CVE-2023-20015

Name of the Vulnerable Software and Affected Versions Cisco Firepower 4100 Series (affected versions not specified) Cisco Firepower 9300 Security Appliances (affected versions not specified) Cisco UCS 6200 (affected versions not specified) Cisco UCS 6300 (affected versions not specified) Cisco UCS 6400 (affected versions not specified) Cisco UCS 6500 (affected versions not specified)

Description The issue is related to insufficient input validation of commands supplied by the user in the CLI of the affected devices. This could allow an authenticated, local attacker to inject unauthorized commands. A successful exploit could allow the attacker to execute unauthorized commands within the CLI. An attacker with Administrator privileges could also execute arbitrary commands on the underlying operating system of Cisco UCS 6400 and 6500 Series Fabric Interconnects with root-level privileges.

Recommendations For Cisco Firepower 4100 Series, consider disabling access to the CLI until a patch is available. For Cisco Firepower 9300 Security Appliances, restrict access to the affected command to minimize the risk of exploitation. For Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects, avoid using the affected command until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.