CVE-2023-20043

A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to elevate their privileges. This vulnerability is due to insecure file permissions. An attacker could exploit this vulnerability by calling the script with sudo. A successful exploit could allow the attacker to take complete control of the affected device.

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Severity	MEDIUM
CVSS	6.7
EPSS	0.05% EPSS low
CWE	CWE-708
KEV
Published	3 years ago
Modified	1 year ago

Products with public affected evidence

Product	Advisory	Affected evidence
Cisco CX Cloud Agent	cisco-sa-cxagent-gOq9QjqZ	structured affected CSAF product_status