Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisa_kevCISACISA-KEV-CVE-2023-20109
HistoryOct 10, 2023 - 12:00 a.m.

Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds Write Vulnerability

2023-10-1000:00:00
CISA
www.cisa.gov
5
cisco
ios xe
vpn
out-of-bounds
write
vulnerability
group encrypted transport

CVSS3

6.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.008

Percentile

81.5%

JSON

Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.

Related

prion 1
nessus 2
cisco 1
cve 1
attackerkb 1
cvelist 1
nvd 1
thn 2
prion
prion
Input validation
2023-09-27 18:15:00
nessus
nessus
Cisco IOS XE Software Group Encrypted Transport VPN Out of Bounds Write (cisco-sa-getvpn-rce-g8qR68sx)
2023-10-17 00:00:00
Cisco IOS Software Group Encrypted Transport VPN Out of Bounds Write (cisco-sa-getvpn-rce-g8qR68sx)
2023-10-17 00:00:00
cisco
cisco
Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability
2023-09-27 16:00:00
cve
cve
CVE-2023-20109
2023-09-27 18:15:10
attackerkb
attackerkb
CVE-2023-20109
2023-09-27 00:00:00
cvelist
cvelist
CVE-2023-20109
2023-09-27 17:23:21
nvd
nvd
CVE-2023-20109
2023-09-27 18:15:10
thn
thn
Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems
2023-10-05 12:02:00
Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts
2023-09-29 03:02:00

CVSS3

6.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.008

Percentile

81.5%

JSON
Related for CISA-KEV-CVE-2023-20109
prion1nessus2cisco1cve1attackerkb1cvelist1nvd1thn2