CVE-2023-20215

Name of the Vulnerable Software and Affected Versions Cisco Secure Web Appliance versions (affected versions not specified)

Description The issue is related to a flaw in the scanning mechanism of Cisco AsyncOS for Cisco Secure Web Appliance, specifically concerning inadequate access control. This flaw can be exploited by a remote attacker to bypass traffic block rules when certain encoding types, such as deflate, lzma, or brotli, are enabled. The vulnerability arises from improper detection of malicious traffic when it is encoded in a specific content format. An attacker could exploit this by using an affected device to connect to a malicious server and receive crafted HTTP responses, potentially allowing them to bypass explicit block rules and receive traffic that should have been rejected.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.