THREAT OPS › CVEs › CVE-2023-20198
CVE-2023-20198 — Cisco IOS XE Web UI Privilege Escalation Vulnerability
Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.
Vulnerability details
- Affected productsIOS XE Web UI
- KEV remediation due2023-10-20
Related reporting
- June 2026 CVE Landscaperecordedfuture