CVE-2023-20196 - Vulnerability Details

Vendors	Products
Cisco	Identity Services Engine

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-20196", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2022-10-27T18:47:50.365Z", "datePublished": "2023-11-01T17:01:34.690Z", "dateUpdated": "2024-08-02T09:05:36.920Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-01-25T16:57:54.983Z"}, "descriptions": [{"lang": "en", "value": "Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit these vulnerabilities, an attacker must have valid Administrator credentials on the affected device. These vulnerabilities are due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit these vulnerabilities by uploading a crafted file to an affected device. A successful exploit could allow the attacker to store malicious files in specific directories on the device. The attacker could later use those files to conduct additional attacks, including executing arbitrary code on the affected device with root privileges."}], "affected": [{"vendor": "Cisco", "product": "Cisco Identity Services Engine Software", "versions": [{"version": "2.6.0", "status": "affected"}, {"version": "2.6.0 p1", "status": "affected"}, {"version": "2.6.0 p2", "status": "affected"}, {"version": "2.6.0 p3", "status": "affected"}, {"version": "2.6.0 p5", "status": "affected"}, {"version": "2.6.0 p6", "status": "affected"}, {"version": "2.6.0 p7", "status": "affected"}, {"version": "2.6.0 p8", "status": "affected"}, {"version": "2.6.0 p9", "status": "affected"}, {"version": "2.6.0 p10", "status": "affected"}, {"version": "2.6.0 p11", "status": "affected"}, {"version": "2.6.0 p12", "status": "affected"}, {"version": "2.7.0", "status": "affected"}, {"version": "2.7.0 p1", "status": "affected"}, {"version": "2.7.0 p2", "status": "affected"}, {"version": "2.7.0 p3", "status": "affected"}, {"version": "2.7.0 p4", "status": "affected"}, {"version": "2.7.0 p5", "status": "affected"}, {"version": "2.7.0 p6", "status": "affected"}, {"version": "2.7.0 p7", "status": "affected"}, {"version": "2.7.0 p9", "status": "affected"}, {"version": "3.0.0", "status": "affected"}, {"version": "3.0.0 p1", "status": "affected"}, {"version": "3.0.0 p2", "status": "affected"}, {"version": "3.0.0 p3", "status": "affected"}, {"version": "3.0.0 p4", "status": "affected"}, {"version": "3.0.0 p5", "status": "affected"}, {"version": "3.0.0 p6", "status": "affected"}, {"version": "3.0.0 p7", "status": "affected"}, {"version": "3.1.0", "status": "affected"}, {"version": "3.1.0 p1", "status": "affected"}, {"version": "3.1.0 p3", "status": "affected"}, {"version": "3.1.0 p4", "status": "affected"}, {"version": "3.1.0 p5", "status": "affected"}, {"version": "3.1.0 p6", "status": "affected"}, {"version": "3.1.0 p7", "status": "affected"}, {"version": "3.2.0", "status": "affected"}, {"version": "3.2.0 p1", "status": "affected"}, {"version": "3.2.0 p2", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Unrestricted Upload of File with Dangerous Type", "type": "cwe", "cweId": "CWE-434"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs", "name": "cisco-sa-ise-file-upload-FceLP4xs"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L", "baseScore": 4.7, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."}], "source": {"advisory": "cisco-sa-ise-file-upload-FceLP4xs", "discovery": "INTERNAL", "defects": ["CSCwd93720"]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T09:05:36.920Z"}, "title": "CVE Program Container", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs", "name": "cisco-sa-ise-file-upload-FceLP4xs", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2023-20196 (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

state : PUBLISHED (string)

assignerShortName : cisco (string)

dateReserved : 2022-10-27T18:47:50.365Z (string)

datePublished : 2023-11-01T17:01:34.690Z (string)

dateUpdated : 2024-08-02T09:05:36.920Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-01-25T16:57:54.983Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit these vulnerabilities, an attacker must have valid Administrator credentials on the affected device. These vulnerabilities are due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit these vulnerabilities by uploading a crafted file to an affected device. A successful exploit could allow the attacker to store malicious files in specific directories on the device. The attacker could later use those files to conduct additional attacks, including executing arbitrary code on the affected device with root privileges. (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Identity Services Engine Software (string)

versions : [ »

0 : { »

version : 2.6.0 (string)

status : affected (string)

}

1 : { »

version : 2.6.0 p1 (string)

status : affected (string)

}

2 : { »

version : 2.6.0 p2 (string)

status : affected (string)

}

3 : { »

version : 2.6.0 p3 (string)

status : affected (string)

}

4 : { »

version : 2.6.0 p5 (string)

status : affected (string)

}

5 : { »

version : 2.6.0 p6 (string)

status : affected (string)

}

6 : { »

version : 2.6.0 p7 (string)

status : affected (string)

}

7 : { »

version : 2.6.0 p8 (string)

status : affected (string)

}

8 : { »

version : 2.6.0 p9 (string)

status : affected (string)

}

9 : { »

version : 2.6.0 p10 (string)

status : affected (string)

}

10 : { »

version : 2.6.0 p11 (string)

status : affected (string)

}

11 : { »

version : 2.6.0 p12 (string)

status : affected (string)

}

12 : { »

version : 2.7.0 (string)

status : affected (string)

}

13 : { »

version : 2.7.0 p1 (string)

status : affected (string)

}

14 : { »

version : 2.7.0 p2 (string)

status : affected (string)

}

15 : { »

version : 2.7.0 p3 (string)

status : affected (string)

}

16 : { »

version : 2.7.0 p4 (string)

status : affected (string)

}

17 : { »

version : 2.7.0 p5 (string)

status : affected (string)

}

18 : { »

version : 2.7.0 p6 (string)

status : affected (string)

}

19 : { »

version : 2.7.0 p7 (string)

status : affected (string)

}

20 : { »

version : 2.7.0 p9 (string)

status : affected (string)

}

21 : { »

version : 3.0.0 (string)

status : affected (string)

}

22 : { »

version : 3.0.0 p1 (string)

status : affected (string)

}

23 : { »

version : 3.0.0 p2 (string)

status : affected (string)

}

24 : { »

version : 3.0.0 p3 (string)

status : affected (string)

}

25 : { »

version : 3.0.0 p4 (string)

status : affected (string)

}

26 : { »

version : 3.0.0 p5 (string)

status : affected (string)

}

27 : { »

version : 3.0.0 p6 (string)

status : affected (string)

}

28 : { »

version : 3.0.0 p7 (string)

status : affected (string)

}

29 : { »

version : 3.1.0 (string)

status : affected (string)

}

30 : { »

version : 3.1.0 p1 (string)

status : affected (string)

}

31 : { »

version : 3.1.0 p3 (string)

status : affected (string)

}

32 : { »

version : 3.1.0 p4 (string)

status : affected (string)

}

33 : { »

version : 3.1.0 p5 (string)

status : affected (string)

}

34 : { »

version : 3.1.0 p6 (string)

status : affected (string)

}

35 : { »

version : 3.1.0 p7 (string)

status : affected (string)

}

36 : { »

version : 3.2.0 (string)

status : affected (string)

}

37 : { »

version : 3.2.0 p1 (string)

status : affected (string)

}

38 : { »

version : 3.2.0 p2 (string)

status : affected (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

description : Unrestricted Upload of File with Dangerous Type (string)

type : cwe (string)

cweId : CWE-434 (string)

}

]

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs (string)

name : cisco-sa-ise-file-upload-FceLP4xs (string)

}

]

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L (string)

baseScore : 4.7 (number)

baseSeverity : MEDIUM (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : HIGH (string)

userInteraction : NONE (string)

scope : UNCHANGED (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

availabilityImpact : LOW (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory. (string)

}

]

source : { »

advisory : cisco-sa-ise-file-upload-FceLP4xs (string)

discovery : INTERNAL (string)

defects : [ »

0 : CSCwd93720 (string)

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T09:05:36.920Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs (string)

name : cisco-sa-ise-file-upload-FceLP4xs (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:-:*:*:*:*:*:*", "matchCriteriaId": "1F22FABF-2831-4895-B0A9-283B98398F43", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "B83D0F20-5A43-4583-AFAF-CD9D20352437", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "2887A2C0-BADA-41D3-AA6A-F10BC58AA7F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "5ADE32BD-C500-47D8-86D6-B08F55F1BBDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "22F23314-96BE-42F6-AE07-CC13F8856029", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "76265489-E5DC-46F1-9475-2FDFCEE32CF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "9517A1B4-45BA-44DD-9122-C86BF9075EFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "1BC35A24-68DB-43C5-A817-9B35018F5990", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch8:*:*:*:*:*:*", "matchCriteriaId": "DC94625A-6ED0-439B-A2DA-15A49B2FED93", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch9:*:*:*:*:*:*", "matchCriteriaId": "2392609B-AFEA-4BBD-99FA-E90AD4C2AE8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:-:*:*:*:*:*:*", "matchCriteriaId": "A1063044-BCD7-487F-9880-141C30547E36", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "DA42E65A-7207-48B8-BE1B-0B352201BC09", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "75DDAF38-4D5F-4EE4-A428-68D28FC0DA96", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "C5FB6AA6-F8C9-48A6-BDDA-1D25C43564EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "2B3A267A-5FEA-426D-903E-BD3F4F94A1A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "B1B3207B-1B9C-41AA-8EF6-8478458462E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "C5B9E7F3-B0F2-4A6A-B939-A62E9B12CCEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "EF4C5A58-D0AE-48D6-9757-18C1D5BE5070", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:-:*:*:*:*:*:*", "matchCriteriaId": "C4DB9726-532F-45CE-81FD-45F2F6C7CE51", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch1:*:*:*:*:*:*", "matchCriteriaId": "2E8F0066-0EC0-41FD-80BE-55C4ED5F6B0E", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch2:*:*:*:*:*:*", "matchCriteriaId": "A1E81F86-7ED6-4D6C-8DAF-09EB2A7BC496", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch3:*:*:*:*:*:*", "matchCriteriaId": "5D1765DB-1BEF-4CE9-8B86-B91F709600EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch4:*:*:*:*:*:*", "matchCriteriaId": "3D1E80EF-C3FD-4F7A-B63D-0EAA5C878B11", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch5:*:*:*:*:*:*", "matchCriteriaId": "095F27EC-5713-4D4F-AD06-57D3DF068B90", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch6:*:*:*:*:*:*", "matchCriteriaId": "FEA5210C-E674-4C4B-9EB3-C681C70005B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch7:*:*:*:*:*:*", "matchCriteriaId": "C95F2367-A1A0-46B5-AFC0-9929FC899EE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:-:*:*:*:*:*:*", "matchCriteriaId": "36722B6C-64A5-4D00-94E1-442878C37A35", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch1:*:*:*:*:*:*", "matchCriteriaId": "7EEEA06A-AD58-48D3-8975-B21A961985B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch2:*:*:*:*:*:*", "matchCriteriaId": "ED937BCD-60F7-4555-99D8-B6229214FA73", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit these vulnerabilities, an attacker must have valid Administrator credentials on the affected device. These vulnerabilities are due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit these vulnerabilities by uploading a crafted file to an affected device. A successful exploit could allow the attacker to store malicious files in specific directories on the device. The attacker could later use those files to conduct additional attacks, including executing arbitrary code on the affected device with root privileges."}, {"lang": "es", "value": "Dos vulnerabilidades en Cisco ISE podr\u00edan permitir que un atacante remoto autenticado cargue archivos arbitrarios en un dispositivo afectado. Para aprovechar estas vulnerabilidades, un atacante debe tener credenciales de administrador v\u00e1lidas en el dispositivo afectado. Estas vulnerabilidades se deben a una validaci\u00f3n inadecuada de los archivos que se cargan en la interfaz de administraci\u00f3n basada en web. Un atacante podr\u00eda aprovechar estas vulnerabilidades cargando un archivo manipulado en un dispositivo afectado. Un exploit exitoso podr\u00eda permitir al atacante almacenar archivos maliciosos en directorios espec\u00edficos del dispositivo. Posteriormente, el atacante podr\u00eda utilizar esos archivos para realizar ataques adicionales, incluida la ejecuci\u00f3n de c\u00f3digo arbitrario en el dispositivo afectado con privilegios de root."}], "id": "CVE-2023-20196", "lastModified": "2024-11-21T07:40:48.440", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 3.4, "source": "ykramarz@cisco.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-01T18:15:09.400", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "ykramarz@cisco.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-434"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:-:*:*:*:*:*:* (string)

matchCriteriaId : 1F22FABF-2831-4895-B0A9-283B98398F43 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch1:*:*:*:*:*:* (string)

matchCriteriaId : B83D0F20-5A43-4583-AFAF-CD9D20352437 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch2:*:*:*:*:*:* (string)

matchCriteriaId : 2887A2C0-BADA-41D3-AA6A-F10BC58AA7F9 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch3:*:*:*:*:*:* (string)

matchCriteriaId : 5ADE32BD-C500-47D8-86D6-B08F55F1BBDF (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch4:*:*:*:*:*:* (string)

matchCriteriaId : 22F23314-96BE-42F6-AE07-CC13F8856029 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch5:*:*:*:*:*:* (string)

matchCriteriaId : 76265489-E5DC-46F1-9475-2FDFCEE32CF4 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch6:*:*:*:*:*:* (string)

matchCriteriaId : 9517A1B4-45BA-44DD-9122-C86BF9075EFE (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch7:*:*:*:*:*:* (string)

matchCriteriaId : 1BC35A24-68DB-43C5-A817-9B35018F5990 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch8:*:*:*:*:*:* (string)

matchCriteriaId : DC94625A-6ED0-439B-A2DA-15A49B2FED93 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch9:*:*:*:*:*:* (string)

matchCriteriaId : 2392609B-AFEA-4BBD-99FA-E90AD4C2AE8F (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:-:*:*:*:*:*:* (string)

matchCriteriaId : A1063044-BCD7-487F-9880-141C30547E36 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch1:*:*:*:*:*:* (string)

matchCriteriaId : DA42E65A-7207-48B8-BE1B-0B352201BC09 (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch2:*:*:*:*:*:* (string)

matchCriteriaId : 75DDAF38-4D5F-4EE4-A428-68D28FC0DA96 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch3:*:*:*:*:*:* (string)

matchCriteriaId : C5FB6AA6-F8C9-48A6-BDDA-1D25C43564EB (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch4:*:*:*:*:*:* (string)

matchCriteriaId : 2B3A267A-5FEA-426D-903E-BD3F4F94A1A4 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch5:*:*:*:*:*:* (string)

matchCriteriaId : B1B3207B-1B9C-41AA-8EF6-8478458462E7 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch6:*:*:*:*:*:* (string)

matchCriteriaId : C5B9E7F3-B0F2-4A6A-B939-A62E9B12CCEB (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch7:*:*:*:*:*:* (string)

matchCriteriaId : EF4C5A58-D0AE-48D6-9757-18C1D5BE5070 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:-:*:*:*:*:*:* (string)

matchCriteriaId : C4DB9726-532F-45CE-81FD-45F2F6C7CE51 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch1:*:*:*:*:*:* (string)

matchCriteriaId : 2E8F0066-0EC0-41FD-80BE-55C4ED5F6B0E (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch2:*:*:*:*:*:* (string)

matchCriteriaId : A1E81F86-7ED6-4D6C-8DAF-09EB2A7BC496 (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch3:*:*:*:*:*:* (string)

matchCriteriaId : 5D1765DB-1BEF-4CE9-8B86-B91F709600EB (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch4:*:*:*:*:*:* (string)

matchCriteriaId : 3D1E80EF-C3FD-4F7A-B63D-0EAA5C878B11 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch5:*:*:*:*:*:* (string)

matchCriteriaId : 095F27EC-5713-4D4F-AD06-57D3DF068B90 (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch6:*:*:*:*:*:* (string)

matchCriteriaId : FEA5210C-E674-4C4B-9EB3-C681C70005B6 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.1:patch7:*:*:*:*:*:* (string)

matchCriteriaId : C95F2367-A1A0-46B5-AFC0-9929FC899EE2 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.2:-:*:*:*:*:*:* (string)

matchCriteriaId : 36722B6C-64A5-4D00-94E1-442878C37A35 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.2:patch1:*:*:*:*:*:* (string)

matchCriteriaId : 7EEEA06A-AD58-48D3-8975-B21A961985B3 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:a:cisco:identity_services_engine:3.2:patch2:*:*:*:*:*:* (string)

matchCriteriaId : ED937BCD-60F7-4555-99D8-B6229214FA73 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit these vulnerabilities, an attacker must have valid Administrator credentials on the affected device. These vulnerabilities are due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit these vulnerabilities by uploading a crafted file to an affected device. A successful exploit could allow the attacker to store malicious files in specific directories on the device. The attacker could later use those files to conduct additional attacks, including executing arbitrary code on the affected device with root privileges. (string)

}

1 : { »

lang : es (string)

value : Dos vulnerabilidades en Cisco ISE podrían permitir que un atacante remoto autenticado cargue archivos arbitrarios en un dispositivo afectado. Para aprovechar estas vulnerabilidades, un atacante debe tener credenciales de administrador válidas en el dispositivo afectado. Estas vulnerabilidades se deben a una validación inadecuada de los archivos que se cargan en la interfaz de administración basada en web. Un atacante podría aprovechar estas vulnerabilidades cargando un archivo manipulado en un dispositivo afectado. Un exploit exitoso podría permitir al atacante almacenar archivos maliciosos en directorios específicos del dispositivo. Posteriormente, el atacante podría utilizar esos archivos para realizar ataques adicionales, incluida la ejecución de código arbitrario en el dispositivo afectado con privilegios de root. (string)

}

]

id : CVE-2023-20196 (string)

lastModified : 2024-11-21T07:40:48.440 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 4.7 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

privilegesRequired : HIGH (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 1.2 (number)

impactScore : 3.4 (number)

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.2 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : HIGH (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.2 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2023-11-01T18:15:09.400 (string)

references : [ »

0 : { »

source : ykramarz@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-FceLP4xs (string)

}

]

sourceIdentifier : ykramarz@cisco.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-434 (string)

}

]

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-434 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object