SSO Vulnerability in Cisco BroadWorks Platforms
CVE-2023-20238

10CRITICAL

Key Information:

Vendor: Cisco
Status: Cisco Broadworks
Vendor: CVE Published:; 6 September 2023

Badges

👾 Exploit Exists🟣 EPSS 30%

Summary

A vulnerability exists in the single sign-on (SSO) configuration of Cisco's BroadWorks platforms, allowing unauthenticated remote attackers to forge credentials necessary for system access. The flaw resides in the validation method for SSO tokens. By exploiting this issue, attackers can authenticate to applications using forged credentials, potentially leading to unauthorized actions. If an administrator's account is compromised, attackers could access sensitive data, modify customer settings, or alter configurations for other users. To execute such an attack, the perpetrator must possess a valid user ID associated with the vulnerable Cisco BroadWorks system.

Affected Version(s)

Cisco BroadWorks 23.0

Cisco BroadWorks 23.0 ap383785

Cisco BroadWorks 23.0 ap382487

References

https://sec.cloudapps.cisco.com/security/center/content/C...

EPSS Score

30% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

👾
Exploit known to exist
Oct 23, 2024
Vulnerability published
Sep 6, 2023
Vulnerability Reserved
Oct 27, 2022