// For flags

CVE-2023-20040

 

Severity Score

5.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause a denial of service (DoS) on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of the admin group. This vulnerability exists because user-supplied input is not properly validated when NETCONF is used to upload packages to an affected device. An attacker could exploit this vulnerability by uploading a specially crafted package file. A successful exploit could allow the attacker to write crafted files to arbitrary locations on the filesystem or delete arbitrary files from the filesystem of an affected device, resulting in a DoS condition. Note: By default, during install, Cisco NSO will be set up to run as the root user unless the --run-as-user option is used.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
Multiple
Confidentiality
None
Integrity
Partial
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-10-27 CVE Reserved
  • 2023-01-19 CVE Published
  • 2024-08-02 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-23: Relative Path Traversal
  • CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Network Services Orchestrator
Search vendor "Cisco" for product "Network Services Orchestrator"
>= 3.3 < 5.4.7
Search vendor "Cisco" for product "Network Services Orchestrator" and version " >= 3.3 < 5.4.7"
-
Affected
Cisco
Search vendor "Cisco"
Network Services Orchestrator
Search vendor "Cisco" for product "Network Services Orchestrator"
>= 5.5 < 5.5.6
Search vendor "Cisco" for product "Network Services Orchestrator" and version " >= 5.5 < 5.5.6"
-
Affected
Cisco
Search vendor "Cisco"
Network Services Orchestrator
Search vendor "Cisco" for product "Network Services Orchestrator"
>= 5.6 < 5.6.7
Search vendor "Cisco" for product "Network Services Orchestrator" and version " >= 5.6 < 5.6.7"
-
Affected
Cisco
Search vendor "Cisco"
Network Services Orchestrator
Search vendor "Cisco" for product "Network Services Orchestrator"
>= 5.7 < 5.7.4
Search vendor "Cisco" for product "Network Services Orchestrator" and version " >= 5.7 < 5.7.4"
-
Affected
Cisco
Search vendor "Cisco"
Network Services Orchestrator
Search vendor "Cisco" for product "Network Services Orchestrator"
5.8
Search vendor "Cisco" for product "Network Services Orchestrator" and version "5.8"
-
Affected