VDB
CVE-2023-20269
CVE-2023-20269
PUBLISHED
KEV
Es existiert eine Schwachstelle in Cisco ASA (Adaptive Security Appliance) und Cisco Firepower. Es ist möglich mithilfe einer Brute-Force-Attacke die Autorisierung im VPN zu umgehen, da unzureichend zwischen Autorisierung, Authentisierung und Accounting getrennt wird. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
EPSS 1.19% · 79.2th percentile
Risk Scores
EPSS Score
1.19%
79.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Firepower Threat Defense | |
| Cisco | Cisco ASA (Adaptive Security Appliance) |
Exploit Intelligence
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- CIRCL exploited: CVE-2023-20269 (circl-sighting)
- CIRCL seen: CVE-2023-20269 (circl-sighting)
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-20269 (circl)
…and 21 more exploits
Timeline
- Sep 6, 2023 CVE Published
- Sep 7, 2023 EPSS Score
- Sep 13, 2023 CISA KEV Added
- Sep 13, 2023 PoC Published
- Sep 15, 2023 EPSS Score
- Oct 10, 2023 EPSS Score
- Dec 14, 2023 EPSS Score
- Jan 15, 2024 EPSS Score
- Mar 21, 2024 EPSS Score
- Apr 19, 2024 PoC Published
- Apr 22, 2024 EPSS Score
- Jun 9, 2024 EPSS Score