CVE-2023-20088

Name of the Vulnerable Software and Affected Versions Cisco Finesse (affected versions not specified)

Description A vulnerability in the nginx configurations of the VPN-less reverse proxy for Cisco Finesse could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition for new and existing users who are connected through a load balancer. This is due to improper IP address filtering by the reverse proxy. An attacker could exploit this by sending a series of unauthenticated requests to the reverse proxy, potentially causing all current traffic and subsequent requests to be dropped, resulting in a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.