February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Lazarus (aka Hidden Cobra) APT Group – Active IOCs
July 20, 2023Rewterz Threat Advisory – CVE-2023-22014 – Oracle PeopleSoft Enterprise PeopleTools Vulnerability
July 20, 2023Rewterz Threat Alert – Lazarus (aka Hidden Cobra) APT Group – Active IOCs
July 20, 2023Rewterz Threat Advisory – CVE-2023-22014 – Oracle PeopleSoft Enterprise PeopleTools Vulnerability
July 20, 2023
Severity
Medium
Analysis Summary
CVE-2023-20216
Cisoc BroadWorks could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect implementation of user role permissions. By sending specially crafted commands, an authenticated attacker could exploit this vulnerability to initiate installs or running operating system commands with elevated permissions.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-20216
Affected Vendors
Cisco
Affected Products
- Cisco BroadWorks Application Server
- Cisco BroadWorks Application Delivery Platform Software
- Cisco BroadWorks Xtended Services Platform
- Cisco BroadWorks Network Server
Remediation
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.