cisco-sa-bw-priv-esc-qTgUZOsQ: Cisco BroadWorks Privilege Escalation Vulnerability
First published: Wed Jul 19 2023(Updated: )
A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is due to incorrect implementation of user role
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco BroadWorks Xtended Services Platform Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-bw-priv-esc-qTgUZOsQ?
The cisco-sa-bw-priv-esc-qTgUZOsQ vulnerability has a high severity rating due to potential privilege escalation.
How do I fix cisco-sa-bw-priv-esc-qTgUZOsQ?
To fix cisco-sa-bw-priv-esc-qTgUZOsQ, update to the latest version of Cisco BroadWorks as recommended in the security advisory.
Who is affected by cisco-sa-bw-priv-esc-qTgUZOsQ?
All users of Cisco BroadWorks server types are affected by the cisco-sa-bw-priv-esc-qTgUZOsQ vulnerability.
What type of attack does cisco-sa-bw-priv-esc-qTgUZOsQ allow?
The cisco-sa-bw-priv-esc-qTgUZOsQ vulnerability enables an authenticated, local attacker to elevate privileges to root.
What causes the cisco-sa-bw-priv-esc-qTgUZOsQ vulnerability?
The cisco-sa-bw-priv-esc-qTgUZOsQ vulnerability is caused by an incorrect implementation of user role management in Cisco BroadWorks.
- collector/cisco-recent
- agent/type
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/references
- agent/title
- agent/description
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco broadworks xtended services platform firmware