Three Vulnerabilities in CLI of Cisco TelePresence CE and RoomOS Could Allow Local Attacker to Overwrite Arbitrary Files
CVE-2023-20092

4.4MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Roomos Software; Cisco Telepresence Endpoint Software (tc/ce)
Vendor: CVE Published:; 15 November 2024

Summary

In Cisco TelePresence CE and RoomOS, multiple vulnerabilities exist that can enable an authenticated local attacker to overwrite arbitrary files on the file system of an affected device. These vulnerabilities arise from inadequate access control measures applied to files stored on the local file system. By exploiting these vulnerabilities, an attacker could insert a symbolic link at a designated location, facilitating unauthorized file modifications. To execute this exploit, the attacker must possess a remote support user account. Notably, these vulnerabilities do not impact the Cisco DX70, DX80, TelePresence MX Series, or TelePresence SX Series devices. Cisco has released updates to remediate these issues, and no viable workarounds are available.

Affected Version(s)

Cisco RoomOS Software

Cisco TelePresence Endpoint Software (TC/CE)

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 15, 2024
Vulnerability Reserved
Oct 27, 2022