CVE-2023-20046

Summary

CVE	CVE-2023-20046
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-05-09 18:15:00 UTC
Updated	2024-01-25 17:15:00 UTC
Description	A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote attacker to elevate privileges on an affected device. This vulnerability is due to insufficient validation of user-supplied credentials. An attacker could exploit this vulnerability by sending a valid low-privileged SSH key to an affected device from a host that has an IP address that is configured as the source for a high-privileged user account. A successful exploit could allow the attacker to log in to the affected device through SSH as a high-privileged user. There are workarounds that address this vulnerability.

Risk And Classification

Problem Types: CWE-522

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Cisco	Asr 5000	-	All	All	All
Hardware	Cisco	Asr 5500	-	All	All	All
Hardware	Cisco	Asr 5700	-	All	All	All
Operating System	Cisco	Staros	All	All	All	All
Operating System	Cisco	Staros	21.23.n	All	All	All
Operating System	Cisco	Staros	21.24	All	All	All
Operating System	Cisco	Staros	21.27.m	All	All	All
Operating System	Cisco	Staros	21.28.m	All	All	All
Hardware	Cisco	Vpc-di	-	All	All	All
Hardware	Cisco	Vpc-si	-	All	All	All

References

Reference	Source	Link	Tags
Cisco StarOS - SSH vulnerability (CVE-2023-20046) · Advisory · orangecertcc/security-research · GitHub	MISC	github.com
Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability	MISC	sec.cloudapps.cisco.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.