CVE-2023-20084

Published Nov 22, 2023

Last updated 10 months ago

CVSS medium 4.4

Overview

Description: A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could exploit this vulnerability by persuading a user to put a malicious file into a specific folder and then persuading the user to execute the file within a limited time window. A successful exploit could allow the attacker to cause the endpoint software to fail to quarantine the malicious file or kill its process. Note: This vulnerability only applies to deployments that have the Windows Folder Redirection feature enabled.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 4.4
Impact score: 3.6
Exploitability score: 0.8
Vector string: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
Severity: MEDIUM

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
ykramarz@cisco.com: CWE-437

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:-:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73BBFC84-0CBF-4A1A-BC85-58743828CB8F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.0.7:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CBD2020-8CEC-4803-B8D0-8B8C051E3A17"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.0.9:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F61FA930-DE23-4BA5-B854-5E672534B14D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.1.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DB04EC8-AE2F-4186-B9C1-C36CA7B639AB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.1.7:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6D13A24-5CE0-44CD-A6FC-E0656C5FC99A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.1.9:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "994F00AC-6728-455E-A785-65BBBE20C7CB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.2.1:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18C64C5D-0100-4350-9784-90A214CD6A7A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.2.3:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C4D34D1-809E-4910-A23A-10DF0C1A6997"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.2.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C373761A-45AD-49E7-BF7E-27B7043A2769"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.2.9:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8A3A132-D202-4E5D-B9C1-DAF2916008FB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.2.19:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4E9E097-45BA-4009-AD4E-D8182E6068FD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.3.1:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42A92525-2605-455D-93A9-E4AF1995CCB6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.3.3:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10C46D21-DA26-46C6-9C1E-69A51D076210"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.3.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B56C363-A5B8-4F91-8414-4271D83E997D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:6.3.7:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6615CB6A-6B26-4F16-BC9B-6E8DB80B0DC0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.0.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF8AF3D2-0507-470E-B8EA-45D2427FAA58"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.1.1:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB6D5375-A4F4-4B24-B377-AE8DDA898F2F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.1.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "160F070E-CB81-4DA6-88D1-A01639B8D9D1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.2.3:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "879BF746-BF6F-4E19-9543-06DB4190F3B1"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.2.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DCD32D3-5F52-45AC-952F-AED1DE87FDFB"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.2.7:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E9E10B5-D259-4E9D-8688-3A48970FC28A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.2.11:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE6734FD-FD35-4BD9-AE25-DA01D6B985E0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.2.13:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C013C0C-C5E5-43A3-BFAB-7B92A86C6620"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.3.1:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CA4FD17-D6EE-4DBE-9F29-39D7AC67F6E4"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.3.3:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E56295B4-219E-41FA-843C-A271DFC2D167"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.3.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60B7C0C9-401D-4658-A683-22300A0007B0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:7.3.9:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1796BB1E-C26E-4394-A8C9-55D27A08367D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.3:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D427238E-BFDC-4567-BAF8-C2DC5DDB3F6D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.3.21242:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5309996-3287-4844-A116-12EFE751DB50"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.5:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53C0527C-79BB-4954-970F-04A06FBD13E5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.5.21322:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94EFBC3A-9EA8-4922-BAB2-BA4AE6CC5287"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.7:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9B45180-615C-40D4-A726-0B19EEEC1052"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.7.21417:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65D971B4-FC73-458C-80AA-A3EA0BB7DFD0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint:8.1.7.21512:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CE68809-1B04-4C6D-AE6D-2AB8AE76DC5F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:secure_endpoint_private_cloud:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35AC2B5C-975C-47E3-BC8B-AFFBBE59ED6F",
            "versionEndExcluding": "4.1.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References