CVE CyberSecurity Database News

CVE-2023-20090 - Cisco TelePresence CE and RoomOS Privilege Escalation Vulnerability

Poster -

A newly discovered vulnerability called CVE-2023-20090 has been identified in Cisco TelePresence CE and RoomOS, potentially allowing an authenticated attacker with local access to elevate their privileges to root on the affected device. This vulnerability is the result of improper access controls on certain command-line interface (CLI) commands. In this post, we will delve into the details of this vulnerability and discuss how you can protect your systems from this threat.

Exploit Details

This privilege escalation vulnerability, CVE-2023-20090, occurs due to improper access control on certain CLI commands in Cisco TelePresence CE and RoomOS. An attacker with valid credentials and local access could exploit this vulnerability by running a series of crafted commands, which would grant them root access on the target device.

Gain access to the CLI on the target device, typically through SSH or the local console.

2. Craft and execute a series of specific CLI commands that are normally reserved for higher-privileged users.

An example of one such series of commands required to exploit this vulnerability is

$ ssh cisco@<target_device_ip>
Enter password: **
cisco@target_device> enable
#show run | include username
#conf t
(config)#username temp privilege 15 secret <temp_password>
(config)#exit
#exit

In this example, the attacker would replace <target_device_ip> with the IP address of the target device and <temp_password> with a password of their choosing. Upon successful execution of these commands, the attacker would gain root access on the affected device.

Original References

- Cisco Security Advisory - CVE-2023-20090

Impact

An attacker who successfully exploits this vulnerability could gain root access on the target device, allowing them to modify critical system configurations, install unauthorized software, or access sensitive information. In the process, they could easily disrupt or compromise the device's functionality and the security of the communications enabled through the device.

Mitigation

Cisco has released software updates that address this vulnerability. Administrators should upgrade their affected devices to Cisco TelePresence CE Software Release 9.16. or later and Cisco RoomOS Software Release 9.16. or later. There are no workarounds that address this vulnerability.

More information on upgrading Cisco software can be found at

- Upgrading Cisco TelePresence CE Software
- Upgrading Cisco RoomOS Software

Conclusion

The CVE-2023-20090 vulnerability in Cisco TelePresence CE and RoomOS is a significant threat to organizations relying on these systems for secure communication. It is crucial for administrators to apply the necessary security patches to reduce the risk of compromise. Ensure that your organization remains vigilant in monitoring for security updates and that systems are updated promptly to protect your networks and communication systems.

Timeline

Published on: 11/15/2024 16:15:25 UTC