Lucene search

CiscoCVE-2023-20252

HistorySep 27, 2023 - 6:15 p.m.

CVE-2023-20252

2023-09-2718:15:11

CWE-862

CWE-287

cisco

web.nvd.nist.gov

2490

cve

2023

20252

cisco

catalyst

sd-wan

manager

software

saml

api

vulnerability

unauthorized access

remote attacker

authentication checks

nvd

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

60.5%

JSON

A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user.

This vulnerability is due to improper authentication checks for SAML APIs. An attacker could exploit this vulnerability by sending requests directly to the SAML API. A successful exploit could allow the attacker to generate an authorization token sufficient to gain access to the application.

Affected configurations

Nvd

Node

ciscocatalyst_sd-wan_managerMatch20.9.3.2

ciscocatalyst_sd-wan_managerMatch20.11.1.2

VendorProductVersionCPE
ciscocatalyst_sd-wan_manager20.9.3.2cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.9.3.2:*:*:*:*:*:*:*
ciscocatalyst_sd-wan_manager20.11.1.2cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.11.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	catalyst_sd-wan_manager	20.9.3.2	cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.9.3.2:::::::*
cisco	catalyst_sd-wan_manager	20.11.1.2	cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.11.1.2:::::::*

CNA Affected

[
  {
    "vendor": "Cisco",
    "product": "Cisco SD-WAN vManage",
    "versions": [
      {
        "version": "20.9.3.2",
        "status": "affected"
      },
      {
        "version": "20.11.1.2",
        "status": "affected"
      }
    ]
  }
]