Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-20048 PoC — Cisco Firepower Management Center 安全漏洞

Source
https://github.com/oguzhanozuzun301/cisco-rv-rce-poc
Associated Vulnerability
Title:Cisco Firepower Management Center 安全漏洞 (CVE-2023-20048)
Description:A vulnerability in the web services interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute certain unauthorized configuration commands on a Firepower Threat Defense (FTD) device that is managed by the FMC Software. This vulnerability is due to insufficient authorization of configuration commands that are sent through the web service interface. An attacker could exploit this vulnerability by authenticating to the FMC web services interface and sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to execute certain configuration commands on the targeted FTD device. To successfully exploit this vulnerability, an attacker would need valid credentials on the FMC Software.
Description
PoC and exploit scripts for CVE-2023-20048 - Remote Code Execution vulnerability affecting Cisco RV series routers.  Includes a vulnerability checker (PoC) and a working exploit for gaining remote shell access. For educational and research purposes only.
Readme
# CVE-2023-20048 — Cisco RV Series PoC & Exploit

**⚠ WARNING:** For **authorized testing only**. Do not use against systems you do not own or have written permission to test. This is a **Proof of Concept** for **authorized testing only**.  

## What this is
Small repository with:
- `CiscoPoc.py` — harmless PoC to check for CVE-2023-20048.
- `CiscoRCE.py` — exploit that attempts a reverse shell via the vulnerable `form2ping.cgi`.
- 
## **Description**  
This script checks if a **Cisco RV Series router** is vulnerable to **CVE-2023-20048**, a command injection flaw leading to **RCE as root**.  

## Requirements
- Python 3.8+
- `requests` (`pip install requests`)

## References

- CVE record: [CVE-2023-20048 — NVD](https://nvd.nist.gov/vuln/detail/CVE-2023-20048).  
- Cisco advisory: [Cisco Security Advisory — CVE-2023-20048](https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-29MP49hN).  

> ⚠ Note: According to the official NVD and Cisco advisory, CVE-2023-20048 is associated with Cisco Firepower Management Center (FMC). Make sure this CVE actually applies to the Cisco RV Series devices you are testing — if not, correct the CVE/advisory links to the appropriate CVE.  

### Check (PoC)
```bash
python3 CiscoPoc.py -t <TARGET_IP> -u <USER> -p <PASS>
File Snapshot

 [4.0K]  /data/pocs/655377f3d77e05d1a6997dd02678e11b79e1f086
├── [1.8K]  CiscoPoC.py
├── [2.0K]  CiscoRCE.py
├── [ 309]  LegalNotice
├── [1.0K]  LICENSE
└── [1.3K]  README.md

0 directories, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →