CVE-2023-20252

CWE-862Missing AuthorizationCWE-287Improper AuthenticationCWE-286CWE-399CWE-798Hard-coded Credentials5 documents5 sources
Severity
9.8CRITICAL
EPSS
1.0%
top 22.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco Sd-wan VmanageCisco Catalyst Sd-wan Manager
Timeline
PublishedSep 27
Latest updateSep 28

Description

A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user. This vulnerability is due to improper authentication checks for SAML APIs. An attacker could exploit this vulnerability by sending requests directly to the SAML API. A successful exploit could allow the attacker to generate an authorization token sufficient to gain acces

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDcisco/catalyst_sd-wan_manager20.11.1.2, 20.9.3.2+1
CVEListV5cisco/cisco_sd-wan_vmanage20.11.1.2, 20.9.3.2+1

🔴Vulnerability Details

2
GHSA
GHSA-rjvr-rwwj-qxq2: A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote2023-09-27
CVEList
CVE-2023-20252: A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote2023-09-27

📋Vendor Advisories

1
Cisco
Cisco Catalyst SD-WAN Manager Vulnerabilities2023-09-27

🕵️Threat Intelligence

1
Bleepingcomputer
Cisco Catalyst SD-WAN Manager flaw allows remote server access2023-09-28
CVE-2023-20252 (CRITICAL CVSS 9.8) | A vulnerability in the Security Ass | cvebase.io