Cisco IOS XE Web UI Command Injection Vulnerability
Summary
| CVE | CVE-2023-20273 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-10-25 18:17:00 UTC |
| Updated | 2024-01-25 17:15:00 UTC |
| Description | A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges. |
Risk And Classification
EPSS: 0.923840000 probability, percentile 0.997260000 (date 2026-04-03)
CISA KEV: Listed on 2023-10-23; due 2023-10-27; ransomware use Unknown
Problem Types: NVD-CWE-noinfo
CISA Known Exploited Vulnerability
| Vendor | Cisco |
|---|---|
| Product | Cisco IOS XE Web UI |
| Name | Cisco IOS XE Web UI Command Injection Vulnerability |
| Required Action | Verify that instances of Cisco IOS XE Web UI are in compliance with BOD 23-02 and apply mitigations per vendor instructions. For affected products (Cisco IOS XE Web UI exposed to the internet or to untrusted networks), follow vendor instructions to determine if a system may have been compromised and immediately report positive findings to CISA. |
| Notes | https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z; https://nvd.nist.gov/vuln/detail/CVE-2023-20273 |
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | Catalyst 3650 | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48fd-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48fd-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48fd-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uq | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uq-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uq-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uq-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48ur | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48ur-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48ur-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48ur-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uz | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uz-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uz-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-12x48uz-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pd | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pd-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pd-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pd-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pdm | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pdm-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pdm-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24pdm-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ps-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ps-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ps-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24td-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24td-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24td-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ts-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ts-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-24ts-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fd-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fd-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fd-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fq | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fq-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fq-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fq-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fqm | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fqm-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fqm-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fqm-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fs-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48fs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pd-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pd-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pd-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pq-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pq-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48pq-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ps-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ps-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ps-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48td-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48td-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48td-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48tq-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48tq-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48tq-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ts-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ts-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-48ts-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24pd-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24pd-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24pd-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24uq | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24uq-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24uq-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3650-8x24uq-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850 | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-12s-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-12s-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-12x48u | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-12xs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-12xs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-16xs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-16xs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24p-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24p-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24p-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24pw-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24s-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24s-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24t-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24t-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24t-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24u | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24u-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24u-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24u-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xs | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xu | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xu-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xu-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-24xu-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-32xs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-32xs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48f-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48f-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48f-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48p-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48p-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48p-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48pw-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48t-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48t-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48t-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48u | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48u-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48u-l | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48u-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48xs | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48xs-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48xs-f-e | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48xs-f-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-48xs-s | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-nm-2-40g | - | All | All | All |
| Hardware | Cisco | Catalyst 3850-nm-8-10g | - | All | All | All |
| Operating System | Cisco | Ios Xe | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| packetstormsecurity.com/files/175674/Cisco-IOX-XE-Unauthenticated-Remote-Code-Executi... | packetstormsecurity.com | ||
| Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature | MISC | sec.cloudapps.cisco.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
| CISA Known Exploited Vulnerabilities catalog | CISA | www.cisa.gov | kev |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 317376 Cisco Internetwork Operating System (IOS) XE Software Web UI Privilege Escalation Vulnerability (cisco-sa-iosxe-webui-privesc-j22SaA4z)