CVE-2023-20210

12.07.2023, 14:15

A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileges to the root user on an affected device.

 The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability by issuing a crafted command to the affected system. A successful exploit could allow the attacker to execute commands as the root user. To exploit this vulnerability, an attacker must have valid BroadWorks administrative privileges on the affected device.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
cisco	CNA	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 3%

Vendor	Product	Version
cisco	broadworks_application_delivery_platform_firmware	23.0
cisco	broadworks_application_delivery_platform_firmware	24.0
cisco	broadworks_application_delivery_platform_firmware	25.0
cisco	broadworks_application_server_firmware	23.0
cisco	broadworks_application_server_firmware	24.0
cisco	broadworks_application_server_firmware	25.0
cisco	broadworks_database_server_firmware	23.0
cisco	broadworks_database_server_firmware	24.0
cisco	broadworks_database_server_firmware	25.0
cisco	broadworks_database_troubleshooting_server_firmware	23.0
cisco	broadworks_database_troubleshooting_server_firmware	24.0
cisco	broadworks_database_troubleshooting_server_firmware	25.0
cisco	broadworks_execution_server_firmware	23.0
cisco	broadworks_execution_server_firmware	24.0
cisco	broadworks_execution_server_firmware	25.0
cisco	broadworks_media_server_firmware	23.0
cisco	broadworks_media_server_firmware	24.0
cisco	broadworks_media_server_firmware	25.0
cisco	broadworks_messaging_server_firmware	23.0
cisco	broadworks_messaging_server_firmware	24.0
cisco	broadworks_messaging_server_firmware	25.0
cisco	broadworks_network_database_server_firmware	23.0
cisco	broadworks_network_database_server_firmware	24.0
cisco	broadworks_network_database_server_firmware	25.0
cisco	broadworks_network_function_manager_firmware	23.0
cisco	broadworks_network_function_manager_firmware	24.0
cisco	broadworks_network_function_manager_firmware	25.0
cisco	broadworks_network_server_firmware	23.0
cisco	broadworks_network_server_firmware	24.0
cisco	broadworks_network_server_firmware	25.0
cisco	broadworks_profile_server_firmware	23.0
cisco	broadworks_profile_server_firmware	24.0
cisco	broadworks_profile_server_firmware	25.0
cisco	broadworks_service_control_function_server_firmware	23.0
cisco	broadworks_service_control_function_server_firmware	24.0
cisco	broadworks_service_control_function_server_firmware	25.0
cisco	broadworks_sharing_server_firmware	23.0
cisco	broadworks_sharing_server_firmware	24.0
cisco	broadworks_sharing_server_firmware	25.0
cisco	broadworks_video_server_firmware	23.0
cisco	broadworks_video_server_firmware	24.0
cisco	broadworks_video_server_firmware	25.0
cisco	broadworks_webrtc_server_firmware	23.0
cisco	broadworks_webrtc_server_firmware	24.0
cisco	broadworks_webrtc_server_firmware	25.0
cisco	broadworks_xtended_services_platform_firmware	23.0
cisco	broadworks_xtended_services_platform_firmware	24.0
cisco	broadworks_xtended_services_platform_firmware	25.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-250 - Execution with Unnecessary Privileges
The software performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-privesc-yw4ekrXW