🛡️ CVE-2023-20156
🟠 CVSS 8.6 — High ✅ No Known Exploit CWE-120 NVD
8.6
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These vulnerabilities are due to improper validation of requests that are sent to the web interface. For more information about these vulnerabilities, see the Details section of this advisory.

Details

Severity HIGH
CVSS Score 8.6
CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CWE CWE-120
Public Exploit ✅ No
Source NVD
Published 2023-05-18
Updated 2026-06-08
Modified 2024-11-21
Fix URL N/A

Affected Packages

Software From version Fixed in
business-250-16p-2g-firmware
business-250-16t-2g-firmware
business-250-24fp-4g-firmware
business-250-24fp-4x-firmware
business-250-24p-4g-firmware
business-250-24p-4x-firmware
business-250-24pp-4g-firmware
business-250-24t-4g-firmware
business-250-24t-4x-firmware
business-250-48p-4g-firmware
business-250-48p-4x-firmware
business-250-48pp-4g-firmware
business-250-48t-4g-firmware
business-250-48t-4x-firmware
business-250-8fp-e-2g-firmware
business-250-8p-e-2g-firmware
business-250-8pp-d-firmware
business-250-8pp-e-2g-firmware
business-250-8t-d-firmware
business-250-8t-e-2g-firmware
business-350-12np-4x-firmware
business-350-12xs-firmware
business-350-12xt-firmware
business-350-16fp-2g-firmware
business-350-16p-2g-firmware
business-350-16p-e-2g-firmware
business-350-16t-2g-firmware
business-350-16t-e-2g-firmware
business-350-16xts-firmware
business-350-24fp-4g-firmware
business-350-24fp-4x-firmware
business-350-24mgp-4x-firmware
business-350-24ngp-4x-firmware
business-350-24p-4g-firmware
business-350-24p-4x-firmware
business-350-24s-4g-firmware
business-350-24t-4g-firmware
business-350-24t-4x-firmware
business-350-24xs-firmware
business-350-24xt-firmware
business-350-24xts-firmware
business-350-48fp-4g-firmware
business-350-48fp-4x-firmware
business-350-48ngp-4x-firmware
business-350-48p-4g-firmware
business-350-48p-4x-firmware
business-350-48t-4g-firmware
business-350-48t-4x-firmware
business-350-48xt-4x-firmware
business-350-8fp-2g-firmware
business-350-8fp-e-2g-firmware
business-350-8mgp-2x-firmware
business-350-8mp-2x-firmware
business-350-8p-2g-firmware
business-350-8p-e-2g-firmware
business-350-8s-e-2g-firmware
business-350-8t-e-2g-firmware
business-350-8xt-firmware
sf200-24-firmware
sf200-24fp-firmware
sf200-24p-firmware
sf200-48-firmware
sf200-48p-firmware
sf200e-24-firmware
sf200e-24p-firmware
sf200e-48-firmware
sf200e-48p-firmware
sf200e48p-firmware
sf250-08-firmware
sf250-08hp-firmware
sf250-10p-firmware
sf250-18-firmware
sf250-24-firmware
sf250-24p-firmware
sf250-26-firmware
sf250-26hp-firmware
sf250-26p-firmware
sf250-48-firmware
sf250-48hp-firmware
sf250-50-firmware
sf250-50hp-firmware
sf250-50p-firmware
sf250x-24-firmware
sf250x-24p-firmware
sf250x-48-firmware
sf250x-48p-firmware
sf300-08-firmware
sf300-24-firmware
sf300-24mp-firmware
sf300-24p-firmware
sf300-24pp-firmware
sf300-48-firmware
sf300-48p-firmware
sf300-48pp-firmware
sf302-08-firmware
sf302-08mpp-firmware
sf302-08pp-firmware
sf350-08-firmware
sf350-10-firmware
sf350-10mp-firmware
sf350-10p-firmware
sf350-10sfp-firmware
sf350-20-firmware
sf350-24-firmware
sf350-24mp-firmware
sf350-24p-firmware
sf350-28-firmware
sf350-28mp-firmware
sf350-28p-firmware
sf350-28sfp-firmware
sf350-48-firmware
sf350-48mp-firmware
sf350-48p-firmware
sf350-52-firmware
sf350-52mp-firmware
sf350-52p-firmware
sf350-8mp-firmware
sf350-8pd-firmware
sf352-08-firmware
sf352-08mp-firmware
sf352-08p-firmware
sf355-10p-firmware
sf500-18p-firmware
sf500-24-firmware
sf500-24mp-firmware
sf500-24p-firmware
sf500-48-firmware
sf500-48mp-firmware
sf500-48p-firmware
sf550x-24-firmware
sf550x-24mp-firmware
sf550x-24p-firmware
sf550x-48-firmware
sf550x-48mp-firmware
sf550x-48p-firmware
sg200-08-firmware
sg200-08p-firmware
sg200-10fp-firmware
sg200-18-firmware
sg200-26-firmware
sg200-26fp-firmware
sg200-26p-firmware
sg200-50-firmware
sg200-50fp-firmware
sg200-50p-firmware
sg250-08-firmware
sg250-08hp-firmware
sg250-10p-firmware
sg250-18-firmware
sg250-24-firmware
sg250-24p-firmware
sg250-26-firmware
sg250-26hp-firmware
sg250-26p-firmware
sg250-48-firmware
sg250-48hp-firmware
sg250-50-firmware
sg250-50hp-firmware
sg250-50p-firmware
sg250x-24-firmware
sg250x-24p-firmware
sg250x-48-firmware
sg250x-48p-firmware
sg300-10-firmware
sg300-10mp-firmware
sg300-10mpp-firmware
sg300-10p-firmware
sg300-10pp-firmware
sg300-10sfp-firmware
sg300-20-firmware
sg300-28-firmware
sg300-28mp-firmware
sg300-28p-firmware
sg300-28pp-firmware
sg300-28sfp-firmware
sg300-52-firmware
sg300-52mp-firmware
sg300-52p-firmware
sg350-10-firmware
sg350-10mp-firmware
sg350-10p-firmware
sg350-28-firmware
sg350-28mp-firmware
sg350-28p-firmware
sg350x-12pmv-firmware
sg350x-24-firmware
sg350x-24mp-firmware
sg350x-24p-firmware
sg350x-24pd-firmware
sg350x-24pv-firmware
sg350x-48-firmware
sg350x-48mp-firmware
sg350x-48p-firmware
sg350x-48pv-firmware
sg350x-8pmd-firmware
sg350xg-24f-firmware
sg350xg-24t-firmware
sg350xg-2f10-firmware
sg350xg-48t-firmware
sg355-10mp-firmware
sg355-10p-firmware
sg500-28-firmware
sg500-28mpp-firmware
sg500-28p-firmware
sg500-28pp-firmware
sg500-52p-firmware
sg500-52pp-firmware
sg500x-24-firmware
sg500x-24mpp-firmware
sg500x-24p-firmware
sg500x-48-firmware
sg500x-48mp-firmware
sg500x-48mpp-firmware
sg500x-48p-firmware
sg500x24mpp-firmware
sg500xg-8f8t-firmware
sg500xg8f8t-firmware
sg550x-24-firmware
sg550x-24mp-firmware
sg550x-24mpp-firmware
sg550x-24p-firmware
sg550x-48-firmware
sg550x-48mp-firmware
sg550x-48p-firmware
sg550x-48t-firmware
sg550xg-24f-firmware
sg550xg-24t-firmware
sg550xg-48t-firmware
sg550xg-8f8t-firmware

Similar Threats

Site Security Check

Concerned your site may already be targeted?

BotEraser analyzes incoming traffic patterns and helps identify bot behavior consistent with known exploit attempts.

Check My Site Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.