Description

Due to CVE-2023-20198, cybercriminals installed an implant on the Cisco IOS. The implant gives full access to the system for anonymous users.

Remediation

Check Web References.

References

Cisco IOS XE Software Web UI Privilege Escalation Vulnerability

Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability

Related Vulnerabilities

phpMyAdmin v3.5.2.2 backdoor

Ubiquiti Unifi Log4Shell RCE

CodeIgniter weak encryption key

Apache Log4j2 JNDI Remote Code Execution (404 page handler)

ColdFusion CFC Deserialization RCE (CVE-2023-26359/CVE-2023-26360)

Severity

Critical

Classification

CVE-2023-20198 CWE-912 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Tags

Code Execution Malware