Unrated severityNVD Advisory· Published Jan 19, 2023· Updated Aug 2, 2024
CVE-2023-20002
CVE-2023-20002
Description
A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local attacker to bypass access controls and conduct an SSRF attack through an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: RoomOS 10.3.2.0
- Range: CE9.0.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.