Cisco TelePresence CE and RoomOS Privilege Escalation (cisco-sa-roomos-file-write-rHKwegKf)

medium Nessus Plugin ID 174928

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

According to its self-reported version, the Cisco TelePresence Collaboration Endpoint software is affected by a privilege escalation vulnerability. Due to improper access control on certain CLI commands, an authenticated, local attacker could elevate privileges to root by running a series of crafted commands.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCwc85883

See Also

http://www.nessus.org/u?de1589e7

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwc85883

Plugin Details

Severity: Medium

ID: 174928

File Name: cisco-sa-roomos-file-write-rHKwegKf_CVE-2023-20090.nasl

Version: 1.2

Type: combined

Family: CISCO

Published: 4/28/2023

Updated: 11/18/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 4.8

Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C

CVSS Score Source: CVE-2023-20090

CVSS v3

Risk Factor: Medium

Base Score: 6.7

Temporal Score: 5.8

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:telepresence_collaboration_endpoint

Required KB Items: Cisco/TelePresence_MCU/Device, Cisco/TelePresence_MCU/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 3/20/2023

Vulnerability Publication Date: 4/19/2023

Reference Information

CVE: CVE-2023-20090

CISCO-SA: cisco-sa-roomos-file-write-rHKwegKf

IAVA: 2023-A-0221

CISCO-BUG-ID: CSCwc85883