CVE-2023-20198CISA KEV: Actively Exploited

Cisco IOS XE Web UI Privilege Escalation Vulnerability

Published Oct 16, 2023·Updated Oct 16, 2023

Description

Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.

Public Exploits & PoCs34 found

PoC: cisco-ios-xe-implant-detection

Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)

26

PoC: CVE-2023-20198-Scanner

This is a webshell fingerprinting scanner designed to identify implants on Cisco IOS XE WebUI's affected by CVE-2023-20198 and CVE-2023-20273

6

PoC: CVE-2023-20198-RCE

CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.

4

PoC: CVE-2023-20198

CVE-2023-20198 Checkscript

3

PoC: Cisco_CVE-2023-20198

Cisco CVE-2023-20198

1

PoC: CVE-2023-20198

An Exploitation script developed to exploit the CVE-2023-20198 Cisco zero day vulnerability on their IOS routers

1

PoC: CVE_2023_20198_Detector

This script can identify if Cisco IOS XE devices are vulnerable to CVE-2023-20198

1

PoC: Cisco-IOS-XE-Scanner

CVE-2023-20198 & 0Day Implant Scanner

1

PoC: Cisco-SD-WAN-Auth-Bypass-Pentest

CVE-2023-20198 Authorized Pentest Report | CVSS 9.8

PoC: forwardnetworksdemo

Demo to remediate CVE-2023-20198 using forward networks and tines

PoC: CVE-2023-20198-Exploit

Proof-of-concept exploit for CVE-2023-20198, an authentication bypass vulnerability affecting Cisco IOS XE Web UI

PoC: CVE-2023-20198

A cybersecurity case study analysing CVE-2023-20198 in Cisco IOS XE, covering vulnerability exploitation, mitigation strategies, secure software development frameworks, and patch management policies, with practical insights from a controlled lab environment

PoC: qub-network-security-cve-2023-20198

Analysis, detection, and mitigation of CVE-2023-20198 exploitation in Cisco IOS XE – QUB CSC3064 Network Security Assessment

PoC: cisco-ios-xe-implant-scanner

A go-exploit to scan for implanted Cisco IOS XE Systems cve-2023-20198, go-exploit

PoC: Cisco-IOS-XE-CVE-2023-20198

Exploit PoC for CVE-2023-20198

PoC: cisco-ios-xe-implant-scanner

A go-exploit to scan for implanted Cisco IOS XE Systems cve-2023-20198, go-exploit

PoC: cve-2023-20198-poc-cisco

CVE-2023-20198是思科IOS XE软件Web UI功能中的一个严重漏洞,允许未经身份验证的远程攻击者在受影响的系统上创建具有特权级别15的账户,从而完全控制设备。

PoC: CVE-2023-20198-poc

CVE-2023-20198是思科IOS XE软件Web UI功能中的一个严重漏洞,允许未经身份验证的远程攻击者在受影响的系统上创建具有特权级别15的账户,从而完全控制设备。

PoC: Event-ID-193-Rule-Name-SOC231-Cisco-IOS-XE-Web-UI-ZeroDay-CVE-2023-20198-

🚨 Just completed a detailed investigation for Event ID 193: "SOC231 - Cisco IOS XE Web UI ZeroDay (CVE-2023-20198)" via @LetsDefend.io. The attacker successfully bypassed authentication, gaining admin control over the device! Immediate containment was critical. Stay vigilant! 💻🔐

PoC: CVE-2023-20198-Fix

Check for and remediate conditions that make an IOS-XE device vulnerable to CVE-2023-20198

PoC: CVE-2023-20198

CVE-2023-20198 Exploit PoC

PoC: CVE-2023-20198

Check a target IP for CVE-2023-20198

PoC: CVE-2023-20198

A PoC for CVE 2023-20198

PoC: CVE-2023-20198

CISCO CVE POC SCRIPT

PoC: cve-2023-20198

1vere$k POC on the CVE-2023-20198

PoC: CVE-2023-20198-RCE

CVE-2023-20198 straight RCE without implant

PoC: CVE-2023-20198

Cisco IOS XE exploit CVE-2023-20198

PoC: ansible-cve-2023-20198

Ansible Playbook for CVE-2023-20198

PoC: CVE-2023-20198

CVE-2023-20198 PoC (!)

PoC: CVE-2023-20198

Checker for CVE-2023-20198 , Not a full POC Just checks the implementation and detects if hex is in response or not

PoC: CVE-2023-20198-scanner

Detect and mitigate the critical CVE-2023-20198 vulnerability in Cisco IOS XE Software. Our Python-based scanner helps security professionals identify potential implants and secure their systems. Scan for active exploitation, detect implants, and generate detailed logs.

PoC: cisco-CVE-2023-20198-tester

cisco-CVE-2023-20198-tester

PoC: CVE-2023-20198

CVE-2023-20198 PoC (!)

PoC: CVE-2023-20198

exploit CVE-2023-20198

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free