
| cisco | cisco_intersight_virtual_appliance | — | — |
| cisco | intersight_virtual_appliance | < 1.0.9-589 | 1.0.9-589 |
| cisco | intersight_virtual_appliance_unauthenticated_port_forwarding | — | — |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
vendor_cisco4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
vendor_cisco·2023-08-16·CVSS 4.3
CVE-2023-20237 [MEDIUM] CWE-284 Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible.
This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this vulnerability by submitting a crafted CLI command. A successful exploit could allow the attacker access to internal subnets beyond the sphere of their intended access level.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdv
Cisco
Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
vendor_cisco·CVSS 3.1
CVE-2023-20237 Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
CVE-2023-20237: Cisco Intersight Virtual Appliance Unauthenticated Port Forwarding Vulnerability
A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible. This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this vulnerability by submitting a crafted CLI command. A successful exploit could allow the attacker access to internal subnets beyond the sphere of their intended access level. Cisco has released software updates that address this vulnerability. There are no
CVSS: 3.1
CWE: CWE-284, CWE-284
Bug IDs: CSCwf38029
GHSA
GHSA-92f9-q83c-gm35: A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are othe
ghsa_unreviewed·2023-08-17
CVE-2023-20237 [MEDIUM] CWE-284 GHSA-92f9-q83c-gm35: A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are othe
A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access internal HTTP services that are otherwise inaccessible.
This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacker could exploit this vulnerability by submitting a crafted CLI command. A successful exploit could allow the attacker access to internal subnets beyond the sphere of their intended access level.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-08-16
Published