Tag
cve-2023-20198
Safeguard articles tagged "cve-2023-20198" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
Cisco IOS XE CVE-2023-20198 Explained: The Web UI Privilege Escalation Zero-Day
CVE-2023-20198 is an unauthenticated privilege escalation in the Cisco IOS XE Web UI, rated CVSS 10.0, that let attackers implant tens of thousands of devices in days. Here is how it worked and how to remediate.
Jul 3, 20266 min read
Vulnerability Analysis
Cisco IOS XE CVE-2023-20198: Tens of Thousands of Devices Implanted
A critical zero-day in Cisco IOS XE's web UI allowed unauthenticated attackers to create admin accounts and deploy implants on over 40,000 devices worldwide.
Oct 16, 20235 min read
Zero-Day Exploits
Cisco IOS XE CVE-2023-20198: The Zero-Day That Compromised Tens of Thousands of Network Devices
CVE-2023-20198 in Cisco IOS XE allowed unauthenticated attackers to create admin accounts on network devices. Over 40,000 devices were compromised before Cisco shipped a fix.
Oct 16, 20236 min read