CVE-2023-20115
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/08/2023
Last modified:
25/01/2024
Description
A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote attacker to download or overwrite files from the underlying operating system of an affected device. <br />
<br />
This vulnerability is due to a logic error when verifying the user role when an SFTP connection is opened to an affected device. An attacker could exploit this vulnerability by connecting and authenticating via SFTP as a valid, non-administrator user. A successful exploit could allow the attacker to read or overwrite files from the underlying operating system with the privileges of the authenticated user.<br />
<br />
There are workarounds that address this vulnerability.
Impact
Base Score 3.x
5.40
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:nx-os:9.2\(1\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.2\(2\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.2\(2t\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.2\(2v\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.2\(3\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.2\(4\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(1\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(2\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(3\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(4\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(5\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(6\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(7\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(7a\):*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:nx-os:9.3\(8\):*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page