Privilege Escalation Vulnerability in Cisco ThousandEyes Enterprise Agent
CVE-2023-20224

7.8HIGH

Key Information:

Vendor: Cisco
Status: Cisco ThousandEyes Recorder Application
Vendor: CVE Published:; 16 August 2023

Summary

A privilege escalation vulnerability exists in the CLI of Cisco ThousandEyes Enterprise Agent (Virtual Appliance). This issue stems from improper input validation for user-supplied CLI arguments. An authenticated local attacker could exploit this weakness by accessing the affected device and issuing specially crafted commands, potentially allowing them to execute arbitrary commands with root privileges. It is essential for users to be aware that valid credentials on the device are required to mount such an attack. For more details, see the Cisco security advisory at the following link: Cisco Advisory.

Affected Version(s)

Cisco ThousandEyes Recorder Application 1.0.5

Cisco ThousandEyes Recorder Application 1.0.4

Cisco ThousandEyes Recorder Application 1.0.3

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 16, 2023
Vulnerability Reserved
Oct 27, 2022