CERT-MU Advisories AD-2023-01

Date of Issue: 24 July 2023

Severity Rating: High

Systems Affected:

• BroadWorks Application Delivery Platform
• BroadWorks Application Server
• BroadWorks Database Server
• BroadWorks Database Troubleshooting Server
• BroadWorks Execution Server
• BroadWorks Media Server
• BroadWorks Messaging Server
• BroadWorks Network Database Server
• BroadWorks Network Function Manager
• BroadWorks Network Server
• BroadWorks Profile Server
• BroadWorks Service Control Function Server
• BroadWorks Sharing Server
• BroadWorks Video Server
• BroadWorks WebRTC Server
• BroadWorks Xtended Services Platform

Description

A vulnerability has been identified in the privilege management functionality of all Cisco BroadWorks server types and this could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is caused due to incorrect implementation of user role permissions. An attacker could exploit this vulnerability by authenticating to the application as a user with the BWORKS or BWSUPERADMIN role and issuing crafted commands on an affected system. A successful exploit could allow the attacker to execute commands beyond the sphere of their intended access level, including initiating installs or running operating system commands with elevated permissions.

Solution

Cisco has released updates to address this vulnerability and users are advised to apply the patches.

More information about the updates is available on:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-priv-esc-qTgUZOsQ

CVE Information
CVE-2023-20216

References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-priv-esc-qTgUZOsQ

Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
Ministry of Information Technology, Communication and Innovation
2^nd Floor, Wing A,
Shri Atal Bihari Vajpayee Tower,
Cybercity Ebene.