Strix
26.1K

CVE-2023-20016

MEDIUMCVSS 6.5/10EPSS 0.11%

Last modified

CVE-2023-20016 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup files. This vulnerability is due to a weakness in the encryption method used for the backup function. EPSS estimates a 0.11% chance of exploitation in the next 30 days.

Description

A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup files. This vulnerability is due to a weakness in the encryption method used for the backup function. An attacker could exploit this vulnerability by leveraging a static key used for the backup configuration feature. A successful exploit could allow the attacker to decrypt sensitive information that is stored in full state and configuration backup files, such as local user credentials, authentication server passwords, Simple Network Management Protocol (SNMP) community names, and other credentials.

Metrics

CVSS 3.1
6.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS Probability
0.11%

1.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoUcs Central Software< 4.2\(3c\)
CiscoUcs 6536 FirmwareAll versions
CiscoUcs 64108 FirmwareAll versions
CiscoUcs 6454 FirmwareAll versions
CiscoUcs 6200 FirmwareAll versions
CiscoUcs 6248up FirmwareAll versions
CiscoUcs 6296up FirmwareAll versions
CiscoUcs 6300 FirmwareAll versions
CiscoUcs 6324 FirmwareAll versions
CiscoUcs 6332 FirmwareAll versions
CiscoUcs 6332-16up FirmwareAll versions
CiscoFxos< 2.6.1

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2023-20016?
A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup files. This vulnerability is due to a weakness in the encryption method used for the backup function. An attacker could exploit this vulnerability by leveraging a static key used for the backup configuration feature. A successful exploit could allow the attacker to decrypt sensitive information that is stored in full state and configuration backup files, such as local user credentials, authentication server passwords, Simple Network Management Protocol (SNMP) community names, and other credentials.
How severe is CVE-2023-20016?
CVE-2023-20016 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 0.11% probability of exploitation in the next 30 days.
How do I fix CVE-2023-20016?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-20016?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST