Lucene search
HistoryJan 17, 2024 - 5:15 p.m.
CVE-2023-20258
cisco
prime infrastructure
vulnerability
web interface
remote attacker
command execution
nvd
cve-2023-20258
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
35.6%
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. This vulnerability is due to improper processing of serialized Java objects by the affected application. An attacker could exploit this vulnerability by uploading a document containing malicious serialized Java objects to be processed by the affected application. A successful exploit could allow the attacker to cause the application to execute arbitrary commands.
Affected configurations
Node
ciscoevolved_programmable_network_managerRange<7.1.1
ORciscoprime_infrastructureRange<3.10.4
ORciscoprime_infrastructureMatch3.10.4-
ORciscoprime_infrastructureMatch3.10.4update_1
CNA Affected
[
{
"vendor": "Cisco",
"product": "Cisco Prime Infrastructure",
"versions": [
{
"version": "2.0.0",
"status": "affected"
},
{
"version": "2.0.10",
"status": "affected"
},
{
"version": "2.0.39",
"status": "affected"
},
{
"version": "2.1.0",
"status": "affected"
},
{
"version": "2.1.1",
"status": "affected"
},
{
"version": "2.1.2",
"status": "affected"
},
{
"version": "2.1.56",
"status": "affected"
},
{
"version": "2.2.0",
"status": "affected"
},
{
"version": "2.2.1",
"status": "affected"
},
{
"version": "2.2.2",
"status": "affected"
},
{
"version": "2.2.3",
"status": "affected"
},
{
"version": "2.2.10",
"status": "affected"
},
{
"version": "2.2.8",
"status": "affected"
},
{
"version": "2.2.4",
"status": "affected"
},
{
"version": "2.2.7",
"status": "affected"
},
{
"version": "2.2.5",
"status": "affected"
},
{
"version": "2.2.9",
"status": "affected"
},
{
"version": "2.2.1 Update 01",
"status": "affected"
},
{
"version": "2.2.2 Update 03",
"status": "affected"
},
{
"version": "2.2.2 Update 04",
"status": "affected"
},
{
"version": "2.2.3 Update 02",
"status": "affected"
},
{
"version": "2.2.3 Update 03",
"status": "affected"
},
{
"version": "2.2.3 Update 04",
"status": "affected"
},
{
"version": "2.2.3 Update 05",
"status": "affected"
},
{
"version": "2.2.3 Update 06",
"status": "affected"
},
{
"version": "3.0.0",
"status": "affected"
},
{
"version": "3.0.1",
"status": "affected"
},
{
"version": "3.0.2",
"status": "affected"
},
{
"version": "3.0.3",
"status": "affected"
},
{
"version": "3.0.4",
"status": "affected"
},
{
"version": "3.0.6",
"status": "affected"
},
{
"version": "3.0.5",
"status": "affected"
},
{
"version": "3.0.7",
"status": "affected"
},
{
"version": "3.1.0",
"status": "affected"
},
{
"version": "3.1.1",
"status": "affected"
},
{
"version": "3.1.7",
"status": "affected"
},
{
"version": "3.1.5",
"status": "affected"
},
{
"version": "3.1.2",
"status": "affected"
},
{
"version": "3.1.3",
"status": "affected"
},
{
"version": "3.1.4",
"status": "affected"
},
{
"version": "3.1.6",
"status": "affected"
},
{
"version": "3.2.2",
"status": "affected"
},
{
"version": "3.2.0-FIPS",
"status": "affected"
},
{
"version": "3.2.1",
"status": "affected"
},
{
"version": "3.3.0",
"status": "affected"
},
{
"version": "3.3.1",
"status": "affected"
},
{
"version": "3.3.0 Update 01",
"status": "affected"
},
{
"version": "3.4.0",
"status": "affected"
},
{
"version": "3.4.1",
"status": "affected"
},
{
"version": "3.4.2",
"status": "affected"
},
{
"version": "3.4.1 Update 01",
"status": "affected"
},
{
"version": "3.4.1 Update 02",
"status": "affected"
},
{
"version": "3.4.2 Update 01",
"status": "affected"
},
{
"version": "3.5.0",
"status": "affected"
},
{
"version": "3.5.1",
"status": "affected"
},
{
"version": "3.5.0 Update 01",
"status": "affected"
},
{
"version": "3.5.0 Update 02",
"status": "affected"
},
{
"version": "3.5.0 Update 03",
"status": "affected"
},
{
"version": "3.5.1 Update 01",
"status": "affected"
},
{
"version": "3.5.1 Update 02",
"status": "affected"
},
{
"version": "3.5.1 Update 03",
"status": "affected"
},
{
"version": "3.6.0",
"status": "affected"
},
{
"version": "3.6.0 Update 01",
"status": "affected"
},
{
"version": "3.6.0 Update 02",
"status": "affected"
},
{
"version": "3.6.0 Update 03",
"status": "affected"
},
{
"version": "3.6.0 Update 04",
"status": "affected"
},
{
"version": "2.1",
"status": "affected"
},
{
"version": "2.2",
"status": "affected"
},
{
"version": "3.2",
"status": "affected"
},
{
"version": "3.4_DP1",
"status": "affected"
},
{
"version": "3.4_DP3",
"status": "affected"
},
{
"version": "3.4_DP2",
"status": "affected"
},
{
"version": "3.5_DP1",
"status": "affected"
},
{
"version": "3.4_DP7",
"status": "affected"
},
{
"version": "3.4_DP10",
"status": "affected"
},
{
"version": "3.4_DP5",
"status": "affected"
},
{
"version": "3.1_DP15",
"status": "affected"
},
{
"version": "3.4_DP11",
"status": "affected"
},
{
"version": "3.4_DP8",
"status": "affected"
},
{
"version": "3.7_DP1",
"status": "affected"
},
{
"version": "3.3_DP4",
"status": "affected"
},
{
"version": "3.10_DP1",
"status": "affected"
},
{
"version": "3.8_DP1",
"status": "affected"
},
{
"version": "3.7_DP2",
"status": "affected"
},
{
"version": "3.6_DP1",
"status": "affected"
},
{
"version": "3.1_DP16",
"status": "affected"
},
{
"version": "3.5_DP4",
"status": "affected"
},
{
"version": "3.3_DP3",
"status": "affected"
},
{
"version": "3.2_DP2",
"status": "affected"
},
{
"version": "3.4_DP4",
"status": "affected"
},
{
"version": "3.1_DP14",
"status": "affected"
},
{
"version": "3.1_DP6",
"status": "affected"
},
{
"version": "3.1_DP9",
"status": "affected"
},
{
"version": "3.4_DP6",
"status": "affected"
},
{
"version": "3.2_DP3",
"status": "affected"
},
{
"version": "3.4_DP9",
"status": "affected"
},
{
"version": "3.3_DP2",
"status": "affected"
},
{
"version": "3.2_DP1",
"status": "affected"
},
{
"version": "3.1_DP10",
"status": "affected"
},
{
"version": "3.9_DP1",
"status": "affected"
},
{
"version": "3.3_DP1",
"status": "affected"
},
{
"version": "3.1_DP13",
"status": "affected"
},
{
"version": "3.5_DP2",
"status": "affected"
},
{
"version": "3.1_DP12",
"status": "affected"
},
{
"version": "3.1_DP4",
"status": "affected"
},
{
"version": "3.5_DP3",
"status": "affected"
},
{
"version": "3.1_DP8",
"status": "affected"
},
{
"version": "3.1_DP7",
"status": "affected"
},
{
"version": "3.2_DP4",
"status": "affected"
},
{
"version": "3.1_DP11",
"status": "affected"
},
{
"version": "3.1_DP5",
"status": "affected"
},
{
"version": "3.7.0",
"status": "affected"
},
{
"version": "3.7.1",
"status": "affected"
},
{
"version": "3.7.1 Update 04",
"status": "affected"
},
{
"version": "3.7.1 Update 06",
"status": "affected"
},
{
"version": "3.7.1 Update 07",
"status": "affected"
},
{
"version": "3.7.1 Update 03",
"status": "affected"
},
{
"version": "3.7.0 Update 03",
"status": "affected"
},
{
"version": "3.7.1 Update 01",
"status": "affected"
},
{
"version": "3.7.1 Update 02",
"status": "affected"
},
{
"version": "3.7.1 Update 05",
"status": "affected"
},
{
"version": "3.8.0",
"status": "affected"
},
{
"version": "3.8.1",
"status": "affected"
},
{
"version": "3.8.1 Update 02",
"status": "affected"
},
{
"version": "3.8.1 Update 04",
"status": "affected"
},
{
"version": "3.8.1 Update 01",
"status": "affected"
},
{
"version": "3.8.1 Update 03",
"status": "affected"
},
{
"version": "3.8.0 Update 01",
"status": "affected"
},
{
"version": "3.8.0 Update 02",
"status": "affected"
},
{
"version": "3.9.0",
"status": "affected"
},
{
"version": "3.9.1",
"status": "affected"
},
{
"version": "3.9.1 Update 02",
"status": "affected"
},
{
"version": "3.9.1 Update 03",
"status": "affected"
},
{
"version": "3.9.1 Update 01",
"status": "affected"
},
{
"version": "3.9.1 Update 04",
"status": "affected"
},
{
"version": "3.9.0 Update 01",
"status": "affected"
},
{
"version": "3.10.0",
"status": "affected"
},
{
"version": "3.10.3",
"status": "affected"
},
{
"version": "3.10.1",
"status": "affected"
},
{
"version": "3.10.2",
"status": "affected"
},
{
"version": "3.10 Update 01",
"status": "affected"
},
{
"version": "3.10.4",
"status": "affected"
},
{
"version": "3.10.4 Update 01",
"status": "affected"
}
]
}
]Related
cvelist
cvelist
CVE-2023-20258
2024-01-17 16:56:57
nvd
nvd
CVE-2023-20258
2024-01-17 17:15:10
prion
prion
Input validation
2024-01-17 17:15:00
nessus
nessus
cisco
cisco
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
35.6%
Related for CVE-2023-20258