Share
## https://sploitus.com/exploit?id=A8131B98-2E12-5CC3-8733-6A8BA83F9771
# Cisco IOS XE CVE-2023-20198 Scanner

A Python wrapper script for scanning Cisco IOS XE devices for the **Web UI Authentication Vulnerability (CVE-2023-20198)** using a specific curl payload.

## Features

- Scans multiple targets from a file or command line
- Uses exact curl command as specified
- Automatically detects HTTP 200 responses (indicating potential vulnerability)
- Professional banner and clear vulnerability reporting
- Saves detailed scan results
- Timeout protection

## Requirements

- Python 3.x
- `curl` command-line tool

## Installation

1. Save the script as `cve_scanner.py`
2. Make it executable:

```bash
chmod +x cve_scanner.py
```

## Usage

### Scan from file (recommended)

```bash
# Create targets file
cat > targets.txt << EOF
http://192.168.1.100/%2577ebui_wsma_http
http://router.company.com/%2577ebui_wsma_http
https://target.example.com/%2577ebui_wsma_http
EOF

# Run scan
./cve_scanner.py -f targets.txt
```

### Save results to file

```bash
./cve_scanner.py -f targets.txt -o scan_results.txt
```

### Direct URLs

```bash
./cve_scanner.py http://target1.com/%2577ebui_wsma_http http://target2.com/%2577ebui_wsma_http
```

## Output Example

When a device returns HTTP 200:

```
[!!!] HTTP 200 - Device is Vulnerable with CVE-2023-20198 [!!!]
```

## Author

**Abraham-Surf**

## Disclaimer

This tool is for educational and authorized security testing purposes only.  
Use only on systems you have explicit permission to test.

## Legal Notice

CVE-2023-20198 is a critical vulnerability in Cisco IOS XE.  
Unauthorized scanning may be illegal in your jurisdiction.