2 matches found
CVE-2023-20040
A vulnerability in the NETCONF service of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to cause a denial of service DoS on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of the admin group...
CVE-2023-20040
Cisco NSO NETCONF service vulnerability (CVE-2023-20040): authenticated admin-group user can upload crafted packages via NETCONF, triggering input validation failure that may write/delete arbitrary files and cause DoS on root-run NSO. Affected: Cisco Network Services Orchestrator; root access pos...