{"api_version":"1","generated_at":"2026-04-23T05:58:29+00:00","cve":"CVE-2023-20046","urls":{"html":"https://cve.report/CVE-2023-20046","api":"https://cve.report/api/cve/CVE-2023-20046.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2023-20046","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2023-20046"},"summary":{"title":"CVE-2023-20046","description":"A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote attacker to elevate privileges on an affected device.\r\n\r This vulnerability is due to insufficient validation of user-supplied credentials. An attacker could exploit this vulnerability by sending a valid low-privileged SSH key to an affected device from a host that has an IP address that is configured as the source for a high-privileged user account. A successful exploit could allow the attacker to log in to the affected device through SSH as a high-privileged user.\r\n\r   There are workarounds that address this vulnerability.","state":"PUBLIC","assigner":"psirt@cisco.com","published_at":"2023-05-09 18:15:00","updated_at":"2024-01-25 17:15:00"},"problem_types":["CWE-522"],"metrics":[],"references":[{"url":"https://github.com/orangecertcc/security-research/security/advisories/GHSA-j7p3-gjw6-pp4r","name":"https://github.com/orangecertcc/security-research/security/advisories/GHSA-j7p3-gjw6-pp4r","refsource":"MISC","tags":[],"title":"Cisco StarOS - SSH vulnerability (CVE-2023-20046) · Advisory · orangecertcc/security-research · GitHub","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h","name":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h","refsource":"MISC","tags":[],"title":"Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2023-20046","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-20046","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2023","cve_id":"20046","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"asr_5000","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"asr_5500","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"asr_5700","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"staros","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"staros","cpe6":"21.23.n","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"staros","cpe6":"21.24","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"staros","cpe6":"21.27.m","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"staros","cpe6":"21.28.m","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"vpc-di","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"20046","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"vpc-si","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_version":"4.0","data_type":"CVE","data_format":"MITRE","CVE_data_meta":{"ID":"CVE-2023-20046","ASSIGNER":"psirt@cisco.com","STATE":"PUBLIC"},"description":{"description_data":[{"lang":"eng","value":"A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote attacker to elevate privileges on an affected device.\r\n\r This vulnerability is due to insufficient validation of user-supplied credentials. An attacker could exploit this vulnerability by sending a valid low-privileged SSH key to an affected device from a host that has an IP address that is configured as the source for a high-privileged user account. A successful exploit could allow the attacker to log in to the affected device through SSH as a high-privileged user.\r\n\r   There are workarounds that address this vulnerability."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"affects":{"vendor":{"vendor_data":[{"vendor_name":"Cisco","product":{"product_data":[{"product_name":"Cisco ASR 5000 Series Software","version":{"version_data":[{"version_affected":"=","version_value":"21.11.0"},{"version_affected":"=","version_value":"21.11.1"},{"version_affected":"=","version_value":"21.11.2"},{"version_affected":"=","version_value":"21.11.3"},{"version_affected":"=","version_value":"21.11.10"},{"version_affected":"=","version_value":"21.11.11"},{"version_affected":"=","version_value":"21.11.12"},{"version_affected":"=","version_value":"21.11.13"},{"version_affected":"=","version_value":"21.11.14"},{"version_affected":"=","version_value":"21.11.4"},{"version_affected":"=","version_value":"21.11.5"},{"version_affected":"=","version_value":"21.11.6"},{"version_affected":"=","version_value":"21.11.7"},{"version_affected":"=","version_value":"21.11.8"},{"version_affected":"=","version_value":"21.11.9"},{"version_affected":"=","version_value":"21.11.15"},{"version_affected":"=","version_value":"21.11.16"},{"version_affected":"=","version_value":"21.11.17"},{"version_affected":"=","version_value":"21.11.18"},{"version_affected":"=","version_value":"21.11.19"},{"version_affected":"=","version_value":"21.11.20"},{"version_affected":"=","version_value":"21.11.21"},{"version_affected":"=","version_value":"21.12.0"},{"version_affected":"=","version_value":"21.12.1"},{"version_affected":"=","version_value":"21.12.2"},{"version_affected":"=","version_value":"21.12.3"},{"version_affected":"=","version_value":"21.12.4"},{"version_affected":"=","version_value":"21.12.5"},{"version_affected":"=","version_value":"21.12.6"},{"version_affected":"=","version_value":"21.12.10"},{"version_affected":"=","version_value":"21.12.11"},{"version_affected":"=","version_value":"21.12.12"},{"version_affected":"=","version_value":"21.12.13"},{"version_affected":"=","version_value":"21.12.14"},{"version_affected":"=","version_value":"21.12.16"},{"version_affected":"=","version_value":"21.12.17"},{"version_affected":"=","version_value":"21.12.18"},{"version_affected":"=","version_value":"21.12.7"},{"version_affected":"=","version_value":"21.12.8"},{"version_affected":"=","version_value":"21.12.9"},{"version_affected":"=","version_value":"21.12.19"},{"version_affected":"=","version_value":"21.12.20"},{"version_affected":"=","version_value":"21.12.21"},{"version_affected":"=","version_value":"21.12.22"},{"version_affected":"=","version_value":"21.12.15"},{"version_affected":"=","version_value":"21.13.0"},{"version_affected":"=","version_value":"21.13.1"},{"version_affected":"=","version_value":"21.13.2"},{"version_affected":"=","version_value":"21.13.3"},{"version_affected":"=","version_value":"21.13.4"},{"version_affected":"=","version_value":"21.13.10"},{"version_affected":"=","version_value":"21.13.11"},{"version_affected":"=","version_value":"21.13.12"},{"version_affected":"=","version_value":"21.13.13"},{"version_affected":"=","version_value":"21.13.14"},{"version_affected":"=","version_value":"21.13.15"},{"version_affected":"=","version_value":"21.13.16"},{"version_affected":"=","version_value":"21.13.17"},{"version_affected":"=","version_value":"21.13.18"},{"version_affected":"=","version_value":"21.13.19"},{"version_affected":"=","version_value":"21.13.20"},{"version_affected":"=","version_value":"21.13.5"},{"version_affected":"=","version_value":"21.13.6"},{"version_affected":"=","version_value":"21.13.7"},{"version_affected":"=","version_value":"21.13.8"},{"version_affected":"=","version_value":"21.13.9"},{"version_affected":"=","version_value":"21.13.21"},{"version_affected":"=","version_value":"21.14.0"},{"version_affected":"=","version_value":"21.14.1"},{"version_affected":"=","version_value":"21.14.10"},{"version_affected":"=","version_value":"21.14.11"},{"version_affected":"=","version_value":"21.14.12"},{"version_affected":"=","version_value":"21.14.16"},{"version_affected":"=","version_value":"21.14.17"},{"version_affected":"=","version_value":"21.14.19"},{"version_affected":"=","version_value":"21.14.2"},{"version_affected":"=","version_value":"21.14.20"},{"version_affected":"=","version_value":"21.14.3"},{"version_affected":"=","version_value":"21.14.4"},{"version_affected":"=","version_value":"21.14.5"},{"version_affected":"=","version_value":"21.14.6"},{"version_affected":"=","version_value":"21.14.7"},{"version_affected":"=","version_value":"21.14.8"},{"version_affected":"=","version_value":"21.14.9"},{"version_affected":"=","version_value":"21.14.b12"},{"version_affected":"=","version_value":"21.14.b13"},{"version_affected":"=","version_value":"21.14.b14"},{"version_affected":"=","version_value":"21.14.b15"},{"version_affected":"=","version_value":"21.14.b17"},{"version_affected":"=","version_value":"21.14.b18"},{"version_affected":"=","version_value":"21.14.b19"},{"version_affected":"=","version_value":"21.14.b20"},{"version_affected":"=","version_value":"21.14.b21"},{"version_affected":"=","version_value":"21.14.22"},{"version_affected":"=","version_value":"21.14.b22"},{"version_affected":"=","version_value":"21.14.23"},{"version_affected":"=","version_value":"21.15.0"},{"version_affected":"=","version_value":"21.15.1"},{"version_affected":"=","version_value":"21.15.10"},{"version_affected":"=","version_value":"21.15.11"},{"version_affected":"=","version_value":"21.15.12"},{"version_affected":"=","version_value":"21.15.13"},{"version_affected":"=","version_value":"21.15.14"},{"version_affected":"=","version_value":"21.15.15"},{"version_affected":"=","version_value":"21.15.16"},{"version_affected":"=","version_value":"21.15.17"},{"version_affected":"=","version_value":"21.15.18"},{"version_affected":"=","version_value":"21.15.19"},{"version_affected":"=","version_value":"21.15.2"},{"version_affected":"=","version_value":"21.15.20"},{"version_affected":"=","version_value":"21.15.21"},{"version_affected":"=","version_value":"21.15.22"},{"version_affected":"=","version_value":"21.15.24"},{"version_affected":"=","version_value":"21.15.25"},{"version_affected":"=","version_value":"21.15.26"},{"version_affected":"=","version_value":"21.15.27"},{"version_affected":"=","version_value":"21.15.28"},{"version_affected":"=","version_value":"21.15.29"},{"version_affected":"=","version_value":"21.15.3"},{"version_affected":"=","version_value":"21.15.30"},{"version_affected":"=","version_value":"21.15.32"},{"version_affected":"=","version_value":"21.15.33"},{"version_affected":"=","version_value":"21.15.36"},{"version_affected":"=","version_value":"21.15.37"},{"version_affected":"=","version_value":"21.15.39"},{"version_affected":"=","version_value":"21.15.4"},{"version_affected":"=","version_value":"21.15.40"},{"version_affected":"=","version_value":"21.15.41"},{"version_affected":"=","version_value":"21.15.5"},{"version_affected":"=","version_value":"21.15.6"},{"version_affected":"=","version_value":"21.15.7"},{"version_affected":"=","version_value":"21.15.8"},{"version_affected":"=","version_value":"21.15.43"},{"version_affected":"=","version_value":"21.15.45"},{"version_affected":"=","version_value":"21.15.46"},{"version_affected":"=","version_value":"21.15.47"},{"version_affected":"=","version_value":"21.15.48"},{"version_affected":"=","version_value":"21.15.51"},{"version_affected":"=","version_value":"21.15.52"},{"version_affected":"=","version_value":"21.15.53"},{"version_affected":"=","version_value":"21.15.54"},{"version_affected":"=","version_value":"21.15.55"},{"version_affected":"=","version_value":"21.15.57"},{"version_affected":"=","version_value":"21.15.58"},{"version_affected":"=","version_value":"21.15.59"},{"version_affected":"=","version_value":"21.15.60"},{"version_affected":"=","version_value":"21.16.2"},{"version_affected":"=","version_value":"21.16.3"},{"version_affected":"=","version_value":"21.16.4"},{"version_affected":"=","version_value":"21.16.5"},{"version_affected":"=","version_value":"21.16.c10"},{"version_affected":"=","version_value":"21.16.c11"},{"version_affected":"=","version_value":"21.16.c12"},{"version_affected":"=","version_value":"21.16.c13"},{"version_affected":"=","version_value":"21.16.c9"},{"version_affected":"=","version_value":"21.16.d0"},{"version_affected":"=","version_value":"21.16.d1"},{"version_affected":"=","version_value":"21.16.6"},{"version_affected":"=","version_value":"21.16.c14"},{"version_affected":"=","version_value":"21.16.7"},{"version_affected":"=","version_value":"21.16.c15"},{"version_affected":"=","version_value":"21.16.8"},{"version_affected":"=","version_value":"21.16.c16"},{"version_affected":"=","version_value":"21.16.10"},{"version_affected":"=","version_value":"21.16.9"},{"version_affected":"=","version_value":"21.16.c17"},{"version_affected":"=","version_value":"21.16.c18"},{"version_affected":"=","version_value":"21.16.c19"},{"version_affected":"=","version_value":"21.17.0"},{"version_affected":"=","version_value":"21.17.1"},{"version_affected":"=","version_value":"21.17.2"},{"version_affected":"=","version_value":"21.17.3"},{"version_affected":"=","version_value":"21.17.4"},{"version_affected":"=","version_value":"21.17.5"},{"version_affected":"=","version_value":"21.17.6"},{"version_affected":"=","version_value":"21.17.7"},{"version_affected":"=","version_value":"21.17.8"},{"version_affected":"=","version_value":"21.17.10"},{"version_affected":"=","version_value":"21.17.11"},{"version_affected":"=","version_value":"21.17.9"},{"version_affected":"=","version_value":"21.17.12"},{"version_affected":"=","version_value":"21.17.13"},{"version_affected":"=","version_value":"21.17.14"},{"version_affected":"=","version_value":"21.17.15"},{"version_affected":"=","version_value":"21.17.16"},{"version_affected":"=","version_value":"21.17.17"},{"version_affected":"=","version_value":"21.17.18"},{"version_affected":"=","version_value":"21.17.19"},{"version_affected":"=","version_value":"21.18.0"},{"version_affected":"=","version_value":"21.18.1"},{"version_affected":"=","version_value":"21.18.2"},{"version_affected":"=","version_value":"21.18.3"},{"version_affected":"=","version_value":"21.18.4"},{"version_affected":"=","version_value":"21.18.5"},{"version_affected":"=","version_value":"21.18.11"},{"version_affected":"=","version_value":"21.18.6"},{"version_affected":"=","version_value":"21.18.7"},{"version_affected":"=","version_value":"21.18.8"},{"version_affected":"=","version_value":"21.18.9"},{"version_affected":"=","version_value":"21.18.12"},{"version_affected":"=","version_value":"21.18.13"},{"version_affected":"=","version_value":"21.18.14"},{"version_affected":"=","version_value":"21.18.15"},{"version_affected":"=","version_value":"21.18.16"},{"version_affected":"=","version_value":"21.18.17"},{"version_affected":"=","version_value":"21.18.18"},{"version_affected":"=","version_value":"21.18.19"},{"version_affected":"=","version_value":"21.18.20"},{"version_affected":"=","version_value":"21.18.21"},{"version_affected":"=","version_value":"21.18.22"},{"version_affected":"=","version_value":"21.18.23"},{"version_affected":"=","version_value":"21.18.24"},{"version_affected":"=","version_value":"21.18.25"},{"version_affected":"=","version_value":"21.18.26"},{"version_affected":"=","version_value":"21.19.0"},{"version_affected":"=","version_value":"21.19.1"},{"version_affected":"=","version_value":"21.19.2"},{"version_affected":"=","version_value":"21.19.3"},{"version_affected":"=","version_value":"21.19.n2"},{"version_affected":"=","version_value":"21.19.4"},{"version_affected":"=","version_value":"21.19.5"},{"version_affected":"=","version_value":"21.19.n3"},{"version_affected":"=","version_value":"21.19.n4"},{"version_affected":"=","version_value":"21.19.6"},{"version_affected":"=","version_value":"21.19.7"},{"version_affected":"=","version_value":"21.19.8"},{"version_affected":"=","version_value":"21.19.n5"},{"version_affected":"=","version_value":"21.19.10"},{"version_affected":"=","version_value":"21.19.9"},{"version_affected":"=","version_value":"21.19.n6"},{"version_affected":"=","version_value":"21.19.n7"},{"version_affected":"=","version_value":"21.19.n8"},{"version_affected":"=","version_value":"21.19.11"},{"version_affected":"=","version_value":"21.19.n10"},{"version_affected":"=","version_value":"21.19.n11"},{"version_affected":"=","version_value":"21.19.n12"},{"version_affected":"=","version_value":"21.19.n13"},{"version_affected":"=","version_value":"21.19.n14"},{"version_affected":"=","version_value":"21.19.n15"},{"version_affected":"=","version_value":"21.19.n16"},{"version_affected":"=","version_value":"21.19.n9"},{"version_affected":"=","version_value":"21.19.n17"},{"version_affected":"=","version_value":"21.19.n18"},{"version_affected":"=","version_value":"21.20.0"},{"version_affected":"=","version_value":"21.20.1"},{"version_affected":"=","version_value":"21.20.SV1"},{"version_affected":"=","version_value":"21.20.SV3"},{"version_affected":"=","version_value":"21.20.SV5"},{"version_affected":"=","version_value":"21.20.2"},{"version_affected":"=","version_value":"21.20.3"},{"version_affected":"=","version_value":"21.20.4"},{"version_affected":"=","version_value":"21.20.5"},{"version_affected":"=","version_value":"21.20.6"},{"version_affected":"=","version_value":"21.20.7"},{"version_affected":"=","version_value":"21.20.8"},{"version_affected":"=","version_value":"21.20.9"},{"version_affected":"=","version_value":"21.20.k6"},{"version_affected":"=","version_value":"21.20.10"},{"version_affected":"=","version_value":"21.20.11"},{"version_affected":"=","version_value":"21.20.k7"},{"version_affected":"=","version_value":"21.20.u8"},{"version_affected":"=","version_value":"21.20.12"},{"version_affected":"=","version_value":"21.20.13"},{"version_affected":"=","version_value":"21.20.14"},{"version_affected":"=","version_value":"21.20.k8"},{"version_affected":"=","version_value":"21.20.p9"},{"version_affected":"=","version_value":"21.20.15"},{"version_affected":"=","version_value":"21.20.16"},{"version_affected":"=","version_value":"21.20.17"},{"version_affected":"=","version_value":"21.20.18"},{"version_affected":"=","version_value":"21.20.19"},{"version_affected":"=","version_value":"21.20.20"},{"version_affected":"=","version_value":"21.20.21"},{"version_affected":"=","version_value":"21.20.22"},{"version_affected":"=","version_value":"21.20.23"},{"version_affected":"=","version_value":"21.20.24"},{"version_affected":"=","version_value":"21.20.25"},{"version_affected":"=","version_value":"21.20.26"},{"version_affected":"=","version_value":"21.20.28"},{"version_affected":"=","version_value":"21.20.29"},{"version_affected":"=","version_value":"21.20.30"},{"version_affected":"=","version_value":"21.20.c22"},{"version_affected":"=","version_value":"21.20.31"},{"version_affected":"=","version_value":"21.20.32"},{"version_affected":"=","version_value":"21.20.33"},{"version_affected":"=","version_value":"21.20.34"},{"version_affected":"=","version_value":"21.20.35"},{"version_affected":"=","version_value":"21.20.27"},{"version_affected":"=","version_value":"21.20.SV2"},{"version_affected":"=","version_value":"21.21.0"},{"version_affected":"=","version_value":"21.21.1"},{"version_affected":"=","version_value":"21.21.2"},{"version_affected":"=","version_value":"21.21.3"},{"version_affected":"=","version_value":"21.21.KS2"},{"version_affected":"=","version_value":"21.22.0"},{"version_affected":"=","version_value":"21.22.n2"},{"version_affected":"=","version_value":"21.22.n3"},{"version_affected":"=","version_value":"21.22.3"},{"version_affected":"=","version_value":"21.22.4"},{"version_affected":"=","version_value":"21.22.5"},{"version_affected":"=","version_value":"21.22.uj3"},{"version_affected":"=","version_value":"21.22.11"},{"version_affected":"=","version_value":"21.22.6"},{"version_affected":"=","version_value":"21.22.7"},{"version_affected":"=","version_value":"21.22.8"},{"version_affected":"=","version_value":"21.22.n4"},{"version_affected":"=","version_value":"21.22.n5"},{"version_affected":"=","version_value":"21.22.ua0"},{"version_affected":"=","version_value":"21.22.ua2"},{"version_affected":"=","version_value":"21.22.ua3"},{"version_affected":"=","version_value":"21.22.ua5"},{"version_affected":"=","version_value":"21.22.12"},{"version_affected":"=","version_value":"21.22.13"},{"version_affected":"=","version_value":"21.22.n10"},{"version_affected":"=","version_value":"21.22.n11"},{"version_affected":"=","version_value":"21.22.n12"},{"version_affected":"=","version_value":"21.22.n6"},{"version_affected":"=","version_value":"21.22.n7"},{"version_affected":"=","version_value":"21.22.n8"},{"version_affected":"=","version_value":"21.22.n9"},{"version_affected":"=","version_value":"21.22.n13"},{"version_affected":"=","version_value":"21.23.0"},{"version_affected":"=","version_value":"21.23.1"},{"version_affected":"=","version_value":"21.23.10"},{"version_affected":"=","version_value":"21.23.11"},{"version_affected":"=","version_value":"21.23.12"},{"version_affected":"=","version_value":"21.23.13"},{"version_affected":"=","version_value":"21.23.14"},{"version_affected":"=","version_value":"21.23.15"},{"version_affected":"=","version_value":"21.23.16"},{"version_affected":"=","version_value":"21.23.17"},{"version_affected":"=","version_value":"21.23.2"},{"version_affected":"=","version_value":"21.23.3"},{"version_affected":"=","version_value":"21.23.4"},{"version_affected":"=","version_value":"21.23.5"},{"version_affected":"=","version_value":"21.23.6"},{"version_affected":"=","version_value":"21.23.7"},{"version_affected":"=","version_value":"21.23.8"},{"version_affected":"=","version_value":"21.23.9"},{"version_affected":"=","version_value":"21.23.b2"},{"version_affected":"=","version_value":"21.23.b3"},{"version_affected":"=","version_value":"21.23.c16"},{"version_affected":"=","version_value":"21.23.c17"},{"version_affected":"=","version_value":"21.23.n6"},{"version_affected":"=","version_value":"21.23.n7"},{"version_affected":"=","version_value":"21.23.n9"},{"version_affected":"=","version_value":"21.23.18"},{"version_affected":"=","version_value":"21.23.19"},{"version_affected":"=","version_value":"21.23.21"},{"version_affected":"=","version_value":"21.23.22"},{"version_affected":"=","version_value":"21.23.23"},{"version_affected":"=","version_value":"21.23.24"},{"version_affected":"=","version_value":"21.23.25"},{"version_affected":"=","version_value":"21.23.26"},{"version_affected":"=","version_value":"21.23.27"},{"version_affected":"=","version_value":"21.23.29"},{"version_affected":"=","version_value":"21.23.30"},{"version_affected":"=","version_value":"21.23.c18"},{"version_affected":"=","version_value":"21.23.n10"},{"version_affected":"=","version_value":"21.23.n11"},{"version_affected":"=","version_value":"21.23.n8"},{"version_affected":"=","version_value":"21.23.yn14"},{"version_affected":"=","version_value":"21.24.0"},{"version_affected":"=","version_value":"21.24.1"},{"version_affected":"=","version_value":"21.24.2"},{"version_affected":"=","version_value":"21.24.3"},{"version_affected":"=","version_value":"21.25.0"},{"version_affected":"=","version_value":"21.25.3"},{"version_affected":"=","version_value":"21.25.4"},{"version_affected":"=","version_value":"21.25.5"},{"version_affected":"=","version_value":"21.25.10"},{"version_affected":"=","version_value":"21.25.11"},{"version_affected":"=","version_value":"21.25.12"},{"version_affected":"=","version_value":"21.25.13"},{"version_affected":"=","version_value":"21.25.14"},{"version_affected":"=","version_value":"21.25.6"},{"version_affected":"=","version_value":"21.25.7"},{"version_affected":"=","version_value":"21.25.8"},{"version_affected":"=","version_value":"21.25.9"},{"version_affected":"=","version_value":"21.26.0"},{"version_affected":"=","version_value":"21.26.1"},{"version_affected":"=","version_value":"21.26.10"},{"version_affected":"=","version_value":"21.26.13"},{"version_affected":"=","version_value":"21.26.14"},{"version_affected":"=","version_value":"21.26.15"},{"version_affected":"=","version_value":"21.26.3"},{"version_affected":"=","version_value":"21.26.5"},{"version_affected":"=","version_value":"21.26.6"},{"version_affected":"=","version_value":"21.26.7"},{"version_affected":"=","version_value":"21.26.17"},{"version_affected":"=","version_value":"21.27.0"},{"version_affected":"=","version_value":"21.27.1"},{"version_affected":"=","version_value":"21.27.2"},{"version_affected":"=","version_value":"21.27.3"},{"version_affected":"=","version_value":"21.27.4"},{"version_affected":"=","version_value":"21.27.5"},{"version_affected":"=","version_value":"21.27.m0"},{"version_affected":"=","version_value":"21.28.0"},{"version_affected":"=","version_value":"21.28.1"},{"version_affected":"=","version_value":"21.28.2"},{"version_affected":"=","version_value":"21.28.m0"},{"version_affected":"=","version_value":"21.28.m1"},{"version_affected":"=","version_value":"21.28.m2"},{"version_affected":"=","version_value":"21.28.m3"}]}},{"product_name":"Cisco Ultra Cloud Core - User Plane Function","version":{"version_data":[{"version_affected":"=","version_value":"N/A"}]}}]}}]}},"references":{"reference_data":[{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h","refsource":"MISC","name":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-staros-ssh-privesc-BmWeJC3h"},{"url":"https://github.com/orangecertcc/security-research/security/advisories/GHSA-j7p3-gjw6-pp4r","refsource":"MISC","name":"https://github.com/orangecertcc/security-research/security/advisories/GHSA-j7p3-gjw6-pp4r"}]},"source":{"advisory":"cisco-sa-staros-ssh-privesc-BmWeJC3h","discovery":"EXTERNAL","defects":["CSCwd89468"]},"exploit":[{"lang":"en","value":"The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."}],"impact":{"cvss":[{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}]}},"nvd":{"publishedDate":"2023-05-09 18:15:00","lastModifiedDate":"2024-01-25 17:15:00","problem_types":["CWE-522"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionEndExcluding":"21.22.14","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionStartIncluding":"21.23.0","versionEndExcluding":"21.23.31","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionStartIncluding":"21.25.0","versionEndExcluding":"21.25.15","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionStartIncluding":"21.26.0","versionEndExcluding":"21.26.17","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionStartIncluding":"21.27.0","versionEndExcluding":"21.27.6","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:*:*:*:*:*:*:*:*","versionStartIncluding":"21.28.0","versionEndExcluding":"21.28.3","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:21.23.n:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:21.24:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:21.27.m:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:cisco:staros:21.28.m:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:cisco:asr_5000:-:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:cisco:asr_5500:-:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:cisco:asr_5700:-:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:cisco:vpc-di:-:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:cisco:vpc-si:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":null,"notes":[]}}}