CVE-2023-20097
Published Mar 23, 2023
Last updated a year ago
Overview
- Description
- A vulnerability in Cisco access points (AP) software could allow an authenticated, local attacker to inject arbitrary commands and execute them with root privileges. This vulnerability is due to improper input validation of commands that are issued from a wireless controller to an AP. An attacker with Administrator access to the CLI of the controller could exploit this vulnerability by issuing a command with crafted arguments. A successful exploit could allow the attacker to gain full root access on the AP.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.7
- Impact score
- 5.9
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9EA7E3F-2EA0-4B32-BCA0-0E88FC9E4F9D",
"versionEndExcluding": "8.10.183.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:esw6300:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "09051BC5-CFE7-43EF-975D-BF77724E8776"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:aironet_access_point_software:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "386B92C5-05F3-40A8-8F35-280DD9E84169",
"versionEndExcluding": "17.9.0.135"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:aironet_1540:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "72BFEED4-7AD7-406F-A044-BDEA98133711"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1542d:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C5DB7510-2741-464A-8FC9-8419985E330F"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1542i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "3AE916B2-CAAD-4508-A47E-A7D4D88B077A"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1560:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8191FD87-4E55-4F38-8DB0-7E6772AD075B"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1562d:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1D717945-EE41-4D0F-86EF-90826EBE9C3E"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1562e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "99EAEA92-6589-4DFB-BC4B-8CBA425452D9"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1562i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D27AB201-342D-4517-9E05-6088598F4695"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "02F4C00A-D1E2-4B21-A14E-F30B4B818493"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1800i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BC836B4D-A489-4300-B0A2-EF0B6E01E623"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1810:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "36F923CF-D4EB-48F8-821D-8BB3A69ABB62"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1810w:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1D613A17-FFA9-4FF0-9C2A-AF8ACD59B765"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1815:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F8BF9DDB-884D-47B5-A295-8BFA5207C412"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1815i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "207DC80E-499C-4CA3-8A88-F027DBC64CCF"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1815m:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6E3225A6-DA3C-49FE-B0F8-8AC6B7DA3347"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1815t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0E1D6F32-3F51-4C5B-97AF-1AD8917FCB07"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_1815w:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E09FEE6E-8169-4E90-ACF6-88BEE747D7A8"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_2800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "3C28A6B0-10FF-4C6D-8527-2313E163C98E"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_2800e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "098A82FF-95F7-416A-BADD-C57CE81ACD32"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_2800i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DD1D5813-9223-4B3F-9DE2-F3EF854FC927"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_3800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7636F7E2-E386-4F8C-A0C5-F510D8E21DA4"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_3800e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "10D7583E-2B61-40F1-B9A6-701DA08F8CDF"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_3800i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "945DDBE7-6233-416B-9BEE-7029F047E298"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_3800p:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0ED89428-750C-4C26-B2A1-E3D63F8B3F44"
},
{
"criteria": "cpe:2.3:h:cisco:aironet_4800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C4D8A4CB-5B80-4332-BCBC-DA18AD94D215"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "749040C6-A21A-4EF3-8213-42EE01CFA303"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9105:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5F3CCCFE-88CC-4F7B-8958-79CA62516EA9"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9105ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C76DACE3-7D3B-4FE6-8567-0C9D43FF7A7E"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9105axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "19F93DF4-67DB-4B30-AC22-60C67DF32DB2"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9105axw:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "59C77B06-3C22-4092-AAAB-DB099A0B16A6"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4081C532-3B10-4FBF-BB22-5BA17BC6FCF8"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9115_ap:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "56A3430C-9AF7-4604-AD95-FCF2989E9EB0"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9115ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "36E2B891-4F41-4D0D-BAA2-0256C0565BDE"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9115axe:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DE4C56A6-E843-498A-A17B-D3D1B01E70E7"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9115axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F050F416-44C3-474C-9002-321A33F288D6"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9117:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6FCE2220-E2E6-4A17-9F0A-2C927FAB4AA5"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9117_ap:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C4AE36E2-E7E9-4E49-8BFF-615DACFC65C1"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9117ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BA8798F4-35BB-4F81-9385-B0274BFAAF15"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9117axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7A699C5C-CD03-4263-952F-5074B470F20E"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A47C2D6F-8F90-4D74-AFE1-EAE954021F46"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120_ap:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C04889F8-3C2A-41AA-9DC9-5A4A4BBE60E7"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5889AFA2-752E-4EDD-A837-5C003025B25C"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120axe:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "46D41CFE-784B-40EE-9431-8097428E5892"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5D148A27-85B6-4883-96B5-343C8D32F23B"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9120axp:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "735CA950-672C-4787-8910-48AD07868FDE"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9124:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C11EF240-7599-4138-B7A7-17E4479F5B83"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9124ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "53852300-C1D2-4F84-B8DA-4EDBCB374075"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9124axd:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E987C945-4D6D-4BE5-B6F0-784B7E821D11"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9124axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B434C6D7-F583-4D2B-9275-38A5EC4ECC30"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9130:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E1C8E35A-5A9B-4D56-A753-937D5CFB5B19"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9130_ap:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "248A3FFC-C33C-4336-A37C-67B6046556E5"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9130ax:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5CADEB5A-5147-4420-A825-BAB07BD60AA2"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9130axe:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4EC1F736-6240-4FA2-9FEC-D8798C9D287C"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_9130axi:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "169E5354-07EA-4639-AB4B-20D2B9DE784C"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_iw6300:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C559D6F7-B432-4A2A-BE0E-9697CC412C70"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_iw6300_ac:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "23153AA4-B169-4421-BFF8-873205FC9C21"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_iw6300_dc:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "67DC3B71-B64D-4C49-B089-B274FA34ECB6"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_iw6300_dcw:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4F857465-314F-4124-9835-8A269486D654"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "810472FD-52DE-4694-98FA-1AD858BEC895",
"versionEndExcluding": "16.12.8"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55C1CD64-ADE0-453F-9E0B-EA952F743892",
"versionEndExcluding": "17.3.6",
"versionStartIncluding": "17.1"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "612EB810-AB85-49D4-BB5C-C03E2B1A0B43",
"versionEndExcluding": "17.6.5",
"versionStartIncluding": "17.4"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F4C5572-9D7D-405C-AF93-DF9FF07F92F7",
"versionEndExcluding": "17.9.2",
"versionStartIncluding": "17.7"
}
],
"operator": "OR"
}
]
}
]