CVE-2023-20036

Name of the Vulnerable Software and Affected Versions Cisco Industrial Network Director (affected versions not specified)

Description The issue exists due to improper input validation when uploading a Device Pack, allowing an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the underlying operating system of an affected device. An attacker could exploit this by altering the request sent when uploading a Device Pack. A successful exploit could allow the attacker to execute arbitrary commands as NT AUTHORITYSYSTEM on the underlying operating system of an affected device.

Recommendations For all affected versions, update to the latest software version released by Cisco that addresses this issue. As a temporary workaround, consider restricting access to the Device Pack upload feature until a patch is available. Avoid altering requests when uploading a Device Pack to minimize the risk of exploitation.