Unrated severityNVD Advisory· Published Mar 23, 2023· Updated Oct 28, 2024

Cisco IOS XE SD-WAN Software Command Injection Vulnerability

CVE-2023-20035

Description

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run commands could exploit this vulnerability by first authenticating to an affected device using either local terminal access or a management shell interface and then submitting crafted input to the system CLI. A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges. An attacker with limited user privileges could use this vulnerability to gain complete control over the system. Note: For additional information about specific impacts, see the Details section of this advisory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Crafted CLI input in Cisco IOS XE SD-WAN Software allows authenticated local attackers to execute arbitrary commands with root privileges, enabling full system compromise.

Vulnerability

A command injection vulnerability exists in the CLI of Cisco IOS XE SD-WAN Software. The issue is due to insufficient input validation by the system CLI, allowing crafted input to be executed as commands on the underlying operating system. Affected versions include all releases prior to the fixed versions specified in the Cisco Security Advisory [1]. The attacker must have privileges to run commands on the device.

Exploitation

An attacker with local terminal access or a management shell interface authenticates to an affected device. The attacker then submits crafted input to the system CLI. The exploitation requires authenticated access with command-running privileges, but no special privileges beyond that are needed to trigger the injection [1].

Impact

Successful exploitation allows the attacker to execute arbitrary commands on the underlying operating system with root-level privileges. An attacker with limited user privileges can gain complete control over the system, including the ability to modify configurations, access sensitive data, and disrupt services [1].

Mitigation

Cisco has released free software updates to address this vulnerability. Customers with service contracts should obtain fixes through their usual update channels. Customers without service contracts should contact the Cisco Technical Assistance Center (TAC) [1]. No workarounds are mentioned in the available reference.

References

Cisco Security Advisory: Cisco IOS XE SD-WAN Software Command Injection Vulnerability

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./IOS XE SD-WAN Softwarellm-fuzzy
Cisco Systems, Inc./IOS XE Software for Cisco Merakicpe-rescue
Range: n/a

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-sdwan-VQAhEjYwmitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000