{"uuid": "2dfdce08-7a0a-4bd6-bdb4-ee918a907775", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-20273", "type": "published-proof-of-concept", "source": "https://t.me/ckuRED/337", "content": "A backdoor is implanted on Cisco devices by exploiting a pair of zero-day flaws in IOS XE software that has been modified by the threat actor so as to escape visibility via previous fingerprinting methods.\n\nThe attacks entail fashioning CVE-2023-20198 (CVSS score: 10.0) and CVE-2023-20273 (CVSS score: 7.2) into an exploit chain that grants the threat actor the ability to gain access to the devices, create a privileged account, and ultimately deploy a Lua-based implant on the devices.\n\nhttps://thehackernews.com/2023/10/backdoor-implant-on-hacked-cisco.html", "creation_timestamp": "2023-10-24T08:37:10.000000Z"}