VulnerAlert



CISCO
02-07-2025 19:35

CVE-2025-20308 Vulnerabilidad documentada

6.0 MEDIUM
Tags
#exploit
#admin
#cisco
#vulnerability
#authenticated
#arbitrary
#root
#privilege
#execution
#execute
#allow
#attack
Descripción
A vulnerability in Cisco Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root. This is due insufficient restrictions during execution of specific CLI commands. An exploit this by logging spacesadmin user executing a command with crafted parameters. A successful from root.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spaces-conn-privesc-kgD2CcDU
Referencia
Link externo
Ver detalles

Fuente
https://nvd.nist.gov/vuln/detail/CVE-2025-20308
Resultados similares
Coincidentes en almenos en 50% de los tags
02-07-2025 CVE-2025-20309
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communic...
Ver información
02-07-2025 CVE-2025-20310
A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthent...
Ver información
Icons made by Freepik from www.flaticon.com
Este Proyecto fue cofinanciado por el Consejo Nacional de Ciencia y Tecnología (CONACYT) a través del PROINNOVA 2021/2023
Proyecto realizado por