A vulnerability in the Meraki onboarding feature of Cisco IOS XE Software could allow an authenticated, local attacker to gain root level privileges on an affected device. This vulnerability is due to insufficient memory protection in the Meraki onboarding feature of an affected device. An attacker could exploit this vulnerability by modifying the Meraki registration parameters. A successful exploit could allow the attacker to elevate privileges to root.
History

Fri, 25 Oct 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2023-03-23T00:00:00

Updated: 2024-10-25T16:03:04.973Z

Reserved: 2022-10-27T00:00:00

Link: CVE-2023-20029

cve-icon Vulnrichment

Updated: 2024-08-02T08:57:35.877Z

cve-icon NVD

Status : Modified

Published: 2023-03-23T17:15:13.940

Modified: 2024-11-21T07:40:23.523

Link: CVE-2023-20029

cve-icon Redhat

No data.