CVSS 3.1 Score 5.8 of 10 (medium)


Published Sep 13, 2023
Updated: Jan 25, 2024
CWE ID 863
CWE ID 284


CVE-2023-20191 is a vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software. It affects various products including Cisco IOS XR Software and others. An unauthenticated, remote attacker could exploit this vulnerability to bypass a configured ACL. However, there are workarounds available to address this vulnerability. The danger it poses to an organization is that it allows unauthorized access to network resources, potentially leading to data breaches or unauthorized system configuration changes.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-20191 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options