all InfoSec news
Cisco IOS XE Web UI Privilege Escalation Vulnerability; Sandworm Targets Ukrainian Telecom
Malware Analysis, News and Indicators - Latest topics malware.news
Cisco IOS XE Software Web UI Privilege Escalation Vulnerability Exploited in the Wild
On October 16, 2023, Cisco warned of a critical severity (base score 10) privilege escalation vulnerability tracked as CVE-2023-20198 in IOS XE software [1]. Successful exploitation allows an attacker to create an account on the affected device with privilege level 15 access, granting full control of the compromised device and allowing unauthorized activity.
Since there is no workaround or patch available at the time of …
account attacker base cisco cisco ios cisco ios xe cisco ios xe software critical cve cve-2023-20198 escalation exploitation exploited ios ios xe malware analysis october privilege privilege escalation sandworm score severity software telecom ukrainian vulnerability vulnerability exploited web