CVE-2023-20050: Cisco NX-OS Software CLI Command Injection Vulnerability
First published: Thu Feb 23 2023(Updated: )
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI commands. An attacker could exploit this vulnerability by including crafted input as the argument of an affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the currently logged-in user.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco NX-OS | ||
| Cisco MDS 9000 Series Multilayer Switches | ||
| Cisco MDS 9100 | ||
| Cisco MDS 9132T | ||
| Cisco MDS 9134 | ||
| Cisco MDS 9140 | ||
| Cisco MDS 9148 | ||
| Cisco MDS 9148S | ||
| Cisco MDS 9148T | ||
| Cisco MDS 9200 | ||
| Cisco MDS 9216 | ||
| Cisco MDS 9216 | ||
| Cisco MDS 9216 | ||
| Cisco MDS 9222i | ||
| Cisco MDS 9250i | ||
| Cisco MDS 9396S | ||
| Cisco MDS 9396T | ||
| Cisco MDS 9500 | ||
| Cisco MDS 9500 | ||
| Cisco MDS 9500 | ||
| Cisco MDS 9513 Firmware | ||
| Cisco MDS 9700 | ||
| Cisco MDS 9706 Firmware | ||
| Cisco MDS 9710 Firmware | ||
| Cisco MDS 9718 Firmware | ||
| Cisco Nexus 1000V Switch for VMware vSphere | ||
| Cisco Nexus 1000V for Hyper-V | ||
| Cisco Nexus 1000V for Hyper-V | ||
| Cisco NX-OS for Nexus 5500 Platform Switches | ||
| Cisco Nexus 5548P Firmware | ||
| Cisco Nexus 5548UP Firmware | ||
| Cisco Nexus 5596T Firmware | ||
| Cisco Nexus 5596UP Firmware | ||
| Cisco Nexus 5600 Firmware | ||
| Cisco 56128p | ||
| Cisco Nexus 5624Q Firmware | ||
| Cisco Nexus 5648Q Firmware | ||
| Cisco Nexus 5672UP-16G | ||
| Cisco Nexus 5672UP-16G Firmware | ||
| Cisco Nexus 5696Q Firmware | ||
| Cisco Nexus 6000 firmware | ||
| Cisco Nexus 6001 Firmware | ||
| Cisco Nexus 6001P Firmware | ||
| Cisco Nexus 6001T Firmware | ||
| Cisco Nexus 6004 Firmware | ||
| Cisco Nexus 6004X Firmware | ||
| Cisco NX-OS | <8.2\(9\) | |
| Cisco Nexus 7000 | ||
| Cisco Nexus 7004 Firmware | ||
| Cisco Nexus 7009 Firmware | ||
| Cisco Nexus 7010 Firmware | ||
| Cisco Nexus 7018 Firmware | ||
| Cisco Nexus 7700 series | ||
| Cisco Nexus 7702 firmware | ||
| Cisco Nexus 7706 firmware | ||
| Cisco Nexus 7710 Firmware | ||
| Cisco Nexus 7718 firmware | ||
| Cisco NX-OS | <9.3\(10\) | |
| Cisco Nexus 3016Q Firmware | ||
| Cisco Nexus 3016Q Firmware | ||
| Cisco Nexus 3048 Firmware | ||
| Cisco Nexus 3064 Firmware | ||
| Cisco Nexus 3064 | ||
| Cisco Nexus 3064 | ||
| Cisco Nexus 3064x | ||
| Cisco Nexus 3064 | ||
| Cisco Nexus 3064-X Firmware | ||
| Cisco Nexus 3100 Firmware | ||
| Cisco Nexus 3100V Firmware | ||
| Cisco Nexus 3100-Z firmware | ||
| Cisco Nexus 3100V Firmware | ||
| Cisco Nexus 31108PC-V Firmware | ||
| Cisco Nexus 31108PV-V Firmware | ||
| Cisco Nexus 31108TC-V Firmware | ||
| Cisco Nexus 31128PQ | ||
| Cisco Nexus 3132C-Z Firmware | ||
| Cisco Nexus 3132Q-XL | ||
| Cisco Nexus 3132Q-V Firmware | ||
| Cisco Nexus 3132Q-X/3132Q-XL | ||
| Cisco Nexus 3132Q-X/3132Q-XL | ||
| Cisco Nexus 3132Q-XL Firmware | ||
| Cisco Nexus 3164Q Firmware | ||
| Cisco Nexus 3172 Firmware | ||
| Cisco Nexus 3172PQ/PQ-XL | ||
| Cisco Nexus 3172PQ-XL Firmware | ||
| Cisco Nexus 3172PQ/PQ-XL | ||
| Cisco Nexus 3172TQ Firmware | ||
| Cisco Nexus 3172TQ-XL | ||
| Cisco Nexus 3172TQ-XL Firmware | ||
| Cisco Nexus 3200 | ||
| Cisco Nexus 3232C | ||
| Cisco Nexus 3232C | ||
| Cisco Nexus 3264C-E Firmware | ||
| Cisco Nexus 3264Q Firmware | ||
| Cisco Nexus 3400 Firmware | ||
| Cisco Nexus 3408-S Firmware | ||
| Cisco Nexus 34180YC Firmware | ||
| Cisco Nexus 34200YC-SM Firmware | ||
| Cisco Nexus 3432D-S Firmware | ||
| Cisco Nexus 3464C Firmware | ||
| Cisco Nexus 3500 Platform | ||
| Cisco Nexus 3524-xl | ||
| Cisco Nexus 3524-xl | ||
| Cisco Nexus 3524-x/xl | ||
| Cisco Nexus 3524-XL Firmware | ||
| Cisco Nexus 3548-X/XL Firmware | ||
| Cisco Nexus 3548-X/XL | ||
| Cisco Nexus 3548-x/xl | ||
| Cisco Nexus 3548-X/XL | ||
| Cisco Nexus 3600 Firmware | ||
| Cisco Nexus 36180YC-R Firmware | ||
| Cisco Nexus 3636C-R Firmware | ||
| Cisco Nexus 9000 Firmware | ||
| Cisco NX-OS Nexus 9000 Series | ||
| Cisco NX-OS | <10.2\(4\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-20050?
CVE-2023-20050 has a severity rating of high due to its potential for enabling command execution by an authenticated, local attacker.
How do I fix CVE-2023-20050?
To remediate CVE-2023-20050, update Cisco NX-OS Software to the latest version that addresses the vulnerability.
Who is affected by CVE-2023-20050?
CVE-2023-20050 affects Cisco NX-OS Software deployed on various Cisco hardware platforms.
What are the risks associated with CVE-2023-20050?
Exploitation of CVE-2023-20050 could allow attackers to execute arbitrary commands on the underlying operating system, leading to potential system compromise.
Is CVE-2023-20050 being actively exploited in the wild?
As of the last update, there is no public indication that CVE-2023-20050 is being actively exploited, but organizations are urged to apply patches promptly.
- agent/type
- agent/title
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco nx-os
- canonical/cisco mds 9000 series multilayer switches
- canonical/cisco mds 9100
- canonical/cisco mds 9132t
- canonical/cisco mds 9134
- canonical/cisco mds 9140
- canonical/cisco mds 9148
- canonical/cisco mds 9148s
- canonical/cisco mds 9148t
- canonical/cisco mds 9200
- canonical/cisco mds 9216
- canonical/cisco mds 9222i
- canonical/cisco mds 9250i
- canonical/cisco mds 9396s
- canonical/cisco mds 9396t
- canonical/cisco mds 9500
- canonical/cisco mds 9513 firmware
- canonical/cisco mds 9700
- canonical/cisco mds 9706 firmware
- canonical/cisco mds 9710 firmware
- canonical/cisco mds 9718 firmware
- canonical/cisco nexus 1000v switch for vmware vsphere
- canonical/cisco nexus 1000v for hyper-v
- canonical/cisco nx-os for nexus 5500 platform switches
- canonical/cisco nexus 5548p firmware
- canonical/cisco nexus 5548up firmware
- canonical/cisco nexus 5596t firmware
- canonical/cisco nexus 5596up firmware
- canonical/cisco nexus 5600 firmware
- canonical/cisco 56128p
- canonical/cisco nexus 5624q firmware
- canonical/cisco nexus 5648q firmware
- canonical/cisco nexus 5672up-16g
- canonical/cisco nexus 5672up-16g firmware
- canonical/cisco nexus 5696q firmware
- canonical/cisco nexus 6000 firmware
- canonical/cisco nexus 6001 firmware
- canonical/cisco nexus 6001p firmware
- canonical/cisco nexus 6001t firmware
- canonical/cisco nexus 6004 firmware
- canonical/cisco nexus 6004x firmware
- canonical/cisco nexus 7000
- canonical/cisco nexus 7004 firmware
- canonical/cisco nexus 7009 firmware
- canonical/cisco nexus 7010 firmware
- canonical/cisco nexus 7018 firmware
- canonical/cisco nexus 7700 series
- canonical/cisco nexus 7702 firmware
- canonical/cisco nexus 7706 firmware
- canonical/cisco nexus 7710 firmware
- canonical/cisco nexus 7718 firmware
- canonical/cisco nexus 3016q firmware
- canonical/cisco nexus 3048 firmware
- canonical/cisco nexus 3064 firmware
- canonical/cisco nexus 3064
- canonical/cisco nexus 3064x
- canonical/cisco nexus 3064-x firmware
- canonical/cisco nexus 3100 firmware
- canonical/cisco nexus 3100v firmware
- canonical/cisco nexus 3100-z firmware
- canonical/cisco nexus 31108pc-v firmware
- canonical/cisco nexus 31108pv-v firmware
- canonical/cisco nexus 31108tc-v firmware
- canonical/cisco nexus 31128pq
- canonical/cisco nexus 3132c-z firmware
- canonical/cisco nexus 3132q-xl
- canonical/cisco nexus 3132q-v firmware
- canonical/cisco nexus 3132q-x/3132q-xl
- canonical/cisco nexus 3132q-xl firmware
- canonical/cisco nexus 3164q firmware
- canonical/cisco nexus 3172 firmware
- canonical/cisco nexus 3172pq/pq-xl
- canonical/cisco nexus 3172pq-xl firmware
- canonical/cisco nexus 3172tq firmware
- canonical/cisco nexus 3172tq-xl
- canonical/cisco nexus 3172tq-xl firmware
- canonical/cisco nexus 3200
- canonical/cisco nexus 3232c
- canonical/cisco nexus 3264c-e firmware
- canonical/cisco nexus 3264q firmware
- canonical/cisco nexus 3400 firmware
- canonical/cisco nexus 3408-s firmware
- canonical/cisco nexus 34180yc firmware
- canonical/cisco nexus 34200yc-sm firmware
- canonical/cisco nexus 3432d-s firmware
- canonical/cisco nexus 3464c firmware
- canonical/cisco nexus 3500 platform
- canonical/cisco nexus 3524-xl
- canonical/cisco nexus 3524-x/xl
- canonical/cisco nexus 3524-xl firmware
- canonical/cisco nexus 3548-x/xl firmware
- canonical/cisco nexus 3548-x/xl
- canonical/cisco nexus 3600 firmware
- canonical/cisco nexus 36180yc-r firmware
- canonical/cisco nexus 3636c-r firmware
- canonical/cisco nexus 9000 firmware
- canonical/cisco nx-os nexus 9000 series