Vulnerability Database

289,571

Total vulnerabilities in the database

CVE-2023-20115

A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote attacker to download or overwrite files from the underlying operating system of an affected device.

This vulnerability is due to a logic error when verifying the user role when an SFTP connection is opened to an affected device. An attacker could exploit this vulnerability by connecting and authenticating via SFTP as a valid, non-administrator user. A successful exploit could allow the attacker to read or overwrite files from the underlying operating system with the privileges of the authenticated user.

There are workarounds that address this vulnerability.

  • Published: Aug 23, 2023
  • Updated: Aug 30, 2023
  • CVE: CVE-2023-20115
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.4
  • AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

No CWE or OWASP classifications available.

Software From Fixed in
cisco / nx-os 9.2(1) 9.2(1).x
cisco / nx-os 9.2(2) 9.2(2).x
cisco / nx-os 9.2(2t) 9.2(2t).x
cisco / nx-os 9.2(2v) 9.2(2v).x
cisco / nx-os 9.2(3) 9.2(3).x
cisco / nx-os 9.2(4) 9.2(4).x
cisco / nx-os 9.3(1) 9.3(1).x
cisco / nx-os 9.3(2) 9.3(2).x
cisco / nx-os 9.3(3) 9.3(3).x
cisco / nx-os 9.3(4) 9.3(4).x
cisco / nx-os 9.3(5) 9.3(5).x
cisco / nx-os 9.3(6) 9.3(6).x
cisco / nx-os 9.3(7) 9.3(7).x
cisco / nx-os 9.3(7a) 9.3(7a).x
cisco / nx-os 9.3(8) 9.3(8).x
cisco / nx-os 9.3(9) 9.3(9).x
cisco / nx-os 9.3(10) 9.3(10).x
cisco / nx-os 9.3(11) 9.3(11).x
cisco / nx-os 10.1(1) 10.1(1).x
cisco / nx-os 10.1(2) 10.1(2).x
cisco / nx-os 10.1(2t) 10.1(2t).x
cisco / nx-os 10.2(1) 10.2(1).x
cisco / nx-os 10.2(1q) 10.2(1q).x
cisco / nx-os 10.2(2) 10.2(2).x
cisco / nx-os 10.2(3) 10.2(3).x
cisco / nx-os 10.2(3t) 10.2(3t).x
cisco / nx-os 10.2(4) 10.2(4).x
cisco / nx-os 10.2(5) 10.2(5).x
cisco / nx-os 10.3(1) 10.3(1).x
cisco / nx-os 10.3(2) 10.3(2).x