Privilege Escalation in Cisco Expressway Series and TelePresence VCS Management Interfaces
CVE-2023-20105

6.5MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco TelePresence Video Communication Server (VCS) Expressway
Vendor: CVE Published:; 28 June 2023

Summary

A significant vulnerability is present in the password change functionality of Cisco Expressway Series devices and Cisco TelePresence Video Communication Server. This issue stems from improper management of password change requests, allowing authenticated users with Read-only credentials to exploit the system. By sending a specially crafted request through the web management interface, an attacker could gain the ability to alter passwords for any user account, including those with administrative privileges. This breach not only compromises user accounts but also poses the risk of impersonation of legitimate users, further endangering the system's security.

Affected Version(s)

Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.1

Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.3

Cisco TelePresence Video Communication Server (VCS) Expressway X8.5

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 28, 2023
Vulnerability Reserved
Oct 27, 2022