Vulnerability in Cisco Secure Endpoint
CVE-2023-20084
A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs b…
EPSS: 0.001 (27.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H.
Affected products
- Cisco Secure Endpoint — versions 6.0.9, 6.0.7, 6.1.5
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2023-20084?
- CVE-2023-20084 is a medium-severity vulnerability in Cisco Secure Endpoint, classified under CWE-437. CVSS score: 5.0/10. Published 2023-11-22.
- How severe is CVE-2023-20084?
- Medium severity. CVSS v3 base score is 5.0 out of 10.