## https://sploitus.com/exploit?id=A8131B98-2E12-5CC3-8733-6A8BA83F9771
# Cisco IOS XE CVE-2023-20198 Scanner
A Python wrapper script for scanning Cisco IOS XE devices for the **Web UI Authentication Vulnerability (CVE-2023-20198)** using a specific curl payload.
## Features
- Scans multiple targets from a file or command line
- Uses exact curl command as specified
- Automatically detects HTTP 200 responses (indicating potential vulnerability)
- Professional banner and clear vulnerability reporting
- Saves detailed scan results
- Timeout protection
## Requirements
- Python 3.x
- `curl` command-line tool
## Installation
1. Save the script as `cve_scanner.py`
2. Make it executable:
```bash
chmod +x cve_scanner.py
```
## Usage
### Scan from file (recommended)
```bash
# Create targets file
cat > targets.txt << EOF
http://192.168.1.100/%2577ebui_wsma_http
http://router.company.com/%2577ebui_wsma_http
https://target.example.com/%2577ebui_wsma_http
EOF
# Run scan
./cve_scanner.py -f targets.txt
```
### Save results to file
```bash
./cve_scanner.py -f targets.txt -o scan_results.txt
```
### Direct URLs
```bash
./cve_scanner.py http://target1.com/%2577ebui_wsma_http http://target2.com/%2577ebui_wsma_http
```
## Output Example
When a device returns HTTP 200:
```
[!!!] HTTP 200 - Device is Vulnerable with CVE-2023-20198 [!!!]
```
## Author
**Abraham-Surf**
## Disclaimer
This tool is for educational and authorized security testing purposes only.
Use only on systems you have explicit permission to test.
## Legal Notice
CVE-2023-20198 is a critical vulnerability in Cisco IOS XE.
Unauthorized scanning may be illegal in your jurisdiction.