Privilege Escalation Vulnerability in Cisco ThousandEyes Enterprise Agent
CVE-2023-20217

5.5MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco ThousandEyes Recorder Application
Vendor: CVE Published:; 16 August 2023

Summary

A vulnerability exists in the command-line interface (CLI) of the Cisco ThousandEyes Enterprise Agent, specifically for the Virtual Appliance installation. This flaw is attributed to insufficient input validation within the operating system's CLI, enabling an authenticated local attacker to issue specific commands using 'sudo'. Successful exploitation of this vulnerability would allow the unauthorized user to access arbitrary files with root privileges on the underlying operating system. It is essential that potential attackers possess valid credentials for the affected device, highlighting the importance of secure credential management.

Affected Version(s)

Cisco ThousandEyes Recorder Application

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 16, 2023
Vulnerability Reserved
Oct 27, 2022