What is the severity of cisco-sa-getvpn-rce-g8qR68sx?

The severity of cisco-sa-getvpn-rce-g8qR68sx is critical due to the potential for arbitrary code execution by an authenticated remote attacker.

How can I mitigate cisco-sa-getvpn-rce-g8qR68sx?

Mitigation for cisco-sa-getvpn-rce-g8qR68sx involves applying the appropriate software updates provided by Cisco for affected IOS and IOS XE versions.

What conditions must be met for cisco-sa-getvpn-rce-g8qR68sx to be exploited?

To exploit cisco-sa-getvpn-rce-g8qR68sx, the attacker must have administrative control of either a group member or a key server.

What are the impacted products of cisco-sa-getvpn-rce-g8qR68sx?

The impacted products of cisco-sa-getvpn-rce-g8qR68sx include Cisco IOS Software, Cisco IOS XE Software, and Cisco Group Encrypted Transport VPN.

Is cisco-sa-getvpn-rce-g8qR68sx remotely exploitable?

Yes, cisco-sa-getvpn-rce-g8qR68sx can be remotely exploited by an authenticated attacker with the necessary administrative access.

Vulnerability/
cisco-sa-getvpn-rce-g8qR68sx

medium

CWE

787

27/9/2023

cisco-sa-getvpn-rce-g8qR68sx: Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability

First published: Wed Sep 27 2023(Updated: 2 years ago)

A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affected device or

Affected Software	Affected Version	How to fix
Cisco IOS
Cisco IOS XE
Cisco Group Encrypted Transport VPN

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-getvpn-rce-g8qR68sx

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2023-20109

Frequently Asked Questions

What is the severity of cisco-sa-getvpn-rce-g8qR68sx?
The severity of cisco-sa-getvpn-rce-g8qR68sx is critical due to the potential for arbitrary code execution by an authenticated remote attacker.
How can I mitigate cisco-sa-getvpn-rce-g8qR68sx?
Mitigation for cisco-sa-getvpn-rce-g8qR68sx involves applying the appropriate software updates provided by Cisco for affected IOS and IOS XE versions.
What conditions must be met for cisco-sa-getvpn-rce-g8qR68sx to be exploited?
To exploit cisco-sa-getvpn-rce-g8qR68sx, the attacker must have administrative control of either a group member or a key server.
What are the impacted products of cisco-sa-getvpn-rce-g8qR68sx?
The impacted products of cisco-sa-getvpn-rce-g8qR68sx include Cisco IOS Software, Cisco IOS XE Software, and Cisco Group Encrypted Transport VPN.
Is cisco-sa-getvpn-rce-g8qR68sx remotely exploitable?
Yes, cisco-sa-getvpn-rce-g8qR68sx can be remotely exploited by an authenticated attacker with the necessary administrative access.

agent/type
agent/event
agent/last-modified-date
collector/cisco-recent
source/Cisco
agent/first-publish-date
agent/source
agent/references
agent/severity
agent/title
agent/weakness
agent/description
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco ios
canonical/cisco ios xe
canonical/cisco group encrypted transport vpn

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.