Tag
ios-xe
Safeguard articles tagged "ios-xe" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
Cisco IOS XE CVE-2023-20198 Explained: The Web UI Privilege Escalation Zero-Day
CVE-2023-20198 is an unauthenticated privilege escalation in the Cisco IOS XE Web UI, rated CVSS 10.0, that let attackers implant tens of thousands of devices in days. Here is how it worked and how to remediate.
Jul 3, 20266 min read
Vulnerability Analysis
CVE-2025-20188 in Cisco IOS XE WLC: Hardcoded JWT to Root RCE
A hardcoded JSON Web Token in Cisco's Wireless LAN Controller gives unauthenticated attackers a path to root via arbitrary file upload.
May 12, 20256 min read
Zero-Day Exploits
Cisco IOS XE CVE-2023-20198: The Zero-Day That Compromised Tens of Thousands of Network Devices
CVE-2023-20198 in Cisco IOS XE allowed unauthenticated attackers to create admin accounts on network devices. Over 40,000 devices were compromised before Cisco shipped a fix.
Oct 16, 20236 min read