Lucene search
Hive ProHIVEPRO:9663AC6F44347BB1AC502C29D5D9AD15HistoryOct 18, 2023 - 3:18 a.m.
Unpatched Zero-Day Vulnerability Actively Exploited in Cisco IOS XE
2023-10-1803:18:12
Hive Pro
www.hivepro.com
18
cisco
network devices
authentication bypass
remote control
vulnerability
threat advisory
hiveforce labs
0.853 High
EPSS
Percentile
98.6%
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The critical, unpatched security vulnerability identified as CVE-2023-20198 affects Cisco IOS XE software. Cisco IOS XE is a network operating system used in Cisco network devices. The identified flaw is an authentication bypass zero-day vulnerability within the IOS XE software and is actively exploited in the wild. This vulnerability enables unauthenticated attackers to obtain full administrator privileges and take remote control of affected Cisco routers and switches. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.
Related
cnvd
cnvd
Cisco IOS XE Software web UI elevation of privilege vulnerability
2023-10-17 00:00:00
githubexploit
githubexploit
Exploit for Unprotected Alternate Channel in Cisco Ios Xe
2024-04-25 06:59:53
Exploit for Unprotected Alternate Channel in Cisco Ios Xe
2024-04-28 01:25:41
Exploit for Unprotected Alternate Channel in Cisco Ios Xe
2023-11-16 16:39:38
nessus
nessus
malwarebytes
malwarebytes
Cisco IOS XE vulnerability widely exploited in the wild
2023-10-18 01:00:00
metasploit
metasploit
Cisco IOX XE unauthenticated Command Line Interface (CLI) execution
2023-11-03 15:38:35
Cisco IOX XE unauthenticated OS command execution
2023-11-03 15:38:35
Cisco IOX XE Unauthenticated RCE Chain
2023-11-06 17:12:40
qualysblog
qualysblog
cisa_kev
cisa_kev
Cisco IOS XE Web UI Privilege Escalation Vulnerability
2023-10-16 00:00:00
Cisco IOS XE Web UI Command Injection Vulnerability
2023-10-23 00:00:00
talosblog
talosblog
nuclei
nuclei
Cisco IOS XE - Authentication Bypass
2023-10-31 09:36:09
zdt
zdt
Cisco IOX XE unauthenticated Command Line Interface Execution Exploit
2023-11-10 00:00:00
Cisco IOX XE unauthenticated OS Command Execution Exploit
2023-11-10 00:00:00
Cisco IOX XE Unauthenticated Remote Code Execution Chain Exploit
2023-11-10 00:00:00
cve
cve
CVE-2023-20198
2023-10-16 16:15:10
attackerkb
attackerkb
CVE-2023-20198
2023-10-16 00:00:00
CVE-2023-20273
2023-10-25 00:00:00
thn
thn
prion
prion
Command injection
2023-10-16 16:15:00
nvd
nvd
CVE-2023-20198
2023-10-16 16:15:10
packetstorm
packetstorm
Cisco IOX XE Unauthenticated Remote Code Execution
2023-11-14 00:00:00
ics
ics
Rockwell Automation Stratix 5800 and Stratix 5200 (Update A)
2023-11-21 12:00:00
cvelist
cvelist
CVE-2023-20198
2023-10-16 15:12:58
cisco
cisco
Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature
2023-10-16 15:00:00
rapid7blog
rapid7blog
CVE-2023-20198: Active Exploitation of Cisco IOS XE Zero-Day Vulnerability
2023-10-17 19:50:03
Metasploit Weekly Wrap-Up
2023-11-10 18:59:55
avleonov
avleonov