ERS API Authenticated Remote File Read in Cisco ISE
CVE-2023-20194 Published on September 7, 2023
A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device. To exploit this vulnerability, an attacker must have valid Administrator-level privileges on the affected device. This vulnerability is due to improper privilege management in the ERS API. An attacker could exploit this vulnerability by sending a crafted request to an affected device. A successful exploit could allow the attacker to elevate their privileges beyond the sphere of their intended access level, which would allow them to obtain sensitive information from the underlying operating system. Note: The ERS is not enabled by default. To verify the status of the ERS API in the Admin GUI, choose Administration > Settings > API Settings > API Service Settings.
Vulnerability Analysis
CVE-2023-20194 is exploitable with network access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.
Weakness Type
Privilege Chaining
Two distinct privileges, roles, capabilities, or rights can be combined in a way that allows an entity to perform unsafe actions that would not be allowed without that combination.
Products Associated with CVE-2023-20194
Want to know whenever a new CVE is published for Cisco Identity Services Engine? stack.watch will email you.
Affected Versions
Cisco Identity Services Engine Software:- Version 2.6.0 is affected.
- Version 2.6.0 p1 is affected.
- Version 2.6.0 p2 is affected.
- Version 2.6.0 p3 is affected.
- Version 2.6.0 p5 is affected.
- Version 2.6.0 p6 is affected.
- Version 2.6.0 p7 is affected.
- Version 2.6.0 p8 is affected.
- Version 2.6.0 p9 is affected.
- Version 2.6.0 p10 is affected.
- Version 2.6.0 p11 is affected.
- Version 2.6.0 p12 is affected.
- Version 2.7.0 is affected.
- Version 2.7.0 p1 is affected.
- Version 2.7.0 p2 is affected.
- Version 2.7.0 p3 is affected.
- Version 2.7.0 p4 is affected.
- Version 2.7.0 p5 is affected.
- Version 2.7.0 p6 is affected.
- Version 2.7.0 p7 is affected.
- Version 2.7.0 p9 is affected.
- Version 3.0.0 is affected.
- Version 3.0.0 p1 is affected.
- Version 3.0.0 p2 is affected.
- Version 3.0.0 p3 is affected.
- Version 3.0.0 p4 is affected.
- Version 3.0.0 p5 is affected.
- Version 3.0.0 p6 is affected.
- Version 3.0.0 p7 is affected.
- Version 3.1.0 is affected.
- Version 3.1.0 p1 is affected.
- Version 3.1.0 p3 is affected.
- Version 3.1.0 p4 is affected.
- Version 3.1.0 p5 is affected.
- Version 3.1.0 p6 is affected.
- Version 3.1.0 p7 is affected.
- Version 3.2.0 is affected.
- Version 3.2.0 p1 is affected.
- Version 3.2.0 p2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.